LEXP: Preserving User Privacy and Certifying the Location Information Author ： Ken Nakanishi, Jin Nakazawa, and Hideyuki Tokuda Presented by Yi Cheng Lin.

Slides:

Advertisements

Similar presentations

Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.

Advertisements

Authentication Applications Kerberos And X.509. Kerberos Motivation –Secure against eavesdropping –Reliable – distributed architecture –Transparent –

Chapter 14 – Authentication Applications

NETWORK SECURITY.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

多媒體網路安全實驗室 An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards 作者 :JongHyup LEE 出處.

Secure Multiparty Computations on Bitcoin

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Network Security Essentials Chapter 4

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

Chapter 4 Authentication Applications. Objectives: authentication functions developed to support application-level authentication & digital signatures.

AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)

Implementation of a Two-way Authentication Protocol Using Shared Key with Hash CS265 Sec. 2 David Wang.

 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.

A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中日期 :

1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.

Online Security Tuesday April 8, 2003 Maxence Crossley.

CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.

A password authentication scheme with secure password updating SEC 期末報告學號：姓名：翁玉芬.

McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 Chapter 30 Message Security, User Authentication, and Key Management.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

More on AuthenticationCS-4513 D-term More on Authentication CS-4513 Distributed Computing Systems (Slides include materials from Operating System.

1 Security Weakness in a Three-Party Password-Based Key Exchange Protocol Using Weil Pairing From ： ePrint (August 2005) Author ： Junghyun Nam, Seungjoo.

TrustPort Public Key Infrastructure. Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.

1 Authentication Protocols Celia Li Computer Science and Engineering York University.

An Enhanced Two-factor User Authentication Scheme in Wireless Sensor Networks DAOJING HE, YI GAO, SAMMY CHAN, CHUN CHEN, JIAJUN BU Ad Hoc & Sensor Wireless.

Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.

1 Anonymous Roaming Authentication Protocol with ID-based Signatures Lih-Chyau Wuu Chi-Hsiang Hung Department of Electronic Engineering National Yunlin.

多媒體網路安全實驗室 An Efficient RFID Authentication Protocol for Low-cost Tags Date ： Reporter : Hong Ji Wei Authors : Yanfei Liu From : 2008 IEEE/IFIP.

1 Authentication and Digital Signature Schemes and Their Applications to E-commerce ( 身份認證與數位簽章技術及其在電子商務上的應用 ) Advisor: Chin-Chen Chang 1, 2 Student: Ya-Fen.

Cryptography Encryption/Decryption Franci Tajnik CISA Franci Tajnik.

Unit 1: Protection and Security for Grid Computing Part 2

Networks Management and Security Lecture 3.

Chapter 21 Distributed System Security Copyright © 2008.

Kerberos Named after a mythological three-headed dog that guards the underworld of Hades, Kerberos is a network authentication protocol that was designed.

Software Security Seminar - 1 Chapter 5. Advanced Protocols 조미성 Applied Cryptography.

Chapter 16 Security Introduction to CS 1 st Semester, 2012 Sanghyun Park.

Secure Authentication Scheme with Anonymity for Wireless Communications Speaker : Hong-Ji Wei Date :

Module 4 Network & Application Security: Kerberos – X509 Authentication service – IP security Architecture – Secure socket layer – Electronic mail security.

Security in Skype Prepared by Prithula Dhungel. Security in Skype2 The Skype Service P2P based VoIP software Founded by the founders of Kazaa Can be downloaded.

Middleware for Secure Environments Presented by Kemal Altıntaş Hümeyra Topcu-Altıntaş Osman Şen.

1 Methods and Protocols for Secure Key Negotiation Using IKE Author : Michael S. Borella, 3Com Corp.

X.509 Topics PGP S/MIME Kerberos. Directory Authentication Framework X.509 is part of the ISO X.500 directory standard. used by S/MIME, SSL, IPSec, and.

Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Secure Communication between Set-top Box and Smart Card in DTV Broadcasting Authors: T. Jiang, Y. Hou and S. Zheng Source: IEEE Transactions on Consumer.

SPEAKER: HONG-JI WEI DATE: Secure Anonymous Authentication Scheme with Roaming for Mobile Networks.

Authentication protocol providing user anonymity and untraceability in wireless mobile communication systems Computer Networks Volume: 44, Issue: 2, February.

A flexible biometrics remote user authentication scheme Authors: Chu-Hsing Lin and Yi-Yi Lai Sources: Computer Standards & Interfaces, 27(1), pp.19-23,

AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)

User authentication schemes with pseudonymity for ubiquitous sensor network in NGN Authors: Binod Vaidya, Joel J. Rodrigues and Jong Hyuk Park Source:

Secure Messenger Protocol using AES (Rijndael) Sang won, Lee

Password-based user authentication and key distribution protocols for client-server applications Authors: Her-Tyan Yeh and Hung-Min Sun Sources: The Journal.

Lecture 11 Overview. Digital Signature Properties CS 450/650 Lecture 11: Digital Signatures 2 Unforgeable: Only the signer can produce his/her signature.

SPEAKER: HONG-JI WEI DATE: Efficient and Secure Anonymous Authentication Scheme with Roaming Used in Mobile Networks.

December 14, 2000Securely Available Credentails (SACRED) - Framework Draft 1 Securely Available Credentials (SACRED) Protocol Framework, Draft Specification.

Lecture 9 Overview. Digital Signature Properties CS 450/650 Lecture 9: Digital Signatures 2 Unforgeable: Only the signer can produce his/her signature.

KERBEROS SYSTEM Kumar Madugula.

Lesson Introduction ●Authentication protocols ●Key exchange protocols ●Kerberos Security Protocols.

@Yuan Xue CS 285 Network Security Key Distribution and Management Yuan Xue Fall 2012.

Pertemuan #8 Key Management Kuliah Pengaman Jaringan.

Cryptography CSS 329 Lecture 13:SSL.

Whatsapp Security Ahmad Hijazi Systèmes de Télécommunications & Réseaux Informatiques (STRI) 20 April 2016.

Tanenbaum & Van Steen, Distributed Systems: Principles and Paradigms, 2e, (c) 2007 Prentice-Hall, Inc. All rights reserved DISTRIBUTED SYSTEMS.

網路環境中通訊安全技術之研究 Secure Communication Schemes in Network Environments

Cryptography and Network Security

Security of a Remote Users Authentication Scheme Using Smart Cards

An efficient biometric based remote user authentication scheme for secure internet of things environment Source: Journal of Intelligent & Fuzzy Systems.

Authors：Debiao He, Sherali Zeadally, Neeraj Kumar and Wei Wu

Presentation transcript:

LEXP: Preserving User Privacy and Certifying the Location Information Author ： Ken Nakanishi, Jin Nakazawa, and Hideyuki Tokuda Presented by Yi Cheng Lin

Outline Introduction Architecture  Detector Registration  Address Notification  Address Resolution  Ticket Publication and Verification Security Analysis Conclusion

Introduction Many kind of location sensing technologies already exist, and more are under development Location information Exchange Protocol (LEXP) was designed for preserving user privacy and certifying users location information

Architecture

Parameter Each client, detector, service provider, and ticket have its own unique identifier CID, DID, SID TID h(x),h 2 (x) denote the MD5 hash value of x {x} key denote the encrypted data of x by key

Detector Registration h( DID )h( password )address password header{h(DID) h(password) h(detector_publickey) secretkey} resolver_publickey header{h(detector_publickey)} resolver_privatekey Register the secret key information

Address Notification h(RFID)h(CID)addressra update

Address Resolution h(RFID)h(CID)addressra rb header{h(DID) h(RFID) rb} secretkey header{ra address rb} secretkey h(RFID)addressra

Ticket Publication(1/2) 1. Generate a pair of Diffie-Hellman key 2. D-public key 3. C-public key D-private key C-private key DES session key 4. {h(RFID) ra} sessionkey h(RFID)addressra Check h(RFID)

Ticket Publication(2/2) random number R ticket = {TID timestamp} detector-privatekey {DID TID R ticket} sessionkey DIDdector’s addressTIDrt(=at this point’s ra)Rticket TIDrth N (R)n(at first n = N, n is the consumable time of ticket)

Ticket Verification {validity r} detector_privatekey Check h N-n (h n (R)) = h N (R)

Security Analysis Address Notification  CID is secret Address Resolution  No attacker can get secret key (in a secret channel) Ticket Publication  Only detector and client have ra Ticket Verification  h n (R) is one-time password  The password required next time is h n-1 (R), which no one can generate unless he knows R

Conclusion LEXP guarantees users to keep anonymity, guarantees applications that a user cannot forge his location information Applying the modules of ‘chain of confidence’ and one-time password