prototyping a lightweight trust architecture to fight
play

Prototyping a Lightweight Trust Architecture to Fight Phishing - PowerPoint PPT Presentation

Dec 24, 2022 •167 likes •421 views

Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation Thanks to my collaborators Ben

  1. Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  2. Thanks to my collaborators … Ben Adida Susan Hohenberger Ron Rivest Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  3. Outline The phishing problem Existing solutions SIBR and LTA The prototype DNS, key server, e-mail client Message processing, cryptographic primitives Future work Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  4. A Phishy E-mail From: Support PayPal <do-not-reply@paypal.com> Reply-To: do-not-reply@paypal.com To: ddcc@mit.edu To securely confirm you PayPal details please Subject: Please Restore Your Account Access Date: Sun, 3 Apr 2005 15:57:28 -0400 follow the link below : https://www.paypal.com/cgi-bin/webscr?request=Reactivate Dear PayPal Member, Thank you for prompt attention to this matter and thank you for using PayPal ! Recently there have been a large number of identity theft attempts targeting PayPal PayPal - Fraud Center customers. In order to safeguard your account, 1-800-PayPal. we require that you confirm your PayPal details fraud_prevention@PayPal.com (Credit Card information and login/password for PayPal login , if you have). Do not reply to this e-mail as it is an unmonitored alias This process is mandatory , and if not completed Within the nearest time your account may be subject to temporary suspension. Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  5. The problem: E-mail messages aren’t authenticated Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  6. Existing solutions SPF/SenderID $ dig -t txt mit.edu ;; ANSWER SECTION: mit.edu. 60 IN TXT "v=spf1 ip4:18.7.7.0/24 ip4:18.7.21.0/24 ip4:18.72.0.0/16 ~all" Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  7. Existing solutions DomainKeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received: Date:From:Subject:To:Cc:MIME-Version:Content- Type:Content-Transfer-Encoding; b=kt0N/9igWyJYRe8v5XDaQZuvvdJRHh9pXHPVHbZ1XzKaA7M 6lD7LgrmpFAukvGgWJ3P2LRGNTpYT37mMYPdWx3fJd4qWFXpP ZQtIRa+WVGD5RhjI6YdPwnPoSg6CY9GieFL8EmuyQW0ElLg2f pX4YgcyZU+pkub+ZSUhv7BiJ40= ; Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  8. Existing solutions PGP X.509 … and more ... Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  9. SIBR: S eparable … i dentity-based … r ing signatures Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  10. Identity-based: Your name (or e-mail address) is your public key Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  11. Separable Different users can use different parameters Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  12. Ring signatures One of us signed it, but you can’t prove it was me Repudiable signatures! Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  13. LTA Lightweight Trust Architecture Master public key on DNS server Secret keys e-mailed to users Sign with sender’s secret key and recipient’s public key Just secure enough for e-mail Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  14. The components Things we had to build Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  15. The DNS server Master public key in DNS Generated by administrator of a domain Stored as TXT record in _lta subdomain Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  16. The key server master secret key { } user’s e-mail address user’s secret key expiration date (identity-based public key) Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  17. The key server Web-based interface Secret key sent to user’s e-mail account Selectable expiration date critical for repudiability Prototype implemented in Python Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  18. E-mail client integration Easy to sign and verify messages Key management Prototype with Rmail (Emacs mail client) Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  19. Message processing Message canonicalization Signature covers message body and key headers Signature inserted as header For the future: more sophisticated handling, MIME Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  20. Cryptography Many ways to implement identity-based signature schemes Bohen-Franklin keys Bilinear maps Unfortunately, patented Guillou-Quisquater signatures Based on RSA Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  21. Cryptography We implemented both Signing and verification reasonably fast Keys are short enough to fit inside 512-byte DNS reply Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  22. What we accomplished Demonstrated complete prototype of an LTA system: DNS server that servers master public keys Web-based key server that sends secret keys to users on demand E-mail client that can sign and verify messages Performs DNS key lookups on the fly Imports and uses secret keys from the key server Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  23. Where to go from here … Deployment issues LTA is easier than traditional public-key infrastructure More complex usage scenarios For example: repudiable messages to mailing lists Implementation improvements Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

  24. Thank you! Prototyping a Lightweight Trust Architecture to Fight Phishing David Chau 6 October 2005 6.UAP LTA Presentation

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

PROTOTYPING FOR IOT @ERICASTANLEY #OPENIOT #PROTOTYPING PROTOTYPING FOR NOT ABOUT ME

PROTOTYPING FOR IOT @ERICASTANLEY #OPENIOT #PROTOTYPING PROTOTYPING FOR NOT ABOUT ME

DUKE UNIVERSITY CS 408, FALL 2016 PROTOTYPING FOR IOT @ERICASTANLEY #OPENIOT #PROTOTYPING PROTOTYPING FOR NOT ABOUT ME Engineer, entrepreneur, advocate Women Who Code Heavy Research Background Telepresence Sensor

1.42k views • 69 slides
Prototyping 11-04-2012 Design &amp; Prototyping benefits (and disadvantages) of

Prototyping 11-04-2012 Design &amp; Prototyping benefits (and disadvantages) of

Prototyping 11-04-2012 Design &amp; Prototyping benefits (and disadvantages) of prototyping low fidelity vs. high fidelity prototyping horizontal vs. vertical prototyping Transform user requirements/needs into a conceptual

235 views • 21 slides
Facilitating the Mini-Quality Attributes Workshop A Lightweight, Architecture-Focused Method

Facilitating the Mini-Quality Attributes Workshop A Lightweight, Architecture-Focused Method

Facilitating the Mini-Quality Attributes Workshop A Lightweight, Architecture-Focused Method Will Chaparro Michael Keeling IBM IBM @wmchaparro @michaelkeeling 2 What happened? We didnt pay enough attention to the right architecture

688 views • 50 slides
We put stunning user experiences on the road. 2 Agenda Prototyping

We put stunning user experiences on the road. 2 Agenda Prototyping

Rapid UI Prototyping Using Qt Quick By Jrgen Bocklage-Ryannel We put stunning user experiences on the road. 2 Agenda Prototyping Prototyping with QML Prototyping with QML Demo Prototyping Prototyping

707 views • 22 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
Lightweight and Flexible Trust Assessment Modules for the Internet of Things Jan Tobias Mhlberg

Lightweight and Flexible Trust Assessment Modules for the Internet of Things Jan Tobias Mhlberg

empty Lightweight and Flexible Trust Assessment Modules for the Internet of Things Jan Tobias Mhlberg , Job Noorman and Frank Piessens jantobias.muehlberg@cs.kuleuven.be iMinds-DistriNet, KU Leuven, Celestijnenlaan 200A, B-3001 Belgium

636 views • 50 slides
Network Interface Architecture and Prototyping for Chip and Cluster Multiprocessors Supervisor

Network Interface Architecture and Prototyping for Chip and Cluster Multiprocessors Supervisor

University of Crete School of Sciences &amp; Engineering Computer Science Department Master Thesis by Michael Papamichael Network Interface Architecture and Prototyping for Chip and Cluster Multiprocessors Supervisor Prof. Manolis G.H.

1.12k views • 64 slides
Prototyping &amp; Building a System How Prototyping helps (especially when done with

Prototyping &amp; Building a System How Prototyping helps (especially when done with

Prototyping &amp; Building a System How Prototyping helps (especially when done with User-Centered Design) Prototyping http://dilbert.com/strip/2009-07-22 1 Designing Your System (I) Decide which users and tasks you will support. It might

708 views • 19 slides
Prototyping &amp; Building a System How Prototyping helps (especially when done with

Prototyping &amp; Building a System How Prototyping helps (especially when done with

Prototyping &amp; Building a System How Prototyping helps (especially when done with User-Centered Design) Prototyping http://dilbert.com/strip/2009-07-22 1 Designing Your System (I) Decide which users and tasks you will support. It might

408 views • 21 slides
Fast architecture prototyping on FPGAs: frameworks, tools, and challenges Philipp Wagner

Fast architecture prototyping on FPGAs: frameworks, tools, and challenges Philipp Wagner

Fast architecture prototyping on FPGAs: frameworks, tools, and challenges Philipp Wagner Technische Universitt Mnchen Lehrstuhl fr Integrierte Systeme 10.04.2017 Our Goal: Improving MPSoC Architectures Memory I/O Accelerator tiles

606 views • 21 slides
ONoC-SPL: Customized Network-on-Chip (NoC) Architecture and Prototyping for Data-intensive

ONoC-SPL: Customized Network-on-Chip (NoC) Architecture and Prototyping for Data-intensive

iCAST 2012 Seoul, Korea July 21-24 2012 ONoC-SPL: Customized Network-on-Chip (NoC) Architecture and Prototyping for Data-intensive Computation Applications Akram Ben Ahmed, Kenichi Mori, Abderazek Ben Abdallah The University of Aizu School of

710 views • 37 slides
ARENA FIGHT BEST FRENCH KICKBOXING &amp; MMA FIGHTS ARENA FIGHT / 2019 / COMPETITION /

ARENA FIGHT BEST FRENCH KICKBOXING &amp; MMA FIGHTS ARENA FIGHT / 2019 / COMPETITION /

ARENA FIGHT BEST FRENCH KICKBOXING &amp; MMA FIGHTS ARENA FIGHT / 2019 / COMPETITION / VISIBILITY / FIGHTERS / MEDIA RIGHTS ARENA FIGHT ARENA FIGHT is the new top fight sport competition series launched in France in 2019. Committed to

108 views • 10 slides
A New Era of Silicon Prototyping in Computer Architecture Research Christopher Torng Computer

A New Era of Silicon Prototyping in Computer Architecture Research Christopher Torng Computer

A New Era of Silicon Prototyping in Computer Architecture Research Christopher Torng Computer Systems Laboratory School of Electrical and Computer Engineering Cornell University Recent History of Prototypes at Cornell University Why

232 views • 21 slides
A New Era of Silicon Prototyping in Computer Architecture Research Christopher Torng Computer

A New Era of Silicon Prototyping in Computer Architecture Research Christopher Torng Computer

A New Era of Silicon Prototyping in Computer Architecture Research Christopher Torng Computer Systems Laboratory School of Electrical and Computer Engineering Cornell University Recent History of Prototypes at Cornell University 4 6 8 1 1

483 views • 27 slides
DMA Support for the Sancus Architecture Lightweight and Open-Source Trusted Computing for the IoT

DMA Support for the Sancus Architecture Lightweight and Open-Source Trusted Computing for the IoT

DMA Support for the Sancus Architecture Lightweight and Open-Source Trusted Computing for the IoT Sergio Seminara seminara@kth.se KTH - Kungliga Tekniska Hgskola Examiner: prof. Mads Dam Supervisor: prof. Roberto Guanciale Seminara (KTH)

545 views • 50 slides
1 L Nov-29-05 SMD157, High-Fidelity Prototyping Overview Prototyping revisited

1 L Nov-29-05 SMD157, High-Fidelity Prototyping Overview Prototyping revisited

INSTITUTIONEN FR SYSTEMTEKNIK LULE TEKNISKA UNIVERSITET High-Fidelity Prototyping and Flash SMD157 Human-Computer Interaction Fall 2005 1 L Nov-29-05 SMD157, High-Fidelity Prototyping Overview Prototyping revisited

689 views • 10 slides
Disciplined Development in Key Markets Growth, Yield and Long-term Value Investor Presentation

Disciplined Development in Key Markets Growth, Yield and Long-term Value Investor Presentation

Disciplined Development in Key Markets Growth, Yield and Long-term Value Investor Presentation September 2019 BLX and BLX.DB.A Toronto Stock Exchange Disclaimer Forward-looking statements Some of the statements contained in this

338 views • 23 slides
Updates: Latest &amp; Greatest AGENDA: 1) Terrafirma Conservation Defense Insurance: Tips for

Updates: Latest &amp; Greatest AGENDA: 1) Terrafirma Conservation Defense Insurance: Tips for

Conservation Easement Issues and Updates: Latest &amp; Greatest AGENDA: 1) Terrafirma Conservation Defense Insurance: Tips for Filing Claims 2) Land Trust Alliance Advisory on Conservation Tax Shelters 3) LTA Revised Report on Amending

686 views • 47 slides
TENNIS OPENED UP Chris Pollard, Abbie Lench, Tom Murray AGENDA Journey over the last 12

TENNIS OPENED UP Chris Pollard, Abbie Lench, Tom Murray AGENDA Journey over the last 12

TENNIS OPENED UP Chris Pollard, Abbie Lench, Tom Murray AGENDA Journey over the last 12 months Bringing the LTA Vision to life Rally Junior Programme Club update Padel Tennis Facility Funding VISION Tennis

582 views • 36 slides
CLICK HERE TO KNOW MORE LTA-UAV: The Future of Disaster Response and Surveillance Shattri MANSOR,

CLICK HERE TO KNOW MORE LTA-UAV: The Future of Disaster Response and Surveillance Shattri MANSOR,

CLICK HERE TO KNOW MORE LTA-UAV: The Future of Disaster Response and Surveillance Shattri MANSOR, Ahmad Salahuddin Mohd Harithuddin, Syaril Azrad Md Ali, Bahareh Kalantar, Azman Abd Ghani Presentation Outline Object Detection Object

549 views • 53 slides
Q1 2020 Results May 6, 2020 Forward-looking Statements NOTE ON FORWARD-LOOKING STATEMENTS: This

Q1 2020 Results May 6, 2020 Forward-looking Statements NOTE ON FORWARD-LOOKING STATEMENTS: This

Q1 2020 Results May 6, 2020 Forward-looking Statements NOTE ON FORWARD-LOOKING STATEMENTS: This presentation and related discussions may contain forward-looking statements that reflect our current views with respect to, among other things, future

383 views • 19 slides
Q1 2019 Financial Results May 16, 2019 Tracy Pagliara Tim Howsman President and CEO Chief

Q1 2019 Financial Results May 16, 2019 Tracy Pagliara Tim Howsman President and CEO Chief

Q1 2019 Financial Results May 16, 2019 Tracy Pagliara Tim Howsman President and CEO Chief Financial Officer OTCQX: WLMS Cautionary Notes * Note: Unless otherwise noted, all discussion is based upon continuing operations. Forward-looking

293 views • 17 slides
By: Sangai P. Moliwulo, Technical Analyst, LTA The internet comes with a lot of benefits

By: Sangai P. Moliwulo, Technical Analyst, LTA The internet comes with a lot of benefits

By: Sangai P. Moliwulo, Technical Analyst, LTA The internet comes with a lot of benefits however it also has its downside Children need to be guided online Parents have responsibility and so are teachers and guardians Government

127 views • 8 slides
The Town of Smiths Falls since 2001 Who We Are Lanark Transportation Association (LTA) is a

The Town of Smiths Falls since 2001 Who We Are Lanark Transportation Association (LTA) is a

Serving Lanark County and The Town of Smiths Falls since 2001 Who We Are Lanark Transportation Association (LTA) is a unique, community based accessible, caring, personal transportation service. Success Story In 2014 appeared in the

303 views • 18 slides

More recommend