Low-Cost Threshold Cryptography HSM for OpenDNSSEC Francisco - - PowerPoint PPT Presentation

low cost threshold cryptography hsm for opendnssec
SMART_READER_LITE
LIVE PREVIEW

Low-Cost Threshold Cryptography HSM for OpenDNSSEC Francisco - - PowerPoint PPT Presentation

Aug 20, 2022 222 likes •452 views

Low-Cost Threshold Cryptography HSM for OpenDNSSEC Francisco Cifuentes francisco@niclabs.cl Problem description To satisfy security needs, DNS operators use Hardware Security Modules. Specialized hardware that have special security

slide-1
SLIDE 1

Low-Cost Threshold Cryptography HSM for OpenDNSSEC

Francisco Cifuentes

francisco@niclabs.cl

slide-2
SLIDE 2

Problem description

  • To satisfy security needs, DNS operators use

Hardware Security Modules.

  • Specialized hardware that have special security

properties.

  • http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf
slide-3
SLIDE 3

Problem description

  • HSM are expensive.
  • $50 - $50000
  • FIPS 140-2 level 1 to level 4.
  • High security level implies high price.
  • Small institutions want to deploy DNSSEC but

they can not buy them.

slide-4
SLIDE 4

Problem description

  • What if ...

– we could achieve a good security level without

paying that much?

– we use old and not in use hardware, and we

achieve a good security level not paying at all...

slide-5
SLIDE 5

Low-Cost Threshold Cryptography HSM for OpenDNSSEC

Francisco Cifuentes

francisco@niclabs.cl

Proposed solution:

slide-6
SLIDE 6

Solution description

  • Threshold Cryptography

N1 N2 N3 N4 N5 SD

slide-7
SLIDE 7

Solution description

  • Threshold Cryptography

N1 N2 N3 N4 N5 SD

slide-8
SLIDE 8

Solution description

  • Threshold Cryptography
slide-9
SLIDE 9

Solution description

  • Threshold Cryptography:

– Secure – Fault tolerant – Robust

slide-10
SLIDE 10

Solution description

  • HSM basic architecture
slide-11
SLIDE 11

Solution description

  • TCHSM Architecture
slide-12
SLIDE 12

Solution description

OpenDNSSEC Architecture

slide-13
SLIDE 13

Solution description

OpenDNSSEC Architecture

TCHSM

slide-14
SLIDE 14

Solution description

slide-15
SLIDE 15

Experiments and results

2 Configuration

  • Typical desktop computer
  • Intel dual-core processors at 2.8 GHz
  • 4 MB of memory cache and 1 GB of

RAM

  • (one of them used as DNS server with

OpenDNSSEC)

  • Raspberry PI
  • Broadcom BCM2835 ARM unicore at

700 MHz, 128 KB of memory cache

  • 512 MB RAM

Gigabit LAN with latency lower than 1 second, 8 machines of the same type connected.

slide-16
SLIDE 16

Our Raspberry PI Cluster!

slide-17
SLIDE 17

Experiments and results

Experiment

  • 8 nodes try to sign the zone registry.
  • The signature dealer waits until the first 5 not compromised

nodes sign the zone registry.

  • Measuring the average time of the generation of 1000 RRSIG

signatures.

  • Also measuring the average time of the generation of 1000

RRSIG signatures using the SoftHSM solution made by OpenDNSSEC's developers.

slide-18
SLIDE 18

Experiments and results

Results

Key Size 1024 bits 2048 bits Project Cost SoftHSM TCHSM SoftHSM TCHSM Desktop PC 5 ms 69 ms 14 ms 283 ms $0† Raspberry PI 21 ms 382 ms 81 ms 1408 ms $35 x 8 = $280 † We use old computers that were not in use :-)

slide-19
SLIDE 19

Implementation problems

  • Managed systems memory zeroization.
slide-20
SLIDE 20

Future Work

  • Implementation diversity.
  • Full distributed threshold RSA.
  • GPU Usage.
  • Replication / Migration.
slide-21
SLIDE 21

Distributed HSM

Francisco Cifuentes - francisco@niclabs.cl

Links:

  • www.niclabs.cl
  • github.com/niclabs/tscrypto