Scalability of Geopriv LS GLI Project Toshiharu Kurisu Yasuhito Watanabe

Slides:

Advertisements

Similar presentations

Keiji Maekawa Graduate School of Informatics, Kyoto University Yasuo Okabe Academic Center for Computing and Media Studies, Kyoto University.

Advertisements

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

External User Security Model (EUSM) for SNMPv3 draft-kaushik-snmp-external-usm-00.txt November, 2004.

Why do current IP semantics cause scaling issues? −Today, “addressing follows topology,” which limits route aggregation compactness −Overloaded IP address.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Mohamed F. Mokbel University of Minnesota

IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,

Origins of ECRIT IETF has been working on location since 2000 –Spatial BoF, eventually GEOPRIV chartered in 2001 GEOPRIV provides location information.

Achieving Better Privacy Protection in WSNs Using Trusted Computing Yanjiang YANG, Robert DENG, Jianying ZHOU, Ying QIU.

November IPsec Remote Access BOF Washington D.C. November

CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.

Chord: A Scalable Peer-to-Peer Lookup Protocol for Internet Applications Stoica et al. Presented by Tam Chantem March 30, 2007.

A Scalable and Load-Balanced Lookup Protocol for High Performance Peer-to-Peer Distributed System Jerry Chou and Tai-Yi Huang Embedded & Operating System.

Chord: A Scalable Peer-to-peer Lookup Service for Internet Applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek and Hari alakrishnan.

Identity, Spheres and Privacy Rules Henning Schulzrinne (with Hannes Tschofenig and Richard Barnes) Workshop on Identity, Information and Context October.

APPLAUS: A Privacy-Preserving Location Proof Updating System for Location-based Services Zhichao Zhu and Guohong Cao Department of Computer Science and.

Control of Personal Information in a Networked World Rebecca Wright Boaz Barak Jim Aspnes Avi Wigderson Sanjeev Arora David Goodman Joan Feigenbaum ToNC.

Implementation Recommendation Team (IRT) Proposal Comments Sue Todd, Director, Product Management Monday 11 May 2009, San Francisco.

1 Lecture 11 Public Key Infrastructure (PKI) CIS CIS 5357 Network Security.

Who am I? Mats Ohlin Swedish Defence Materiel Administration (FMV) IT Security area –International Standardisation: ISO/IEC JTC 1/SC 27/WG 3 (Security.

Implementing ISA Server Publishing. Introduction What Are Web Publishing Rules? ISA Server uses Web publishing rules to make Web sites on protected networks.

1 TAPAS Workshop Nicola Mezzetti - TAPAS Workshop Bologna Achieving Security and Privacy on the Grid Nicola Mezzetti.

September, 2005What IHE Delivers 1 G. Claeys, Agfa Healthcare Audit Trail and Node Authentication.

Demonstration of the Software Prototypes PRIME PROJECT 17 December 2004.

November st IETF MIP6 WG Mobile IPv6 Bootstrapping Architecture using DHCP draft-ohba-mip6-boot-arch-dhcp-00 Yoshihiro Ohba, Rafael Marin Lopez,

Status and Development of VoIP based emergency calls Alexander Mayrhofer, nic.at GmbH The 1st European Security and Safety Summit Brussels, June 2007.

Shib-Grid Integrated Authorization (Shintau) George Inman (University of Kent) TF-EMC2 Meeting Prague, 5 th September 2007.

VoIP Security in Service Provider Environment Bogdan Materna Chief Technology Officer Yariba Systems.

Privacy-Aware Personalization for Mobile Advertising

Introducing CoMI Aligned with RestCONF (draft-ietf-netconf-restconf-04) Common data modeling language (YANG defined in RFC 6020) Protocol (CoAP instead.

Chapter 21 Distributed System Security Copyright © 2008.

1 Emergency Alerts as RSS Feeds with Interdomain Authorization Filippo Gioachin 1, Ravinder Shankesi 1, Michael J. May 1,2, Carl A. Gunter 1, Wook Shin.

How far removed are you? Scalable Privacy-Preserving Estimation of Social Path Length with Social PaL Marcin Nagy joint work with Thanh Bui, Emiliano De.

sec1 IEEE MEDIA INDEPENDENT HANDOVER DCN: sec Title: TGa_Proposal_Antonio_Izquierdo (Protecting the Information Service.

1 University of Palestine Information Security Principles ITGD 2202 Ms. Eman Alajrami 2 nd Semester

(we need your advice!) Jon Peterson MIT– December 2010 IETF & Privacy.

AAA and Mobile IPv6 Franck Le AAA WG - IETF55. Why Diameter support for Mobile IPv6? Mobile IPv6 is a routing protocol and does not deal with issues related.

The Replica Location Service The Globus Project™ And The DataGrid Project Copyright (c) 2002 University of Chicago and The University of Southern California.

1 Integrating security in a quality aware multimedia delivery platform Paul Koster 21 november 2001.

GLOBE DISTRIBUTED SHARED OBJECT. INTRODUCTION  Globe stands for GLobal Object Based Environment.  Globe is different from CORBA and DCOM that it supports.

Company Confidential 1 ICMPv6 Echo Replies for Teredo Clients draft-denis-icmpv6-generation-for-teredo-00 behave, IETF#75 Stockholm Teemu Savolainen.

Third-party ALTO server discovery draft-kiesel-alto-3pdisc-02 Sebastian Kiesel Marco Tomsu Nico Schwan Michael Scharf IETF 77, March 2010.

Introduction to Information Security

1 Secure Peer-to-Peer File Sharing Frans Kaashoek, David Karger, Robert Morris, Ion Stoica, Hari Balakrishnan MIT Laboratory.

MWIF Confidential MWIF-Arch Security Task Force Task 5: Security for Signaling July 11, 2001 Baba, Shinichi Ready for MWIF Kansas.

Anonymity - Background R. Newman. Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide.

Bloom Cookies: Web Search Personalization without User Tracking Authors: Nitesh Mor, Oriana Riva, Suman Nath, and John Kubiatowicz Presented by Ben Summers.

Encryption protocols Monil Adhikari. What is SSL / TLS? Transport Layer Security protocol, ver 1.0 De facto standard for Internet security “The primary.

GEONET Brainstorming Document. Content Purpose of the document Brainstorming process / plan Proposed charter Assumptions Use cases Problem description.

1 OSPFv3 Automated Group Keying Requirements draft-liu-ospfv3-automated-keying-req-01.txt Ya Liu, Russ White,

1 ipv6-node-02.PPT/ 18 November 2002 / John Loughney IETF 55 IPv6 Working Group IPv6 Node Requirements draft-ietf-ipv6-node-requirements-02.txt John Loughney.

CS 347Notes081 CS 347: Parallel and Distributed Data Management Notes 08: P2P Systems.

IETF sec - 1 Security Work in the IETF Scott Bradner Harvard University

Strawman Recharter Nov 12, Basic Problem “The purpose of this working group is to standardize IP routing protocol functionality suitable for wireless.

Netprog: Chat1 Chat Issues and Ideas for Service Design Refs: RFC 1459 (IRC)

1 Secure Peer-to-Peer File Sharing Frans Kaashoek, David Karger, Robert Morris, Ion Stoica, Hari Balakrishnan MIT Laboratory.

GEONET Brainstorming Document. Content Purpose of the document Brainstorming process / plan Proposed charter Assumptions Use cases Problem description.

多媒體網路安全實驗室 A Secure Privacy-Preserving Roaming Protocol Based on Hierarchical Identity-Based Encryption for mobile Networks 作者 :Zhiguo Wan,Kui Ren,Bart.

1 © 2007 Cisco Systems, Inc. All rights reserved.Cisco Public Network Architecture Characteristics  Explain four characteristics that are addressed by.

SMARTIE Area of Activity: Framework Programme 7Framework Programme 7 ICT Objective 1.4 IoT (Smart Cities) Period:1 st September st August 2016.

Authentication and handoff protocols for wireless mesh networks

Phil Hunt, Hannes Tschofenig

Cryptography and Network Security

Security Services for

pVault Sharing Architecture

HTTP Enabled Location Delivery (HELD)

Location Privacy.

RFID Security & Privacy at both Physical and System Levels - Presentation to IoT-GSI 26th August 2011 Robert H. Deng & Yingjiu Li School of Information.

Building Peer-to-Peer Systems with Chord, a Distributed Lookup Service

LISP Anonymous EID draft-farinacci-lisp-eid-anonymity-01 Dino Farinacci and Padma Pillay-Esnault LISP WG Meeting IETF98 – 03/30/2017.

Presentation transcript:

Scalability of Geopriv LS GLI Project Toshiharu Kurisu Yasuhito Watanabe Sohgo Takeuchi Hideki Sunahara Fumio Teraoka

GLI Project Problem Statement In Geopriv WG, it does not seem that there are discussion about the scalability of LS. How about Internet ITS? In Japan, there are at least 70,000,000 cars. –Probe System Do you think that Geopriv Architecture can work well under such a situation?

GLI Project Problem Statement Huge numbers of various nodes will exist and be managed by one Location Server. –The system MUST scale !! –But functions for Privacy Rules defined in Geopriv Requirements does not seem to scale. Is there anyone who is implementing system based on Geopriv Requirements? –How many LGs do you assume? –What do you think about scalability?

GLI Project Geopriv Requirements Location Generator Location Server Location Recipient Rule Holder Apply rules register query answer Rule Maker If huge numbers of LGs & LRs exist, High frequency registrations & queries may come. In such a situation, applying rules to each query burdens LS. Location Generator Location Generator Location Generator Location Generator Location Generator Location Generator Location Generator Location Generator Location Generator

GLI Project Relation between Privacy & Scalability There is a tradeoff between Privacy Protection and System Scalability. What is the minimum Privacy Protection to achieve LS’s scalability? Could we ask the Geopriv WG to take on: –to define the minimum privacy protection to achieve scalability for Geopriv using protocol guideline, and –to submit GLI using protocol as an experimental RFC as an example of using protocol that focuses on scalability?

GLI Project Our minimum privacy protection policy GLI defines that the minimum privacy protection policy is anonymity. –to hide the real ID –to avoid tracking –to hide the location information to the third party.

GLI Project GLI system (1) A system on the Internet that manages the latest location information of mobile nodes in all over the world. Assumptions of using case: –Huge Numbers of LGs exist. –e.g., Internet ITS – probe system. at least 70,000,000 cars exist in Japan. Requirements –Scalability tolerate to huge numbers of frequent registrations and queries –Privacy Protection.

GLI Project GLI system (2) scalability & privacy protection How to achieve scalability –Distributed management like DNS. –One server is estimated to be able to manage 2,000,000 nodes. How to protect privacy systematically. –Privacy protection policy “You can get my location info. if you are credible.” hiding the real ID, avoiding tracking, and avoiding to get location info. by the third party. –GLI system introduces Hashed ID (HID) as mobile node’s ID. HID can be generated by only the credible party. HID changes periodically.

GLI Project Comparison with Geopriv Requirements (RFC3693) Privacy Rules –Some Privacy Rules are realized by HID of GLI system. Only credible Location Recipient can specify a mobile node by its HID. Unlinked Pseudonyms: not link to REAL ID Target can control the range to open Target's position with keeping anonymity. –But GLI system has no Rule Maker & Rule Holder. Every Location Recipient can receive HID and location information of mobile nodes. GLI cannot realize flexible privacy protect like Privacy Rules. Because GLI system focuses on system scalability.

GLI Project Comparison with Geopriv Reauirement(RFC3693) Registration client GLI Servers (Registration, HID, Area) Look-up Client Rule Holder Location Generator Location Server Location Recipient Apply rules register query answer Authentication Encrypted Path IPsec Rule Maker HID Target can control the range to open Target's position with keeping anonymity Integrity & Confidentiality

GLI Project Summary Our contribution to Geopriv WG –Bring up the relation between Privacy Protection & Scalability. –Show GLI as an example of geopriv using protocol –Define items related to scalability in the guideline Our GOAL –Submit GLI using protocol draft as an experimental RFC as an example of using protocol that focuses on scalability.