a consumer driven access control approach to censorship
play

A consumer-driven access control approach to censorship - PowerPoint PPT Presentation

Dec 05, 2023 •227 likes •579 views

A consumer-driven access control approach to censorship circumvention in content-centric networking Jun Kurihara, Kenji Yokota and Atsushi Tagami KDDI R&D Laboratories, Inc. ACM ICN 2016 Kyoto, Japan, Sep. 28, 2016 1 Sep. 28, 2016 Jun

  1. A consumer-driven access control approach to censorship circumvention in content-centric networking Jun Kurihara, Kenji Yokota and Atsushi Tagami KDDI R&D Laboratories, Inc. ACM ICN 2016 Kyoto, Japan, Sep. 28, 2016 1 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  2. Outline of my talk 1. Introduction 2. Censorship circumvention in CCN 3. Basics of consumer-driven access control approach 4. Enhancement using manifest and nameless object 5. Conclusion 2 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  3. Introduction 3 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  4. Censorship: A serious problem in networking Censorship in a network: Monitoring network messages, checking ‘ what is requested ’, and dropping messages in the blacklist by a certain authority. Censorship is widely spread now and serious problem in the Internet 4 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  5. Censorship is easily enforceable in CCN Content data itself can be encrypted in a certain AC, but interest name is not. Explicitly-given and semantic name in CCN made censorship trivial. consumer domain: /kddi router Censorship authority publisher • Capture and analyze interests; and • Drop any interests by checking only their names “democracy” domain: /kyoto 5 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  6. Censorship circumvention in CCN 6 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  7. Two types of countermeasures in CCN • Tor-like scheme • Proxy-based scheme • Multi-layered encryption at • Establishing anonymized channel anonymizing routers between proxy and consumer • Significant overhead and delay • Simpler and faster than Tor-like scheme R. Tourani, S. Misra, J. Kliewer, S. Ortegel, and T. Mick, “Catch me if you can: A practical framework to evade censorship in information-centric S. DiBenedetto, P. Gasti, G. Tsudik, and E. Uzun, “AND ā NA: Anonymous networks,” in Proc. ACM ICN 2015 . named data networking application,” in Proc. NDSS 2012 . C. Ghali, M. A. Schlosberg, G. Tsudik, and C. A. Wood, “Interest-based access control for content centric networks,” in Proc. ACM ICN 2015 . 7 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  8. Proxy-based approach Our scheme is basically categorized as a proxy–based scheme Anonymized interest ( /<routable prefix>/ + encrypted name ) domain: /kddi ? (/kddi/democracy.mpg) Trusted proxy encrypt! decypt! interest /kddi/democracy.mpg plaintext name Communication via encrypted name 8 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  9. Cache recycling problem of proxy-based approaches Anonymized communication is established between each consumer and a proxy under distinct encryption key. Anonymized communication channel Consumer A Consumer B Standard CCN behind the proxy The same content is queried via different names by different users Cached content never be recycled 9 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  10. Basics of consumer-driven access control approach 10 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  11. System model Entity: CCN basic parties + cache enablers E i + anonymizer A + attacker • cache enabler E 2 (as a router) anonymizer A (trusted proxy) consumers attacker publisher (as a router) domain: /kddi CCN router cache enabler E 1 (as a router) Content names follow a conventional (ICN) hierarchical naming scheme like • URL (e.g., /kddi/demo/video.mpg). 11 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  12. Attacker definitions We consider two types of attackers. Stronger version Passive Attacker Active Attacker Capture/analyze interests Capture/analyze interests Modify interests Learn “ what is requested ” • and “ who is requesting ”; Masquerade as legitimate Drop/filter interests • consumers *Passive ⊃ Active 12 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  13. Key elements of our approach [Against passive attacker] (1) Encryption-based access control to interest names for cache enablers and anonymizer [Against passive/active attacker] (2) Authentication and decryption with hidden consumer ID at cache enablers and anonymizer 13 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  14. (1) Encryption-based access control to names: Preliminary Access control: A technique used to regulate who or what can view raw/original data in a computing environment. Encryption-based access control: Data is encrypted in such a way that only authorized users are allowed to decrypt the encrypted data and obtain the raw data. With Encrypted valid key data Possibly different With no key With valid key Assigned decryption keys are identified as access rights 14 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  15. (1) Encryption-based access control to names: Overview of the approach Consumer grants access rights to original interest names to cache enablers E i and anonymizer A via the encryption-based access control Assign key for E 2 Assign key for A E 2 Assign key for E 1 anonymizer A domain: /kddi cache enabler E 1 15 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  16. Consumers encrypts interest names in such a way that pre-authorized E i and A can decrypt them and obtain original names. [Processing incoming interest at E i ] Anonymized interest (/routable prefix/ + encrypted name) (1) Decrypt (/kddi/democracy.mpg) (/kddi/democracy.mpg) /kddi/democracy.mpg Qualified (2) CS search with original name cache enabler E i CS /kddi/democracy.mpg (3) Respond by encrypted name (/kddi/democracy.mpg) content object *** illustrated only the case of cache hit for simplicity. *** 16 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  17. [Processing incoming content at E i ] (simply the dual of interest case) content object (/kddi/democracy.mpg) (1) Decrypt (/kddi/democracy.mpg) Qualified cache enabler E i /kddi/democracy.mpg (2) Cache with original name for recycle CS /kddi/democracy.mpg [Key observation] Access control to interest names ↔ Access control to cache-recycling opportunities *** omitted the process of PIT entry consumption for simplicity. *** 17 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  18. (2) Authentication and decryption with hidden ID: Preliminary [Observations] E i and A must learn the consumer ID from an interest to find a consumer specific key(s) for name decryption and interest authentication via HMAC/signature Consumer ID itself leaks the consumer information to attackers [Requirements] Consumer ID must be included and hidden in interests • Only cache enablers and anonymizer learn the ID from an interest for • decryption and authentication 18 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  19. (2) Authentication and decryption with hidden ID: Overview of the approach Anonymizer uses a public key broadcast encryption for hiding IDs in interests. Decryption keys are assigned to cache enablers • Public (encryption) key is published. • Having public key Assign key for E 2 Store key for A E 2 Assign key for E 1 anonymizer A domain: /kddi Having public key E 1 19 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  20. Consumer generates the anonymizing interest from the encrypted name as: Broadcast public key from A (/kddi/democracy.mpg) (Consumer ID) HMAC Encrypted ID Encrypted name HMAC generation by name encryption key 20 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  21. E i and A authenticate and generate the incoming interest as: (/kddi/democracy.mpg) (Consumer ID) HMAC Encrypted ID Encrypted name Assigned broadcast decryption key Consumer ID Retrieve the name encryption key associated to the ID from key storage Decrypt! Authenticate! 21 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  22. Advantage and disadvantage [Security for passive attacker] • No leakage about content name (what) • No leakage about consumer identity (who) [Security for active attacker] • Interest modification can be detected 22 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  23. [Efficiency] • In-network caching can be fully leveraged at cache enablers E i ’s and anonymizer A • More beneficial as # of E i ’s increases. trade-off between cache recycling opportunity and overhead • Cryptographic operations (access control and authentication) at E i and A may involve serious computational cost. • More serious overhead as # of E i ’s increase. 23 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  24. This problem is solved by combining our approach with manifest and nameless objects. We minimize the overhead with maintaining the security and maximizing the benefit of in-network caching. 24 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  25. Enhancement using manifest and nameless object 25 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

  26. Preliminary: Manifest and nameless objects in CCNx Manifest : Content object providing a list of content objects (names and hashes) Manifest structure content object catalog Names Hashes /kddi/democracy.mpg/1 0xABCD /kddi/democracy.mpg/2 0x1234 /kddi/democracy.mpg/3 0xA1B2 … … Guarantee of integrity and unforgeability Additional information (e.g., decryption key name/hash) signature Listed items can be authenticated only by lightweight hash verification. Manifest-based content retrieval: Consumer first obtain and parse manifest, then retrieve listed content objects. 26 Sep. 28, 2016 Jun Kurihara (KDDI R&D Labs.)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct accesses to object are authorized a scheme for mapping users to allowed actions Protection objects : system resources for which protection is

576 views • 21 slides
Access Control and Protection Overview Access control: What and Why Abstract Models of

Access Control and Protection Overview Access control: What and Why Abstract Models of

Access Control and Protection Overview Access control: What and Why Abstract Models of Access Control Discretionary acces control Mandatory access control Real systems: Unix Access Control Model Access control Access

817 views • 47 slides
Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a

Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a

Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a simple, modular approach to networked access control with scalability in mind. Easy management from a central location PC from anywhere with an

196 views • 9 slides
Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control?

Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control?

Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control? How Is Access Determined? Who Determines Access? Forms of Access Control SELinux Booleans iptables File Access Control Lists Apache Access Control

711 views • 36 slides
1 General Access Control General Access Control Control of access to memory relatively easy:

1 General Access Control General Access Control Control of access to memory relatively easy:

Role of Access Control Before closing back doors we need to close front doors Access control: determines access to files &amp; processes in OS Fall 2008 We will return to these themes throughout the course Fall 2008 CS

512 views • 6 slides
A Connector- A Connector- Centric Approach Centric Approach to Architectural to Architectural

A Connector- A Connector- Centric Approach Centric Approach to Architectural to Architectural

A Connector- A Connector- Centric Approach Centric Approach to Architectural to Architectural Access Control Access Control Jie Ren Department of Informatics University of California, Irvine Outline Overview Architecture and

917 views • 74 slides
A Special Culture: A Mission-Driven Approach A Mission-Driven Approach CHRISTUS St. Michael

A Special Culture: A Mission-Driven Approach A Mission-Driven Approach CHRISTUS St. Michael

A Special Culture: A Mission-Driven Approach A Mission-Driven Approach CHRISTUS St. Michael Health System Chris Karam, President/CEO Jennifer Wright, Organizational Effectiveness Manager Tracy Lawrence Collin Raye Ross Perot Bill Clinton 42

360 views • 6 slides
SYSTEM DIAGRAMS Door Entry &amp; Access Control ACCESS CONTROL ACCESS CONTROL Allowing

SYSTEM DIAGRAMS Door Entry &amp; Access Control ACCESS CONTROL ACCESS CONTROL Allowing

SYSTEM DIAGRAMS Door Entry &amp; Access Control ACCESS CONTROL ACCESS CONTROL Allowing residents / staff access to site areas Main entrance Vehicle entrances Pedestrian entrances Gate / Barrier entrance Bin / Bike / Refuge

336 views • 14 slides
Regulation of Online Media: A Comparison Assumptions about censorship? What is censorship?

Regulation of Online Media: A Comparison Assumptions about censorship? What is censorship?

Regulation of Online Media: A Comparison Assumptions about censorship? What is censorship? History of Censorship Arguments for censorship Arguments against censorship What do we mean by media? AUSTRALIA Statutory Regulation Recent

566 views • 37 slides
Consumer Driven Healthcare Health Savings Accounts and Health Reimbursement Arrangements 1

Consumer Driven Healthcare Health Savings Accounts and Health Reimbursement Arrangements 1

Presented By: Marty Hobbs Director of Business Development, 125Company Consumer Driven Healthcare Health Savings Accounts and Health Reimbursement Arrangements 1 Introducing Consumer Driven Healthcare (CDHC) Employer reactions to increases in

266 views • 25 slides
AI-driven Personnel Management and Access Control System June 7, 2019 Market Analysis 1 2

AI-driven Personnel Management and Access Control System June 7, 2019 Market Analysis 1 2

AI-driven Personnel Management and Access Control System June 7, 2019 Market Analysis 1 2 Technical Solution 3 Case Study 4 Market Scale Market Requirement Security Convenience Personnel Management Labor Cost Provide higher

432 views • 32 slides
Overview Basic Principles Access Control Methodologies Controls Access Control Designs

Overview Basic Principles Access Control Methodologies Controls Access Control Designs

Overview Basic Principles Access Control Methodologies Controls Access Control Designs Access Control Administration Accountability Chapter 2 Access Control Models Identification and Authentication Methods Lecturer:

708 views • 9 slides
Censorship and Self-Censorship in Research on the Iraq War By Michael Spagat Department of

Censorship and Self-Censorship in Research on the Iraq War By Michael Spagat Department of

Censorship and Self-Censorship in Research on the Iraq War By Michael Spagat Department of Economics Royal Holloway, University of London Presentation given at the International Studies Association 57 th annual convention, Atlanta, GA, March

504 views • 24 slides
Measuring and Circumventing Internet Censorship and Control Nick Feamster Georgia Tech

Measuring and Circumventing Internet Censorship and Control Nick Feamster Georgia Tech

Measuring and Circumventing Internet Censorship and Control Nick Feamster Georgia Tech http://www.cc.gatech.edu/~feamster/ Joint work with Sam Burnett, Santosh Vempala, Sathya Gunasekaran, Crisitan Lumezanu, Hans Klein, Wenke Lee, Phillipa

570 views • 38 slides
Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control

Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control

Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control Introduction to Computer Security Access control, contd Announcements intermission Stephen McCamant Capability-based access control University

380 views • 7 slides
D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient

D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient

D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient access control and authentication checks Insecure access control methods Private, internal functions and data are accessible through a

547 views • 11 slides
The Veil-Framework Will (@harmJ0y) Veris Group Adaptive Threat Division The Veil-Framework

The Veil-Framework Will (@harmJ0y) Veris Group Adaptive Threat Division The Veil-Framework

The Veil-Framework Will (@harmJ0y) Veris Group Adaptive Threat Division The Veil-Framework A toolset aiming to bridge the gap between pentesting and red teaming capabilities Veil-Evasion : flagship tool, generates AV- evading

755 views • 24 slides
Lecture 19: Generative Models, Part 1 Justin Johnson November 20, 2019 Lecture 19 - 1 Last

Lecture 19: Generative Models, Part 1 Justin Johnson November 20, 2019 Lecture 19 - 1 Last

Lecture 19: Generative Models, Part 1 Justin Johnson November 20, 2019 Lecture 19 - 1 Last Time: Videos Many video models : Single-frame CNN (Try this first!) Late fusion Early fusion 3D CNN / C3D Two-stream networks CNN + RNN

1.59k views • 102 slides
Prototyping to Design: Early Analysis for Power Distribution Network Kai Wang, Aveek Sarkar,

Prototyping to Design: Early Analysis for Power Distribution Network Kai Wang, Aveek Sarkar,

ISPD 2009 Prototyping to Design: Early Analysis for Power Distribution Network Kai Wang, Aveek Sarkar, Norman Chang, Shen Lin 2009-4-12 Apache Design Solutions Inc. Outline Power integrity challenges Early analysis overview Power

443 views • 40 slides
IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite Link layer: ethernet, wifi etc. Internet

IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite Link layer: ethernet, wifi etc. Internet

IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite Link layer: ethernet, wifi etc. Internet layer: addressing and routing Transport layer: Setting up channels (between ports), with traffic control, error-correction etc. TCP/IP for

676 views • 16 slides
Runtime Power Management Framework for I/O Devices in the Linux Kernel Rafael J. Wysocki Faculty

Runtime Power Management Framework for I/O Devices in the Linux Kernel Rafael J. Wysocki Faculty

Runtime Power Management Framework for I/O Devices in the Linux Kernel Rafael J. Wysocki Faculty of Physics UW / SUSE Labs / Renesas June 10, 2011 Rafael J. Wysocki ( rjw@sisk.pl ) Runtime Power Management Framework June 10, 2011 1 / 17

686 views • 43 slides
GlideinWMS Marco Mambelli Stakeholders Meeting May 8, 2019 Overview Completed and Upcoming

GlideinWMS Marco Mambelli Stakeholders Meeting May 8, 2019 Overview Completed and Upcoming

GlideinWMS Marco Mambelli Stakeholders Meeting May 8, 2019 Overview Completed and Upcoming releases GlideinWMS roadmap Developers spotlight Reference slides GlideinWMS Architecture Quick Facts 2 Marco Mambelli |

591 views • 23 slides
Course Objectives Database Construction Design Construction and Usage SQL DDL and DML

Course Objectives Database Construction Design Construction and Usage SQL DDL and DML

Course Objectives Database Construction Design Construction and Usage SQL DDL and DML Relational Algebra Interfacing Usage Course Objectives Construction When the course is through, you should Given a database schema with related

462 views • 13 slides
Getting Started James Lamb Instructor DataCamp Time Series with data.table in R Getting data

Getting Started James Lamb Instructor DataCamp Time Series with data.table in R Getting data

DataCamp Time Series with data.table in R TIME SERIES WITH DATA . TABLE IN R Getting Started James Lamb Instructor DataCamp Time Series with data.table in R Getting data from Quandl Quandl provides an R package for pulling data aluminumDF

662 views • 30 slides

More recommend