wave a decentralized authorization framework with
play

WAVE: A Decentralized Authorization Framework with Transitive - PowerPoint PPT Presentation

Jan 30, 2024 •929 likes •1.25k views

WAVE: A Decentralized Authorization Framework with Transitive Delegation Michael P Andersen, Sam Kumar , Hyung-Sin Kim, John Kolb, Kaifei Chen, Moustafa AbdelBaky, Gabe Fierro, David E. Culler, Raluca Ada Popa This material is based on work

  1. WAVE: A Decentralized Authorization Framework with Transitive Delegation Michael P Andersen, Sam Kumar , Hyung-Sin Kim, John Kolb, Kaifei Chen, Moustafa AbdelBaky, Gabe Fierro, David E. Culler, Raluca Ada Popa This material is based on work supported by the National Science Foundation Graduate Research Fellowship Program under Grant No. DGE-1752814. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the National Science Foundation.

  2. Roadmap 1. The Problem 2. WAVE’s Approach 3. WAVE’s Storage Layer 4. WAVE’s Privacy layer 5. Implementation and Evaluation

  3. Authorization for IoT “Set temperature to 80 F”

  4. Authorization Authorization for IoT 1. How does the tenant receive permission to adjust the temperature? 2. How does the thermostat know that the request was sent by someone who has permission? “Set temperature to 80 F”

  5. Authorization for IoT: Status Quo • Shares identity, not just permission • Not revocable • Ad-hoc Owner Tenant Owner gives Airbnb performs action when username:password to tenant requests airbnb

  6. The Problems Existing authentication systems are centralized (often monolithic) Transitive delegation is rare, leading to over-sharing Attacks on centralized systems are common, and affect all the users

  7. Roadmap 1. The Problem 2. WAVE’s Approach 3. WAVE’s Storage Layer 4. WAVE’s Privacy layer 5. Implementation and Evaluation

  8. WAVE’s Approach Make the flow of trust fine-grained.

  9. WAVE Captures Trust Relations PROOF ● Allows delegation of a subset of permissions Attestation 2 � ● Prevents needing to share identity Attestation 1 � ● Cryptographically enforced Owner Tenant Attestation 1 � Attestation 2 � Policy: “Airbnb can set Policy: “Tenant can set Owner’s thermostat setpoint, Owner’s thermostat setpoint, and can delegate” (Signed by for only the duration of their Owner) � stay” (Signed by Airbnb)

  10. Authorization Global Permissions Graph 1. How does one receive permission? 2. How does the device know that the request was sent by someone who has permission? 2. Entity presents a path through the graph as proof it is authorized 1. Entity receives permission via a chain of attestations

  11. Two Technical Challenges in WAVE 1. How are attestations stored, disseminated, and discovered, without relying on a single trusted party? ◦ Storage layer 2. How to protect the privacy of attestations? ◦ Privacy layer

  12. Roadmap 1. The Problem 2. WAVE’s Approach 3. WAVE’s Storage Layer 4. WAVE’s Privacy layer 5. Implementation and Evaluation

  13. Storage Layer Goals Storage provider is untrusted, so it must be verifiable that it is not: ◦ Hiding objects (such as revocation entries) ◦ Forging existence of non-existent objects Blockchain is a natural solution but unfortunately doesn’t scale

  14. WAVE’s Storage Layer (First Try) Use log of operations backed by Merkle Tree Merkle Tree Log of [Certificate Transparency, Laurie et al. 2013] operations How to make sure the server can’t hide objects? ◦ Server must be able to prove that an object doesn’t exist ◦ Not supported by Merkle Tree Log! Contains all the authorization objects Can prove: - Append-only - Value exists in log

  15. WAVE’s Storage Layer (Second Try) Use another Merkle tree to construct map of Merkle Tree Log of Merkle Tree Map of objects [Verifiable Log-Derived Map, operations objects Eijdenberg et al. 2015] However, server could serve requests using an older version of the map ◦ How to fix this? Contains all the Contains objects indexed authorization objects by their hash Can prove: Can prove: - Append-only - Value does not exist - Value exists in log - Value exists

  16. WAVE’s Storage Layer (Final) Use another log to Merkle Tree Log of Merkle Tree Map of Merkle Tree Log of store progression of operations objects map roots map root hashes Auditors make sure that each request is served using the latest map version Contains all the Contains objects indexed Contains all the root authorization objects by their hash hashes of the map Can prove: Can prove: Can prove: - Append-only - Value does not exist - Append-only - Value exists in log - Value exists - Value exists in log

  17. Roadmap 1. The Problem 2. WAVE’s Approach 3. WAVE’s Storage Layer 4. WAVE’s Privacy layer 5. Implementation and Evaluation

  18. Private Attestations With this storage model, global permissions graph is publicly accessible ◦ Leaks, e.g., who is renting which house on Airbnb Storage is untrusted; can’t rely on it for access control Instead we rely on cryptography ◦ Attestations are encrypted ◦ They can only be decrypted by an entity who can use them in a proof

  19. Encrypt Attestations Proving entity

  20. Encrypt Attestations Hidden attestations Decryptable attestations Proving entity

  21. Encrypt Attestations Hidden attestations Decryptable attestations Proving entity

  22. Our Technique: Reverse- Discoverable Encryption (simplified) Attestations are encrypted using recipient’s public key We actually use Attestations include secret key of granter policy-aware ◦ Allows decryption of upstream attestations encryption to restrict access further. � Attestation 1 � Attestation 2 � Signed policy � Signed policy � Tenant Owner signs statement Airbnb signs statement saying saying “Airbnb has “Tenant has permission to permission to set my adjust Owner’s thermostat thermostat setpoint, and can setpoint” delegate”

  23. Our Technique: Reverse- Discoverable Encryption (simplified) Each entity has a keypair for encrypting attestations We actually use policy-aware Attestations are encrypted using recipient’s public key encryption to restrict Attestations include secret key of granter access further. � ◦ Allows decryption of upstream attestations Tenant Attestation 1 � Attestation 2 � Policy: “Airbnb can set Policy: “Tenant can set Owner’s thermostat setpoint, Owner’s thermostat setpoint, and can delegate” (Signed by during their stay” (Signed by Owner) � Airbnb)

  24. Reverse-Discoverable Encryption Proving entity

  25. Roadmap 1. The Problem 2. WAVE’s Approach 3. WAVE’s Storage Layer 4. WAVE’s Privacy layer 5. Implementation and Evaluation

  26. First Release of WAVE Version 3 Feature WAVE 2 WAVE 3 Delegation Yes Yes Decentralized Yes Yes Scalable No (blockchain) Yes Encrypted Attestations No Yes Fully General No (IoT pubsub) Yes Full Implementation Yes Yes WAVE Version 2: github.com/immesys/bw2 WAVE Version 3: github.com/immesys/wave

  27. Operation Times [ms] Granting permissions Creating accounts Verifying proofs Discovering new attestations

  28. Use Case Comparison (Critical Path) 1. Authenticate LDAP ◦ LDAP Bind 2. Check Auth Policy 6.3ms ◦ SQL Lookup App server SQL DB User:pass Total: 7.5 ms 1.2ms

  29. Use Case Comparison (Critical Path) WAVE agent Proof Times: Length 1: 2.8ms Length 3: 6.2ms App server Proof 1. Validate proof (yields policy) Total: < 7 ms for common patterns

  30. Conclusion WAVE is an authentication/verification engine that makes trust relationships fine-grained It can run at global scale without a central trusted party It is a REAL artifact we have operated for 2 years, securing over 800 IoT devices in California!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

WAVE: A Decentralized Authorization Framework with Transitive Delegation [Andersen et al.,

WAVE: A Decentralized Authorization Framework with Transitive Delegation [Andersen et al.,

WAVE: A Decentralized Authorization Framework with Transitive Delegation [Andersen et al., USENIX Security 2019] Slides credit Michael Andersen Representative authorization example BLDG2/Floor3/HVAC BLDG2/Floor3 BLDG2/Floor3/LIGHT

1.09k views • 73 slides
Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A.

Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A.

Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A. Siris joint work with D. Dimopoulos, N. Fotiou, S. Voulgaris, G.C. Polyzos Mobile Multimedia Laboratory Athens University of Economics and Business,

289 views • 28 slides
Authorization the permission or power given to sb to do sth: enter a security area without

Authorization the permission or power given to sb to do sth: enter a security area without

Authorization the permission or power given to sb to do sth: enter a security area without authorization Authorization in Oxford Advanced Learner's Dictionary Object-oriented Databases authorization is the concept of allowing

70 views • 6 slides
Automatic Placement of Authorization Hooks in the Linux Security Modules Framework Vinod

Automatic Placement of Authorization Hooks in the Linux Security Modules Framework Vinod

Automatic Placement of Authorization Hooks in the Linux Security Modules Framework Vinod Ganapathy vg@cs.wisc.edu University of Wisconsin, Madison Joint work with Trent Jaeger Somesh Jha tjaeger@cse.psu.edu jha@cs.wisc.edu Pennsylvania

604 views • 41 slides
CrowdBC: A Blockchain-based Decentralized Framework for Crowdsourcing Hailiang ZHAO

CrowdBC: A Blockchain-based Decentralized Framework for Crowdsourcing Hailiang ZHAO

CrowdBC: A Blockchain-based Decentralized Framework for Crowdsourcing Hailiang ZHAO htp://hliangzhao.me December 10, 2019 This paper was published on IEEE Trans. on Parallel and Distributed Systems (TPDS) , Jun 2019. Hailiang ZHAO @ ZJU-CS

493 views • 30 slides
Using The Delegated CoAP Authentication and Authorization Framework (DCAF) With CBOR Encoded

Using The Delegated CoAP Authentication and Authorization Framework (DCAF) With CBOR Encoded

Using The Delegated CoAP Authentication and Authorization Framework (DCAF) With CBOR Encoded Message Syntax draft-bergmann-ace-dcaf-cose Olaf Bergmann, Stefanie Gerdes { gerdes | bergmann } @tzi.org Presented by Carsten Bormann cabo@tzi.org

502 views • 18 slides
Authorization We will use the terms authorization and access control interchangeably

Authorization We will use the terms authorization and access control interchangeably

Authorization We will use the terms authorization and access control interchangeably Authorization answers the question who is allowed to do what ? A first step in the development of an access control system is the

651 views • 53 slides
Delegated Authenticated Authorization Framework (DCAF) draft-gerdes-ace-dcaf-authorize Stefanie

Delegated Authenticated Authorization Framework (DCAF) draft-gerdes-ace-dcaf-authorize Stefanie

Delegated Authenticated Authorization Framework (DCAF) draft-gerdes-ace-dcaf-authorize Stefanie Gerdes, Olaf Bergmann, Carsten Bormann { gerdes | bergmann | cabo } @tzi.org IETF-94, ACE Meeting, 2015-11-02 1 / 27 Review Comments Renzo:

750 views • 27 slides
GENwave What is Google wave? What is a wave? A wave is equal parts conversation and

GENwave What is Google wave? What is a wave? A wave is equal parts conversation and

GENwave What is Google wave? What is a wave? A wave is equal parts conversation and document. People can communicate and work together with richly formatted text, photos, videos, maps, and more. A wave is shared. Any participant can

942 views • 7 slides
Security Framework for Decentralized Shared Calendars Jagdish Prasad Achara Research Master of

Security Framework for Decentralized Shared Calendars Jagdish Prasad Achara Research Master of

Security Framework for Decentralized Shared Calendars Jagdish Prasad Achara Research Master of Computer Science (Specialty : Services, Security and Networks) 24 juin 2011 Universit Henri Poincar Jagdish Prasad Achara (UHP Nancy 1)

653 views • 25 slides
1 Travel Authorization and Expense Process 1. Introduction 2. Travel Authorization 3. Travel

1 Travel Authorization and Expense Process 1. Introduction 2. Travel Authorization 3. Travel

1 Travel Authorization and Expense Process 1. Introduction 2. Travel Authorization 3. Travel Expense 4. Travel Regulations 2 Travel Authorization (See Next Slide for Detailed Steps) 2. Trip Information goes here 1. Budgetary Coding goes

319 views • 11 slides
Introducing OpenPush A Free, Decentralized Push Messaging Framework for Android Marcus Hoffmann -

Introducing OpenPush A Free, Decentralized Push Messaging Framework for Android Marcus Hoffmann -

Introducing OpenPush A Free, Decentralized Push Messaging Framework for Android Marcus Hoffmann - bubu@bubu1.eu 1 / 31 About Me Hi, I'm Marcus! Free software developer from Berlin. Working on a free Android ecosystem. F-Droid core

358 views • 31 slides
Creating Objects in Flexible Authorization Framework Nicola Zannone, Sushil Jajodia,

Creating Objects in Flexible Authorization Framework Nicola Zannone, Sushil Jajodia,

Dept of Information and Communication Technology Creating Objects in Flexible Authorization Framework Nicola Zannone, Sushil Jajodia, Duminda Wijesekera Dep. of Information and Communication Technology, University of Trento

675 views • 19 slides
A Hybrid Evolutionary Algorithm Framework for Optimising Power Take Off and Placements of Wave

A Hybrid Evolutionary Algorithm Framework for Optimising Power Take Off and Placements of Wave

A Hybrid Evolutionary Algorithm Framework for Optimising Power Take Off and Placements of Wave Energy Converters Mehdi Neshat, Bradley Alexander, Nataliia Sergiienko, Markus Wagner GECCO '19 Slide 1 Neshat et al., Optimisation and Logistics

627 views • 44 slides
EGI-Engage JRA1.1 Authentication and Authorization Infrastructure Christos Kanellopoulos

EGI-Engage JRA1.1 Authentication and Authorization Infrastructure Christos Kanellopoulos

EGI-Engage JRA1.1 Authentication and Authorization Infrastructure Christos Kanellopoulos Nicolas Liampotis - GRNET WP3 Meeting - 2017.03.24 www.egi.eu EGI-Engage is co-funded by the Horizon 2020 Framework Programme of the European Union

352 views • 14 slides
A Decentralized and Distributed E-voting Scheme Based on Cryptographic Shuffles Decentralized

A Decentralized and Distributed E-voting Scheme Based on Cryptographic Shuffles Decentralized

A Decentralized and Distributed E-voting Scheme Based on Cryptographic Shuffles Decentralized and Distributed Systems Laboratory Andy Caforio Responsible: Prof. Bryan Ford Supervision: Linus Gasser, Philipp Jovanovic 1 Way back when

445 views • 20 slides
Fraud Prevention/ Student Activity Account Best Practices November 6, 2019 Ag e nda F ra ud

Fraud Prevention/ Student Activity Account Best Practices November 6, 2019 Ag e nda F ra ud

11/12/2019 Fraud Prevention/ Student Activity Account Best Practices November 6, 2019 Ag e nda F ra ud Pre ve ntion Stude nt Ac tivitie s Cre dit Ca rds 2 3 1 11/12/2019 Cr e sse ys F r aud T r iangle Ne e d F r aud T r

585 views • 17 slides
Using Off-Path and On-Path Signaling for Internet Security Saikat Guha, Paul Francis Cornell

Using Off-Path and On-Path Signaling for Internet Security Saikat Guha, Paul Francis Cornell

Using Off-Path and On-Path Signaling for Internet Security Saikat Guha, Paul Francis Cornell University IETF 66 Off-path BoF Guha and Francis Using Off-path and On-Path Signaling for Internet Security Architecture Default-Off Data-Path

651 views • 15 slides
1 Basic Polic ie s for Small Gove r nme nts E xample for r e que sting vac ation time :

1 Basic Polic ie s for Small Gove r nme nts E xample for r e que sting vac ation time :

Basic Polic ie s for Small Gove r nme nts Basic Polic ie s for Small Gove r nme nts What is a polic y? Diffe re nc e b e twe e n a po lic y a nd pro c e dure Po lic ie s: Co mmunic a te a n o rg a niza tio n s c ulture ,

585 views • 5 slides
Sharing Research Data Sets Jeffrey Brown, Lesley Curtis, and Rich Platt June 13, 2014 Previously

Sharing Research Data Sets Jeffrey Brown, Lesley Curtis, and Rich Platt June 13, 2014 Previously

The NIH Collaboratory Distributed Research Network: A Privacy Protecting Method for Sharing Research Data Sets Jeffrey Brown, Lesley Curtis, and Rich Platt June 13, 2014 Previously The NIH Collaboratory: Data Sharing Principles- An Initial

841 views • 32 slides
Short Term Certificates d raft-sheffer-acme-star-lurk-00 Yaron Sheffer, Diego Lopez, Thomas

Short Term Certificates d raft-sheffer-acme-star-lurk-00 Yaron Sheffer, Diego Lopez, Thomas

Short Term Certificates d raft-sheffer-acme-star-lurk-00 Yaron Sheffer, Diego Lopez, Thomas Fossati, Oscar Gonzalez de Dios IETF 97, Seoul Motivation Delegate the authorization to publish a web site Securely: owner can revoke the

488 views • 10 slides
PKI and Certificate Security Outline Motivation Certificates Public Key Infrastructure

PKI and Certificate Security Outline Motivation Certificates Public Key Infrastructure

IN3210 Network Security PKI and Certificate Security Outline Motivation Certificates Public Key Infrastructure Threats to certificates / PKI Protecting certificates / PKI 2 Certificates Motivation 3 Motivation: TLS

1.68k views • 108 slides
IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect

IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect

AllSeen Summit 2015: IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect ALLSEEN ALLIANCE Agenda Slide Title 3 Trust and PKI 9 Web Security - PKI example 26

450 views • 41 slides
Modern Web Security Patterns Chad Hollman Analyst, County of Sacramento Department of Technology

Modern Web Security Patterns Chad Hollman Analyst, County of Sacramento Department of Technology

Modern Web Security Patterns Chad Hollman Analyst, County of Sacramento Department of Technology Current Issues of Web Development Security Subresource Integrity Checking Content Security Policies HTTP Public Key Pinning Certificate

1.05k views • 61 slides

More recommend