realizing massive scale conditional access systems
play

Realizing Massive-Scale Conditional Access Systems Through - PowerPoint PPT Presentation

Dec 24, 2023 •550 likes •1.01k views

  1. �������฀฀���฀฀�������� ��������������฀�������� � � �������฀���฀��������฀��������฀������ ����������฀��฀��������฀�������฀���฀����������� ������������฀�����฀�����������฀����������฀����฀฀�� Realizing Massive-Scale Conditional Access Systems Through Attribute-Based Cryptosystems Patrick Traynor, Kevin Butler, William Enck and Patrick McDaniel NDSS Symposium February 11, 2008 Systems and Internet Infrastructure Security (SIIS) Laboratory Page 1

  2. The Y100 Phenomenon Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2

  3. The Y100 Phenomenon Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2

  4. The Coming Wave • The number and variety of Conditional Access (CA) systems are increasing. ‣ IPtv ‣ Satellite Radio ‣ “Premium” Streaming Audio • Security in these systems is often proprietary or requires dedicated hardware. • A solution for general purpose computing platforms is needed... Systems and Internet Infrastructure Security (SIIS) Laboratory Page 3

  5. Goals • Provide an easily manageable broadcast encryption mechanism to regulate access to the expanding set of CA systems. • Demonstrate that Attribute-Based Cryptosystems are capable of enabling real systems , especially those at massive scale. Systems and Internet Infrastructure Security (SIIS) Laboratory Page 4

  6. Broadcast Encryption • Allows access management without requiring two-way communication. • Techniques such as LKH and NNL trees dominate cable television. • Boneh et al proposed an efficient pairing-based construction that grows linearly with the number of users. Systems and Internet Infrastructure Security (SIIS) Laboratory Page 5

  7. Attribute-Based Encryption • Sahai-Waters Construction (Eurocrypt’05) ‣ Generalization of Identity-Based Encryption ‣ Anyone with k-out-of-n attributes can decrypt a ciphertext • Random Oracle Construction (CCS’06) ‣ Properly tuned, can reduce the cost of encryption 98%. ‣ We can use this construction to simple boolean conjunction and disjunction: Systems and Internet Infrastructure Security (SIIS) Laboratory Page 6

  8. Attribute-Based Encryption • Sahai-Waters Construction (Eurocrypt’05) ‣ Generalization of Identity-Based Encryption ‣ Anyone with k-out-of-n attributes can decrypt a ciphertext • Random Oracle Construction (CCS’06) ‣ Properly tuned, can reduce the cost of encryption 98%. ‣ We can use this construction to simple boolean conjunction and disjunction: Tall ∧ Dark ∧ Handsome Systems and Internet Infrastructure Security (SIIS) Laboratory Page 6

  9. Attribute-Based Encryption • Sahai-Waters Construction (Eurocrypt’05) ‣ Generalization of Identity-Based Encryption ‣ Anyone with k-out-of-n attributes can decrypt a ciphertext • Random Oracle Construction (CCS’06) ‣ Properly tuned, can reduce the cost of encryption 98%. ‣ We can use this construction to simple boolean conjunction and disjunction: Tall ∧ Dark ∧ Handsome Alice ∨ Bob ∨ Carol Systems and Internet Infrastructure Security (SIIS) Laboratory Page 6

  10. ABE Details • Uses bilinear maps on elements of elliptic curves: e : G 1 × G 2 → G T • Construction works by computing efficient bilinear map between k-out-of-n attributes. ‣ Interpolation using Shamir’s Secret Sharing. • Accordingly, encryption is a function of n and decryption is a function of k . ‣ At least on paper... Systems and Internet Infrastructure Security (SIIS) Laboratory Page 7

  11. An Example Systems and Internet Infrastructure Security (SIIS) Laboratory Page 8

  12. An Example Systems and Internet Infrastructure Security (SIIS) Laboratory Page 8

  13. An Example Alice Bob Systems and Internet Infrastructure Security (SIIS) Laboratory Page 8

  14. An Example 1-out-of-n Alice Bob Systems and Internet Infrastructure Security (SIIS) Laboratory Page 8

  15. An Example Systems and Internet Infrastructure Security (SIIS) Laboratory Page 8

  16. An Example . . . Alice Bob n-1 Systems and Internet Infrastructure Security (SIIS) Laboratory Page 8

  17. Scaling 2500 0.8 MNT MNT Supersingular Supersingular 0.7 2000 0.6 0.5 1500 Time (s) Time (s) 0.4 1000 0.3 0.2 500 0.1 0 0 0 20000 40000 60000 80000 100000 0 20000 40000 60000 80000 100000 Number of Attributes Number of Attributes • As expected, MNT curves perform encryption faster. • Contrary to previous work, MNT curves perform decryption faster than SS when the n > 1000. Systems and Internet Infrastructure Security (SIIS) Laboratory Page 9

  18. Scaling 2500 0.8 MNT MNT Supersingular Supersingular 0.7 2000 0.6 0.5 1500 Time (s) Time (s) 0.4 1000 0.3 0.2 500 0.1 0 0 0 20000 40000 60000 80000 100000 0 20000 40000 60000 80000 100000 Number of Attributes Number of Attributes E = 2 . 2214 × 10 − 3 n + 0 . 01804 D = 3 . 5159 × 10 − 6 n + 0 . 033791 r 2 = 0 . 99999997 r 2 = 0 . 9999992 • As expected, MNT curves perform encryption faster. • Contrary to previous work, MNT curves perform decryption faster than SS when the n > 1000. Systems and Internet Infrastructure Security (SIIS) Laboratory Page 9

  19. Performance • Even with the random oracle construction, the performance of the primitives is too slow. • Adding one new user to a group of 1,000,000 takes approximately 37 minutes. ‣ This makes changing the content encryption key impossible during short programs (e.g., half-hour TV shows) • A faster access structure is therefore necessary. Systems and Internet Infrastructure Security (SIIS) Laboratory Page 10

  20. Tiered Construction Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  21. Tiered Construction Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  22. Tiered Construction Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  23. Tiered Construction ... Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  24. Tiered Construction n ... Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  25. Tiered Construction n ... ... Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  26. Tiered Construction n ... ... ... . . . Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  27. Tiered Construction n ... ... ... User . . . Cryptosystem Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  28. Tiered Construction n ... ... ... User . . . Cryptosystem . . . Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  29. Tiered Construction n ... ... ... User . . . Cryptosystem Content . . . Cryptosystem Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  30. Tiered Construction n ... ... ... User . . . Cryptosystem Content . . . Cryptosystem Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  31. Tiered Construction n ... ... ... User . . . Cryptosystem Content . . . Cryptosystem n ′ Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  32. Tiered Construction n ... ... ... User . . . Cryptosystem Content . . . Cryptosystem n ′ Symmetric Content Key Systems and Internet Infrastructure Security (SIIS) Laboratory Page 11

  33. Traffic Model: PPV Pay-per-view Impulse (steady state vieweship 50,000) Pay-per-view Pre-pay (steady state vieweship 400,000) Number Joins (per/second) Number Joins (per/second) 60000 20 500000 100 Membership Size Membership Size Group Size Group Size 480000 80 55000 15 Joins Joins 460000 60 50000 10 440000 40 420000 45000 5 400000 20 380000 40000 0 0 0 500 1000 1500 2000 2500 3000 3500 0 500 1000 1500 2000 2500 3000 3500 Time (seconds) Time (seconds) • Pay Per View (PPV) programs exhibit two types of joins: impulse and pre-pay. ‣ There are no leaves - users purchase entire programs. • We use well-known ratings to make results realistic: ‣ PPV Boxing (400k) and Tyson vs Holyfield II (1.99M) Systems and Internet Infrastructure Security (SIIS) Laboratory Page 12

  34. How Many Processors? 1000 Join - 1 Join - 5 Join - 10 Join - 15 Average Operation Latency (seconds) 100 10 1 0.1 0 200 400 600 800 1000 Time (seconds) • Extra processors help the system reach quiescence faster as joins are parallelized. • After quiescence, however, extra processors lay idle. ‣ If steady state joins are less than ~400/minute, one processor is more than sufficient. Systems and Internet Infrastructure Security (SIIS) Laboratory Page 13

  35. Group Size? Join - 1,000 14 Join - 5,000 12 Average Operation Latency (seconds) 10 8 6 4 2 0 0 500 1000 1500 2000 2500 3000 3500 4000 Time (seconds) • Larger user groups yield higher latencies throughout the initial surge and quiescence. • There is no advantage to using large user groups. Systems and Internet Infrastructure Security (SIIS) Laboratory Page 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The FIFA Universe Massive scale, massive influence, massive corruption First, Some History.

The FIFA Universe Massive scale, massive influence, massive corruption First, Some History.

The FIFA Universe Massive scale, massive influence, massive corruption First, Some History. Football Association (FA) Formed 1863, governs association football in England Prior to this, football was just a school yard sport Rule

579 views • 35 slides
Distributed Hierarchical GPU Parameter Server for Massive Scale Deep Learning Ads Systems

Distributed Hierarchical GPU Parameter Server for Massive Scale Deep Learning Ads Systems

Distributed Hierarchical GPU Parameter Server for Massive Scale Deep Learning Ads Systems Presenter: Weijie Zhao 1 1 Cognitive Computing Lab, Baidu Research Joint work with Deping Xie 2 , Ronglai Jia 2 , Yulei Qian 2 , Ruiquan Ding 3 , Mingming

506 views • 23 slides
Energy-aware Software Development for Massive-Scale Systems Torsten Hoefler With input from Marc

Energy-aware Software Development for Massive-Scale Systems Torsten Hoefler With input from Marc

Energy-aware Software Development for Massive-Scale Systems Torsten Hoefler With input from Marc Snir, Bill Gropp and Wen-mei Hwu Keynote at EnA-HPC, Sept 9 th 2011, Hamburg, Germany Outline The HPC Energy Crisis Computer Architecture

794 views • 60 slides
HIM Without Walls Realizing Our Vision! Realizing Our Vision Realize Our Vision Realizing Our

HIM Without Walls Realizing Our Vision! Realizing Our Vision Realize Our Vision Realizing Our

HIM Without Walls Realizing Our Vision! Realizing Our Vision Realize Our Vision Realizing Our Vision Environmental Scan Realizing Our Vision Physician Practice EHR Adoption Realizing Our Vision Big Data Estimated 80% of data is

361 views • 33 slides
Massive Scale Magdalena Balazinska University of Washington

Massive Scale Magdalena Balazinska University of Washington

Interactive Data Processing at Massive Scale Magdalena Balazinska University of Washington http://www.cs.washington.edu/homes/magda Nuage Project Science is becoming a data management problem Existing database management systems are

326 views • 18 slides
Use of a Domain Specific Modeling Language for Realizing Versatile Dashboards for Realizing

Use of a Domain Specific Modeling Language for Realizing Versatile Dashboards for Realizing

Ulrich Frank, David Heise, Heiko Kattenstroth Use of a Domain Specific Modeling Language for Realizing Versatile Dashboards for Realizing Versatile Dashboards Chair of Information Systems and Enterprise Modeling University of Duisburg-Essen

846 views • 12 slides
Panel Discussion: Realizing large scale infrastructure projects Content: 1. Who are we 2. What

Panel Discussion: Realizing large scale infrastructure projects Content: 1. Who are we 2. What

Brgerinitiative PRO ERDKABEL Bad Gandersheim/Kreiensen Panel Discussion: Realizing large scale infrastructure projects Content: 1. Who are we 2. What do we want ? - Our targets 3. What have we done ? 4. Examples for getting acceptance

293 views • 14 slides
Fennel: Streaming Graph Partitioning for Massive Scale Graphs Charalampos E. Tsourakakis 1

Fennel: Streaming Graph Partitioning for Massive Scale Graphs Charalampos E. Tsourakakis 1

Fennel: Streaming Graph Partitioning for Massive Scale Graphs Charalampos E. Tsourakakis 1 Christos Gkantsidis 2 Bozidar Radunovic 2 Milan Vojnovic 2 1 Aalto University, Finland 2 Microsoft Research, Cambridge UK MASSIVE 2013, France Slides

733 views • 30 slides
Realizing a phase of transformative growth Businesses building scale Capital Asset & Market

Realizing a phase of transformative growth Businesses building scale Capital Asset & Market

Realizing a phase of transformative growth Businesses building scale Capital Asset & Market Wealth Business Business Annuity revenue driving visibility Housing Fund Sustainability of high ROE Finance Based Business Business All

168 views • 4 slides
Realizing a phase of transformative growth Businesses building scale Capital Asset & Market

Realizing a phase of transformative growth Businesses building scale Capital Asset & Market

Realizing a phase of transformative growth Businesses building scale Capital Asset & Market Wealth Business Business Annuity revenue driving visibility Housing Fund Sustainability of high ROE Finance Based Business Business All

527 views • 36 slides
Large-scale Data Processing and Optimisation Eiko Yoneki University of Cambridge Computer

Large-scale Data Processing and Optimisation Eiko Yoneki University of Cambridge Computer

Large-scale Data Processing and Optimisation Eiko Yoneki University of Cambridge Computer Laboratory Massive Data: Scale-Up vs Scale-Out Popular solution for massive data processing scale and build distribution, combine theoretically

204 views • 18 slides
Scale-out Computing Model on Massive Core System: From HPC to Fabric-Based SoC Dr. Fu Li

Scale-out Computing Model on Massive Core System: From HPC to Fabric-Based SoC Dr. Fu Li

Scale-out Computing Model on Massive Core System: From HPC to Fabric-Based SoC Dr. Fu Li li@qcftech.com Quantum Cloud Future (Beijing) Technologies Co., Ltd. Cook Book 1. What is Massive Core System (MCS)? 1.1. HPC system 1.2. GPU system

800 views • 26 slides
Massive-scale analysis of streaming social networks David A. Bader Exascale Streaming Data

Massive-scale analysis of streaming social networks David A. Bader Exascale Streaming Data

Massive-scale analysis of streaming social networks David A. Bader Exascale Streaming Data Analytics: Real-world challenges All involve analyzing massive 450 Million Users streaming complex networks: 400 Exponential growth: 350

855 views • 32 slides
Detecting Problems in the Database Access Code of Large Scale Systems An industrial Experience

Detecting Problems in the Database Access Code of Large Scale Systems An industrial Experience

Detecting Problems in the Database Access Code of Large Scale Systems An industrial Experience Report 1 Existing static analysis tools focus on language-related problems PMD Google error-prone Coverity FindBugs Facebook Infer However,

632 views • 31 slides
IMPACT OF DATA PLACEMENT ON RESILIENCE IN LARGE-SCALE OBJECT STORAGE SYSTEMS KEVIN HARMS

IMPACT OF DATA PLACEMENT ON RESILIENCE IN LARGE-SCALE OBJECT STORAGE SYSTEMS KEVIN HARMS

32ND INTERNATIONAL CONFERENCE ON MASSIVE STORAGE SYSTEMS AND TECHNOLOGY (MSST 2016) IMPACT OF DATA PLACEMENT ON RESILIENCE IN LARGE-SCALE OBJECT STORAGE SYSTEMS KEVIN HARMS PHILIP CARNS CHRISTOPHER CAROTHERS JOHN JENKINS Argonne National

198 views • 19 slides
Large-Scale Systems: WebOS Access to geographically distributed data-dissemination and

Large-Scale Systems: WebOS Access to geographically distributed data-dissemination and

CPSC-662 Distributed Computing Object-Oriented Distributed Technology Large-Scale Systems: WebOS Access to geographically distributed data-dissemination and computing resources. Resource discovery, persistent storage, process control,

276 views • 5 slides
Chapter 1: Introduction Ajay Kshemkalyani and Mukesh Singhal Distributed Computing: Principles,

Chapter 1: Introduction Ajay Kshemkalyani and Mukesh Singhal Distributed Computing: Principles,

Chapter 1: Introduction Ajay Kshemkalyani and Mukesh Singhal Distributed Computing: Principles, Algorithms, and Systems Cambridge University Press A. Kshemkalyani and M. Singhal (Distributed Computing) Introduction CUP 2008 1 / 36

381 views • 36 slides
Political Science 17 . 20 Introduction to American Politics Professor Devin Caughey MIT

Political Science 17 . 20 Introduction to American Politics Professor Devin Caughey MIT

Political Science 17 . 20 Introduction to American Politics Professor Devin Caughey MIT Department of Political Science Money and Organized Interests Lecture 23 (May 7, 2013) 1 / 12 Outline Groups and Politics 1 Groups and Politicians 2 2

158 views • 13 slides
TAS behavior: surprise! Cache effects TAS Simple TAS TAS lock.acquire() { while (TAS(value)); }

TAS behavior: surprise! Cache effects TAS Simple TAS TAS lock.acquire() { while (TAS(value)); }

B3 icdVDLSgMxFL3js9ZX1aWbYBFcDTOtaN0V3Lis2LGFtpRMm lDM5MhuSOU0r0bxZXiH/kL/o3pw0V9HAgczjnh3nPDVAqDnvfprKyurW9s5rby2zu7e/uFg8N7ozLNeMCUVLoZUsOlSHiA iVvp

278 views • 9 slides
Robusta : An approach to building dynamic applications Walter RUDAMETKIN Dissertation defense

Robusta : An approach to building dynamic applications Walter RUDAMETKIN Dissertation defense

Robusta : An approach to building dynamic applications Walter RUDAMETKIN Dissertation defense 21 February 2013 Pr. Noel DE PALMA President UJF, Grenoble Pr. Luciano BARESI Reviewer Politecnico di Milano Dr. Benoit BAUDRY Reviewer INRIA,

1.46k views • 103 slides
Spin Lock Performance Introduction Shared memory multiprocessors o Various different

Spin Lock Performance Introduction Shared memory multiprocessors o Various different

CS533 Concepts of Operating Systems Spin Lock Performance Introduction Shared memory multiprocessors o Various different architectures o All have hardware support for mutual exclusion Various flavors of atomic read-modify instruction

392 views • 27 slides
A Portfolio Approach for Enforcing Minimality in a Tree Decomposition Daniel J. Geschwender 1,2

A Portfolio Approach for Enforcing Minimality in a Tree Decomposition Daniel J. Geschwender 1,2

A Portfolio Approach for Enforcing Minimality in a Tree Decomposition Daniel J. Geschwender 1,2 R.J. Woodward 1,2 B.Y. Choueiry 1,2 S. D. Scott 2 1 Constraint Systems Laboratory 2 Department of Computer Science and Eng. University of

506 views • 28 slides
Measuring M NS , R NS , M NS /R NS or R Sebastien Guillot Advisor: Robert Rutledge Galileo

Measuring M NS , R NS , M NS /R NS or R Sebastien Guillot Advisor: Robert Rutledge Galileo

Measuring M NS , R NS , M NS /R NS or R Sebastien Guillot Advisor: Robert Rutledge Galileo Galilei Institute, Firenze March 2014 Some Reviews Lattimer and Prakash, 2007 Miller C., 2013 Heinke et al., 2013 Reminder Labels Optical X-ray

854 views • 50 slides
Algorithms for solving sequential (zero-sum) games Main case in these slides: chess Slide

Algorithms for solving sequential (zero-sum) games Main case in these slides: chess Slide

Algorithms for solving sequential (zero-sum) games Main case in these slides: chess Slide pack by Tuomas Sandholm Rich history of cumulative ideas Game-theoretic perspective Game of perfect information Finite game Finite action

735 views • 35 slides

More recommend