1 ? Admission Control in Peer Groups Gene Tsudik, School of ICS, UC Irvine Yongdae Kim, CS Dept., U. of Minnesota Peer Groups:

Slides:

Advertisements

Similar presentations

1 APNIC Resource Certification Service Project Routing SIG 7 Sep 2005 APNIC20, Hanoi, Vietnam George Michaelson.

Advertisements

Chapter 14 – Authentication Applications

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

SPLASH Project INRIA-Eurecom-UC Irvine November 2006.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Open Policy Meeting SIG: Whois Database October 2000 APNIC Certificate Authority.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

Claudia Diaz, Hannelore Dekeyser, Markulf Kohlweiss, Girma Nigusse K.U.Leuven IDIS Workshop 29/05/2008 [Work done in the context of the ADAPID project]

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

Fall, Privacy&Security - Virginia Tech – Computer Science Click to edit Master title style A Survey on Decentralized Group Key Management Schemes.

PROVIDING ROBUST AND UBIQUITOUS SECURITY SUPPORT FOR MOBILE AD- HOC NETWORKS Georgios Georgiadis 6/5/2008.

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

IAW 2006 Cascaded Authorization with Anonymous- Signer Aggregate Signatures Danfeng Yao Department of Computer Science Brown University Joint work with.

Secret Handshakes from CA-Oblivious Encryption Asiacrypt 2004, Jeju-do, Korea Claude Castelluccia, Stanisław Jarecki, Gene Tsudik UC Irvine.

DESIGNING A PUBLIC KEY INFRASTRUCTURE

Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.

SMUCSE 5349/7349 Public-Key Infrastructure (PKI).

 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.

Understanding Active Directory

1 A few challenges in security & privacy in the context of ubiquitous computing Gene Tsudik SCONCE: Secure Computing and Networking Center UC Irvine

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

Secure routing for structured peer-to-peer overlay networks (by Castro et al.) Shariq Rizvi CS 294-4: Peer-to-Peer Systems.

Validity Management in SPKI 24 April 2002 (author) (presentation)

Copyright, 1996 © Dale Carnegie & Associates, Inc. Digital Certificates Presented by Sunit Chauhan.

Remote User Authentication. Module Objectives By the end of this module participants will be able to: Describe the methods available for authenticating.

Security Management.

1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

MOCA : Mobile Certificate Authority for Wireless Ad Hoc Networks The 2nd Annual PKI Research Workshop (PKI 2003) Seung Yi, Robin Kravets September. 25,

Authorization architecture sketches draft-selander-core-access-control-02 draft-gerdes-core-dcaf-authorize-02 draft-seitz-ace-design-considerations-00.

Chapter 10: Authentication Guide to Computer Network Security.

Overview of Security Research in Ad Hoc Networks Melanie Agnew John Folkerts Cory Virok.

30/04/2004Gene Tsudik, UCLA CSD Research Review1 Some Security Issues & Challenges in MANETs and Sensor Nets Gene Tsudik SCONCE: Secure Computing and Networking.

ECE454/599 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2012.

Authentication and Payments 27 June 2000 Ann Terwilliger Product Director eCommerce Authentication Visa International.

MOBILE AD-HOC NETWORK(MANET) SECURITY VAMSI KRISHNA KANURI NAGA SWETHA DASARI RESHMA ARAVAPALLI.

Application-Layer Anycasting By Samarat Bhattacharjee et al. Presented by Matt Miller September 30, 2002.

Csci5233 Computer Security1 Bishop: Chapter 14 Representing Identity.

1 Using EMV cards for Single Sign-On 26 th June st European PKI Workshop Andreas Pashalidis and Chris J. Mitchell.

02/22/2005 Joint Seminer Satoshi Koga Information Technology & Security Lab. Kyushu Univ. A Distributed Online Certificate Status Protocol with Low Communication.

Indo-US Workshop, June23-25, 2003 Building Digital Libraries for Communities using Kepler Framework M. Zubair Old Dominion University.

Cryptography and Network Security (CS435) Part Fourteen (Web Security)

Web Security : Secure Socket Layer Secure Electronic Transaction.

XMPP Concrete Implementation Updates: 1. Why XMPP 2 »XMPP protocol provides capabilities that allows realization of the NHIN Direct. Simple – Built on.

1 Membership Control in P2P and MANETs Nitesh Saxena, Gene Tsudik, Jeong H. Yi Computer Science Department University of California at Irvine {nitesh,

AAI WG EMI Christoph Witzig on behalf of EMI AAI WG.

Washington System Center © 2005 IBM Corporation August 25, 2005 RDS Training Secure Socket Layer (SSL) Overview z/Series Security (Mary Sweat, Greg Boyd)

Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Kerberos Guilin Wang School of Computer Science 03 Dec

Brian A. LaMacchia Director, XCG Security & Cryptography, Microsoft Research.

Decentralized authorization and data security in web content delivery * Danfeng Yao (Brown University, USA) Yunhua Koglin (Purdue University, USA) Elisa.

10/25/04 Security of Ad Hoc and Sensor Networks (SASN) 1/22 An Attack on the Proactive RSA Signature Scheme in the URSA Ad Hoc Network Access Control Protocol.

A Simple Traceable Pseudonym Certificate System for RSA-based PKI SCGroup Jinhae Kim.

30 April 1998IBM1 Directory Services Best Practices Ellen Stokes, Directory Architect IBM Austin

1 APNIC Trial of Certification of IP Addresses and ASes RIPE October 2005 Geoff Huston.

Authentication and Authorisation in eduroam Klaas Wierenga, AA Workshop TNC Lyngby, 20th May 2007.

11-Dec-00D.P.Kelsey, Certificates, WP6 meeting, Milan1 Certificates for DataGrid Testbed0 David Kelsey CLRC/RAL, UK

ICICS2002, Singapore 1 A Group Signature Scheme Committing the Group Toru Nakanishi, Masayuki Tao, and Yuji Sugiyama Dept. of Communication Network Engineering.

Csci5233 Computer Security1 Bishop: Chapter 14 Representing Identity.

1 Netflow Collection and Aggregation in the AT&T Common Backbone Carsten Lund.

29/Jul/2009 Young Hoon Park.  M.Bellare, D.Micciancio, B.Warinschi, Foundations of Group Signatures: Formal Definitions, Simplified Requirements, and.

1 Secret Handshakes or Privacy-Preserving Interactive Authentication Gene Tsudik University of California, Irvine joint work with: Claude Castelluccia,

Decentralized Access Control: Overview Deepak Garg Foundations of Security and Privacy Fall 2009.

Digital Certificates Presented by: Matt Weaver. What is a digital certificate? Trusted ID cards in electronic format that bind to a public key; ex. Drivers.

Cryptography and Network Security

کاربرد گواهی الکترونیکی در سیستمهای کاربردی (امضای دیجیتال)

APNIC Trial of Certification of IP Addresses and ASes

Lecture 4 - Cryptography

SCONCE: Secure Computing and Networking Center

Proposed Grid Protocol Architecture Working Group

PKI (Public Key Infrastructure)

Presentation transcript:

1 ? Admission Control in Peer Groups Gene Tsudik, School of ICS, UC Irvine Yongdae Kim, CS Dept., U. of Minnesota Peer Groups: Any-to-any No hierarchy No centralized authority Common in MANETs Many Internet applications (e.g., content sharing) Security mechanisms difficult Prior work mostly in key mgmt and secure comm. Not really useful without admission control Also need revocation mechanisms (but admission must be solved first) Challenge: HOW TO ADMIT NEW MEMBERS SECURELY?

2 Group Membership Issues Naming: Does name  ownership? Location? Presence: –on-line: e.g., replicated servers, MANETs –off-line: e.g., Gnutella, MANETs Membership: –Static: reflected where? –Enumerated –Dynamic: admission rules/policies? Longevity: –Long-term –Transient What does a prospective member know? Group name, at least… Group location? Group membership? Group charter/policy? Group member(s)’ name(s)/address(es)? LDAP? DNS? What about transient groups?

3 Group Charter Admission policy must be available to prospective members 1 st step: embed in a group charter Who signs group charter? –Owner/Founder?  how to confirm ownership? –Charter members?  “peer”? –Current members?  who are they? Or fraction thereof? –CA?  natural choice Contents of Group Charter: Group name GAUTH Admission Policy Type (APT) APT-dependent data Issuer Name Signature

4 Group Authority Group charter must be available to prospective members Where does it come from? Who vouches for membership? –Owner/Founder? –“Charter” members? –Current members or fraction thereof? –CA? –Group Authority (GAUTH)?  natural choice Must be specified in group charter GAUTH’s placement (e.g., in/out of group) Composition of GAUTH (e.g., one or multiple entities) Sample Admission Policy Types  APT_ACL: easiest, no GMCs, no GAUTH  APT_GAUTH: discretion of GAUTH  APT_GROUP: collective  STATIC: fixed “t” or explicit subset  DYNAMIC: fractional  Any combination of the above… (no policy too weird)

5 Three Stages of Admission Stage 0:GC creation (off-line) Stage 1: New member acquires GC Stage 2: Optional admission procedure Stage 3: GAUTH issues a GMC Group Authority (GAUTH) CA signs Group Charter off-line delivery prospective member current members request to join group here’s our charter Group Authority (GAUTH) results of admission procedure prospective member  We focus on this 

6 Relevant crypto techniques (usable in Stage 2) Plain Signatures Inefficient: O(n) size, O(n) work Can be gathered asynchronously Can be used to prove membership No membership awareness Accountability easy Limited anonymity Linkable Accountable sub-Group Multi-Signatures Due to Ohta, et al. (CCS’01) Based on aggregated Schnorr signatures Efficient (but still linear in size) Synchronous (on-line protocol) Membership awareness Can be used to prove membership Accountability easy Limited anonymity Linkable Threshold Signatures Desmedt/Frankel (1989) and others Usually, fixed t Function sharing to avoid reconstr-n Inefficient Synchronous (on-line protocol) Membership awareness (partial, t) No Accountability Limited anonymity Linkable? Need trusted dealer to set up Dynamic Threshold Signatures Frankel, et al. (FOCS’97) Supports shrinking t Very inefficient Synchronous (on-line protocol) Membership awareness (partial) No Accountability Limited anonymity Linkable? Still need trusted dealer

7 Relevant crypto techniques (contd.) Group Signatures Chaum & Van Heijst (1991) and others Inefficient (relative to plain sigs.) Asynchronous No membership awareness Can be used to prove membership Ltd. accountability (off-line, by Group Mgr) Anonymity Not linkable (except by Group Mgr) Better Dynamic Threshold Signatures Kong, et al. (ICNP’01) Supports growing t Efficiency unclear Synchronous (on-line protocol) Membership awareness (partial) No Accountability Limited anonymity Linkable? Still need trusted dealer to set up

8 Summary of Key Features

9 Goals Investigate/assemble/implement mechanisms for peer group admission control Define formats for group charter and group membership certificates Design a “generic” group authority Develop a toolkit suitable for many APT-s and experiment! Anticipated “headaches”: Negative “voting” in stage 2 Dynamic revocation of membership (procedures, policy) Related Work : Policymaker (AT&T Research) – general policy framework Trustbuilder (UIUC) – allows admission policy expression Antigone (UMich) – stages 1&2 of large mcast (not peer!) groups

10 Preliminary “architecture” GAC = Group Admission Control For more info (including a paper) see: