moderator controlled information sharing by identity
play

Moderator-controlled Information Sharing by Identity-based - PowerPoint PPT Presentation

Dec 13, 2023 •149 likes •442 views

Moderator-controlled Information Sharing by Identity-based Aggregate Signatures for Information Centric Networking Tohru Asami 1 , Byambajav Namsraijav 1 , Yoshihiko Kawahara 1 , Kohei Sugiyama 2 , Atsushi Tagami 2 , Tomohiko Yagyu 3 , Kenichi

  1. Moderator-controlled Information Sharing by Identity-based Aggregate Signatures for Information Centric Networking Tohru Asami 1 , Byambajav Namsraijav 1 , Yoshihiko Kawahara 1 , Kohei Sugiyama 2 , Atsushi Tagami 2 , Tomohiko Yagyu 3 , Kenichi Nakamura 4 , Toru Hasegawa 5 1 The University of Tokyo 2 KDDI R&D Laboratories 3 NEC Corporation 4 Panasonic Corporation 5 Osaka University

  2. Ag Agenda • Introduction • Moderator Controlled Information-Sharing Service (MIS) • Identity-Based Aggregate Signatures (IBAS) • Implementation of IBAS in NDN • Evaluation Results • RSA vs IBAS packet size comparison • Throughput (computational overhead) • Conclusion • Future Discussions 2 San Francisco, October 2015 ACM ICN

  3. Introduction 3 San Francisco, October 2015 ACM ICN

  4. Safety co Sa confirmation methods at at th the 2011 Tōhoku ea Tō earthquake e and tsunami 100 1.4 90 Useful/Usage = Availability 80 Usage Useful Availability 1.2 Usage & Useful (%) 70 1 60 0.8 50 40 0.6 30 0.4 20 0.2 10 0 0 The availability of SNS was around 50%. How to increase it? 4 San Francisco, October 2015 ACM ICN

  5. In Introductio ion Goal • All-weather social networking service (SNS) • Available even if the central server is down Propose • Moderator-controlled information sharing (MIS) service: an ICN-based distributed SNS 5 San Francisco, October 2015 ACM ICN

  6. Moderator Controlled Information-Sharing Service (MIS) 6 San Francisco, October 2015 ACM ICN

  7. Mode Mo derator r Cont ntrolled d Inf nform rmation- Sh Sharing Service ce (MIS) • routing Administrator • timestamp Moderator 2 Moderator n Moderator 1 ……….. Peer 1 Peer 2 Peer m Peer 3 7 San Francisco, October 2015 ACM ICN

  8. Ro Roles of Entities • Peer • publish messages to moderated groups • subscribe messages from moderated groups to assure • Moderator non-repudiation • check the messages in their group with signature • timestamp the moderated messages • relay moderated messages to the peers • Administrator • moderates the public group • conducts initial setups 8 San Francisco, October 2015 ACM ICN

  9. Mo Mode derator r Cont ntrolled d Inf nform rmation- Sh Sharing Service ce (MIS) at a Disaster Administrator (Moderator of the public group) Groups Public David’s friends Shelter#2 GW Shelter#1 GW David (Moderator of group: David’s Friends) John Alice Bob 9 San Francisco, October 2015 ACM ICN

  10. Re Requirements fo for MIS (A (All-we weather SNS) Without relying on a central server: • Peer can publish/subscribe a message if an accessible moderator exists • Subscriber can verify the publisher and moderator’s authenticity • Assure non-repudiation 10 San Francisco, October 2015 ACM ICN

  11. Ad Advantages of ICN for MIS Content signatures • authentication of received messages Network caches and routing • Fault tolerant even if the administrator is unreachable 11 San Francisco, October 2015 ACM ICN

  12. Dis Disad advan antag ages of ICN for MIS Central verification authority of public key infrastructure (PKI) must be reachable • In a disaster scenario, one may not be able to verify a message’s signature if a required Certification Authority (CA) is out of reach. Solved by ID-based Signatures Large overhead for short messages • Each message contains two signatures Solved by Aggregate Signatures 12 San Francisco, October 2015 ACM ICN

  13. Identity-Based Aggregate Signatures (IBAS) 13 San Francisco, October 2015 ACM ICN

  14. Ag Aggregate si signatures s and Id Iden entity-ba based d si signatures • Aggregate signatures : aggregating n signatures on n distinct messages from n distinct users into a single signature of constant size m 1 m 2 m 3 σ 1 σ 1 ∪ σ 2 ∪ σ 3 σ 1 ∪ σ 2 • Identity-based signatures : IDs such as email address or phone number is used instead of public keys. Verifier only needs PKG’s public parameter and the signer’s ID to verify a message. 14 San Francisco, October 2015 ACM ICN

  15. Pr Propose ICN with Identity-ba based Ag Aggregate Si Signatures (I (IBAS) IBAS [1]: combination of aggregate signatures and IBS IBAS operations • Setup • Private key distribution Offline Online • Individual signing (Master Key, Private Key Public Parameter) • Aggregation Generator (PKG) • Verification Public private private ID 2 ID 1 , ID 2 ID 1 Parameter key 1 key 2 Accept m 1 || σ 1 Signer 1 Signer 2 Verifier m 1 || m 2 / ||(σ 1 ∪ σ 2 ) (Publisher) (Moderator) (Subscriber) Reject m 1 m 2 [1] Gentry, Craig, and Zulfikar Ramzan. "Identity-based aggregate signatures.” 15 San Francisco, October 2015 ACM ICN

  16. Implementation of IBAS in NDN 16 San Francisco, October 2015 ACM ICN

  17. Im Implem lemen entat atio ion of of I IBAS S in in NDN DN [1 [1] Extend NDN’s open source C++ library ndn-cxx [2]. Application (Moderator-Controlled • Add a new New Information Sharing) SignatureType named signIbas() / SignatureSha256Ibas which verifySignatureIbas() signAndAggregateIbas() tells that the content is ndn- signed using IBAS. cxx & KeyChain Validator New • Use PBC Library[3] for pairing and other elliptic IbasSigner New curve computations. [1] https://github.com/byambajav/ndn-ibas Pairing & Elliptic Curve PBC Library Computation [2] https://github.com/named-data/ndn-cxx [3] https://crypto.stanford.edu/pbc/ 17 San Francisco, October 2015 ACM ICN

  18. Evaluation Results 18 San Francisco, October 2015 ACM ICN

  19. Ev Evaluation Scenario Measure following two metrics • Signature size : for a disaster scenario • Computational overhead of signature generation and verification: for normal condition compare this Government packet’s size (Moderator) (2) (4) (1) (3) verify, sign, and aggregate (a) (c) Bob Alice (Subscriber) (Publisher) sign verify 19 San Francisco, October 2015 ACM ICN

  20. Ev Evaluation Scenario: Assumptions • IBAS’s offline steps ( setup and private key distribution ) are done beforehand. • In PKI, the subscriber has all the certificates required for signature verification in advance. 20 San Francisco, October 2015 ACM ICN

  21. Results: RSA vs IBAS pack cket size co comparison Structure of a data packet sent from moderator to subscriber 1(DATA-TLV)+3(TLV-LENGTH) Bytes 1(DATA-TLV)+3(TLV-LENGTH) Bytes 74 Bytes Name 74Bytes Name /moderators/Government/safetyConfirmation /moderators/Government/safetyConfirmation /wonderland/Alice/2/9 /wonderland/Alice/2/9 MetaInfo 5 Bytes MetaInfo 5 Bytes <META-INFO-TYPE TLV-LENGTH ContentType> <META-INFO-TYPE TLV-LENGTH ContentType> Moderator: Government Moderator: Government 110+x Bytes Content Accepted: Thu Oct 02 09:15:30 2014 Accepted: Thu Oct 02 09:15:30 2014 452+x Bytes From: Alice From: Alice Content Published: Thu Oct 02 08:53:09 2014 Published: Thu Oct 02 08:53:09 2014 I am OK. I am OK. Signature 342 bytes 157 bytes Signature <Aggregation of individual signatures made by <Signature made by Publisher> Moderator and Publisher> Signature 347 bytes <Signature made by Moderator> (a) RSA-2048 (b) IBAS 21 San Francisco, October 2015 ACM ICN

  22. Re Results: Message size reduced by 60% Packet size* of different signature methods (byte) Thus, in case of a message “ I’m OK ” (6 bytes) the size of the packet sent from IBAS(512, 160) moderator to message subscriber will be 888B content size and 356B for RSA-2048 and IBAS respectively *size also depends on the IBAS(512, 160) participators’ names 22 San Francisco, October 2015 ACM ICN

  23. Re Results: Assumptions of c computational ov overhead com omparison on • Choose signatures of almost same strength: RSA-2048, ECDSA-256, and IBAS(224, 112) qbits rbits Comparable Strengths IFC (e.g., RSA) and ECC (e.g., ECDSA) [1] [2] [1] NIST, “Recommendation for Key Management” [2] Yasuda et al, “On the strength comparison of the ECDLP and the IFP “ 23 San Francisco, October 2015 ACM ICN

  24. Ev Evaluation environment • OS: Ubuntu 14.04 • Hardware specifications • Model name: Intel(R) Core(TM) i7-3520M • CPU frequency: 2.9GHz • Cache size: 4MB 24 San Francisco, October 2015 ACM ICN

  25. Re Results: Computational overhead is 2. 2.4 4 times bigger than that of RSA IBAS(224, 112) ⩬ ECDSA-256 ⩬ 2.4 x RSA-2048 Video communication: IBAS(224, 112) can achieve throughput of 2.4Mbps when each packet’s content size is 1497bytes (IEEE802.3). 25 San Francisco, October 2015 ACM ICN

  26. Conclusion & Future Discussions 26 San Francisco, October 2015 ACM ICN

  27. Co Conclusion • All-weather SNS: Moderator Controlled Information-Sharing Service (MIS) • Core technology of MIS is Identity-based Aggregate Signatures (IBAS) • Implementation on NDN is evaluated against the traditional PKI signatures. • 60% smaller packet size: suitable for usages at a disaster • 2.4 times larger computational overhead: 2.4Mbps throughput on Intel i7-3520M@2.9GHz in normal condition 27 San Francisco, October 2015 ACM ICN

  28. Fu Future Discussions • IBAS key parameter size choice • Distribution of secret parameters and key revocation • Improve current implementation toward a testbed experiment as a real world application 28 San Francisco, October 2015 ACM ICN

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Information Sharing and User Privacy in the Third-party Identity Management Landscape Anna

Information Sharing and User Privacy in the Third-party Identity Management Landscape Anna

Information Sharing and User Privacy in the Third-party Identity Management Landscape Anna Vapen, Niklas Carlsson, Anirban Mahanti, Nahid Shahmehri Linkping University, Sweden NICTA, Australia 2 Information Sharing and User

246 views • 24 slides
Authorization credentials for controlled sharing in NDN: Experiments with codecaps and macaroons

Authorization credentials for controlled sharing in NDN: Experiments with codecaps and macaroons

Authorization credentials for controlled sharing in NDN: Experiments with codecaps and macaroons in NDN.JS NDNCOMM 2014 Pedro de-las-Heras-Quir os, Eva M. Castro-Barbero &lt;pedro.delasheras@urjc.es&gt; Information Technology and

597 views • 30 slides
Backplane &amp; Identity Scenario A widget collaboration protocol for identity sharing Vlad

Backplane &amp; Identity Scenario A widget collaboration protocol for identity sharing Vlad

Backplane &amp; Identity Scenario A widget collaboration protocol for identity sharing Vlad Skvortsov - Echo Johnny Bufu - Janrain Brian McGinnis - Janrain Backplane http://backplanespec.com Example authentication workflow with

204 views • 7 slides
Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen and used without your knowledge to commit fraud or other crimes Identity theft can cost you time and money. Tips for Preventing Identity Theft

322 views • 10 slides
Kings Service Centre Information Classification: CONTROLLED Our Champions Information

Kings Service Centre Information Classification: CONTROLLED Our Champions Information

Information Classification: CONTROLLED Kings Service Centre Information Classification: CONTROLLED Our Champions Information Classification: CONTROLLED Our Key Successes Awareness sessions Free fruit Mental Health First Aider

83 views • 4 slides
What is Identity Theft? &quot;Someone obtaining your personal identifying information without

What is Identity Theft? &quot;Someone obtaining your personal identifying information without

Identity Fraud: Protecting Your Identity Between Work and Play Ryan Sothan, Outreach Coordinator Nebraska Department of Justice, Office of the Attorney General Consumer Protection and Anti-Trust Division What is Identity Theft?

314 views • 18 slides
myneData Towards a Trusted and User-controlled Ecosystem for Sharing Personal Data Roman

myneData Towards a Trusted and User-controlled Ecosystem for Sharing Personal Data Roman

myneData Towards a Trusted and User-controlled Ecosystem for Sharing Personal Data Roman Matzutt, Dirk Mllmann, Eva-Maria Zeissig, Christiane Horst, Kai Kasugai, Sean, Lidynia, Simon Wieninger, Jan Henrik Ziegeldorf, Gerhard Gudergan, Indra

427 views • 39 slides
AML &amp; Fraud Information Sharing Sean OMalley Money Laundering and Information Sharing

AML &amp; Fraud Information Sharing Sean OMalley Money Laundering and Information Sharing

AML &amp; Fraud Information Sharing Sean OMalley Money Laundering and Information Sharing Magnitude of Money Laundering Suspicious Activity Report (SAR) filings Information Sharing Mechanisms Challenges and Possible Solutions

518 views • 13 slides
St Erth Multi Modal Hub 4 th November 2019 Information Classification: CONTROLLED Information

St Erth Multi Modal Hub 4 th November 2019 Information Classification: CONTROLLED Information

Information Classification: CONTROLLED St Erth Multi Modal Hub 4 th November 2019 Information Classification: CONTROLLED Information Classification: CONTROLLED Stakeholders High number of external stakeholders throughout design development

167 views • 6 slides
UTSA Information Sharing and Coordination Initiatives collaboration and coordination to

UTSA Information Sharing and Coordination Initiatives collaboration and coordination to

Secure Information and Resource Sharing in Cloud Infrastructure as a Service Cyber Incident Response Models for Information and Resource Sharing Amy(Yun) Zhang, Ram Krishnan, Ravi Sandhu Institute for Cyber Security University of Texas at San

219 views • 17 slides
FIDIS FIDIS Future of Identity in the Future of Identity in the Information Society

FIDIS FIDIS Future of Identity in the Future of Identity in the Information Society

FIDIS FIDIS Future of Identity in the Future of Identity in the Information Society Information Society An FP6 Network of Excellence An FP6 Network of Excellence Johann Wolfgang Goethe University Frankfurt Kai Rannenberg, Denis Royer

640 views • 22 slides
Information Session Ag Agenda 1. SME information 2. Ministry Sharing Background Overview of

Information Session Ag Agenda 1. SME information 2. Ministry Sharing Background Overview of

Ministry Sharing Information Session Ag Agenda 1. SME information 2. Ministry Sharing Background Overview of Ministry Sharing Options Discussion Questions &amp; Answers Mi Mini nistry Sha y Shari ring ng Why You Might Consider

324 views • 17 slides
INFORMATION SHARING (The role, if any, of s.8 of the Charter) By: Michael Fawcett Crown

INFORMATION SHARING (The role, if any, of s.8 of the Charter) By: Michael Fawcett Crown

INFORMATION SHARING (The role, if any, of s.8 of the Charter) By: Michael Fawcett Crown Counsel Crown Law Office Criminal Michael Lacy Brauti Thorning Zibarras LLP WHAT IS INFORMATION SHARING? Information sharing means the

912 views • 38 slides
Back to Business Child Care Settings Not Schools Information Classification: CONTROLLED

Back to Business Child Care Settings Not Schools Information Classification: CONTROLLED

Information Classification: CONTROLLED Back to Business Child Care Settings Not Schools Information Classification: CONTROLLED Introduction From the 1 st of June the Government will be asking nurseries and other early years providers, including

877 views • 18 slides
Wadebridge &amp; Padstow CNA Information Classification: CONTROLLED WP 1 Road markings and signage

Wadebridge &amp; Padstow CNA Information Classification: CONTROLLED WP 1 Road markings and signage

Wadebridge &amp; Padstow CNA Information Classification: CONTROLLED WP 1 Road markings and signage Trelill Road, St Kew Information Classification: CONTROLLED Total scheme cost 4,189.78 Information Classification: CONTROLLED WP 3 Road markings

403 views • 16 slides
UPDATE Crisis and Situational Awareness Work Group (CASAWG) Creating An Information Sharing

UPDATE Crisis and Situational Awareness Work Group (CASAWG) Creating An Information Sharing

UPDATE Crisis and Situational Awareness Work Group (CASAWG) Creating An Information Sharing Environment A Federated Approach to Information Sharing May 6 SCP meeting CASAWG presented a plan of action to incorporate information sharing

159 views • 11 slides
Dissecting tf.function to discover AutoGraph strengths and subtleties How to correctly write

Dissecting tf.function to discover AutoGraph strengths and subtleties How to correctly write

12/7/2019 Dissecting tf.function to discover AutoGraph strengths and subtleties Dissecting tf.function to discover AutoGraph strengths and subtleties How to correctly write graph-convertible functions in TensorFlow 2.0.

385 views • 36 slides
On-going Army coordination &amp; activities supporting Implementation Next Steps

On-going Army coordination &amp; activities supporting Implementation Next Steps

US Army Combined Arms Center Purpose and Agenda SOLDIERS AND LEADERS - OUR ASYMMETRIC ADVANTAGE Armys Framework for Character Development Implementation and Assessment Plan Critical Information: Update on ALDP, APL #2P I-14- 007 Army

384 views • 10 slides
NCHIMA 66 th Annual Meeting Integrating Leadership into Curriculum Sheryl Spohn, RHIA, CHC

NCHIMA 66 th Annual Meeting Integrating Leadership into Curriculum Sheryl Spohn, RHIA, CHC

NCHIMA 66 th Annual Meeting Integrating Leadership into Curriculum Sheryl Spohn, RHIA, CHC Transition Advisory Group and Evon Green, CCSP AMS Consulting Services Agenda Why are we here? Take a minute to laugh Take a minute

395 views • 37 slides
Clifton StrengthsFinder Strengths and Career Planning Cheryl S. Pace Relator, Consistency,

Clifton StrengthsFinder Strengths and Career Planning Cheryl S. Pace Relator, Consistency,

Clifton StrengthsFinder Strengths and Career Planning Cheryl S. Pace Relator, Consistency, Learner, Intellection, Responsibility Do you know what your natural talents are? Do you get to do what you do best every day? The Science of Strengths

347 views • 9 slides
Child and Family Treatment and Support Services (CFTSS) Principles and Documentation A REVIEW

Child and Family Treatment and Support Services (CFTSS) Principles and Documentation A REVIEW

Child and Family Treatment and Support Services (CFTSS) Principles and Documentation A REVIEW OF STATE GUIDANCE October 4, 2019 Please Note Refer to state guidance documents for official guidance. Providers should follow internal

671 views • 37 slides
and its Discontents Introduction The purpose of this presentation is to provide an overview of

and its Discontents Introduction The purpose of this presentation is to provide an overview of

Wireless Security and its Discontents Introduction The purpose of this presentation is to provide an overview of the strengths and weaknesses of Wireless Security solutions. We will cover: - Real-world examples of Wireless Security application

425 views • 38 slides
Amplifying Voices and Marginalized Identities: Strengths &amp; Weaknesses of Identity Group

Amplifying Voices and Marginalized Identities: Strengths &amp; Weaknesses of Identity Group

Amplifying Voices and Marginalized Identities: Strengths &amp; Weaknesses of Identity Group Programming Laurie Maynell | Jessica Riviere June 6 th , 2018 University Center for the Advancement of Teaching Introductions Laurie Maynell

525 views • 27 slides
Indifferentiable Authenticated Encryption Pooya Farshim Manuel Barbosa (Porto) (CNRS

Indifferentiable Authenticated Encryption Pooya Farshim Manuel Barbosa (Porto) (CNRS

Indifferentiable Authenticated Encryption Pooya Farshim Manuel Barbosa (Porto) (CNRS &amp; ENS) Indifferentiable Authenticated Encryption Pooya Farshim Manuel Barbosa (Porto) (CNRS &amp; ENS) Hash Functions long &amp; short

1.25k views • 79 slides

More recommend