Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Through Publicity Eric Osterweil Dan Massey Batsukh Tsendjav Beichuan Zhang Lixia Zhang.

Published byAubrie Richards Modified over 8 years ago

Similar presentations

Presentation on theme: "Security Through Publicity Eric Osterweil Dan Massey Batsukh Tsendjav Beichuan Zhang Lixia Zhang."— Presentation transcript:

1 Security Through Publicity Eric Osterweil Dan Massey Batsukh Tsendjav Beichuan Zhang Lixia Zhang

2 Motivation Security threats are a driving force in current protocol design Public key cryptography is common tool DNSSEC authenticates DNS messages Various BGP Security authenticates routing And many many more….. Protocols are now established relatively mature Deployment is essentially non-existent Everything works if only there was a PKI….

3 Example: DNS Security Caching DNS Server End-user www.darpa.mil www.darpa.mil = 192.5.18.195 Plus (RSA) signature by the darpa.mil private key Attacker can not forge this answer without the darpa.mil private key. Our Problem: How Do You Get The Public Key? Authoritative DNS Servers

4 Public Key Infrastructure Well known hierarchical PKIs Ex: Web certificate authorities exist Protocols propose rigid PKIs DNSSEC follows DNS tree Internet routing follows address registration But This Assumes that Everyone agrees on the hierarchy Hierarchy members agree to manage keys

5 DNSSEC Hierarchy

6 DNSSEC Hierarchical PKI DNSSEC PKI follows the DNS tree hierarchy Root private key signs edu public key Edu private key signs ucla.edu public key Ucla.edu private key signs cs.ucla.edu public key But this assumes that… Hierarchy members agree to manage keys Root, com, edu, etc not motivated to sign until lower level zones sign Lower level zones get little benefit with PKI via root, com, edu, etc. Everyone agrees on the hierarchy Some signatures naturally deviate from tree Ex: netsec.cs.colostate.edu signs netsec.cs.ucla.edu

7 Webs and Reputations Web of Trust (PGP) Small World effect Trust is not transitive, or explicit Only addresses keys (no accountability for actions) No root of trust graph = no stipulated trusted authority Webs tend to be incomplete Reputation Systems Generally create a high-level trust rating Looks like a credit score Trust is subjective in large systems No central authority to set reputation rules If there was such an authority, we would make it a CA!

8 Our Proposed Solution: PSKI Predicated on the Public Space and that it is a complete data set of actions Data guaranteed to be complete, not correct! Protocols that use the PSKI must perform all actions in the public space Forcing all data into public view can create problems for incorrect data…. Beyond the Web of Trust: Web of Trust does not represent actions Tracing bad behavior is not possible

9 What About Privacy? The PSKI is initially designed to work in systems where privacy is not an issue We feel that the initial protocols that use the PSKI will operate on public data sets (well known data) Example: DNS Security No privacy concern in posting zone keys and signatures used to authenticate zone keys.

10 Public Space in DNS DNSSEC defines it own semantics for storing keys and signing records. The public space then mandates that these actions must be made public. PSKI lists all DNSKEYs every reported to belong to the zone All on-tree signatures and all off-tree signatures Some PSKI semantics added for storing this PSKI enforces completeness rule Resolvers judge trustworthiness

11 PSKI - Components Entities: The public key for a zone May be conflicts (two keys both claim to be ucla.edu) And its associated actions Trust Graph: Graph RRSIG records that represent cross-signed DNSKEYs Actions: Cryptographic audit-trail

12 DNSSEC in the PSKI

13 Going Forward Construct rigorous semantics Investigate issues surrounding privacy Grouping Entities Similar to Zones in DNSSEC Keys are 1-to-1 with Entities BUT apps like DNSSEC zones are n-to-1

14 Going Forward (2) Lack of a PKI has been a major barrier for sometime Current protocols (DNSSEC, secure routing, etc.) are being gated Can we store complete information? What kind of abstraction crystallizes zones and signatures?

15 Thank You Questions?

16 Goals Developing key infrastructures for the Internet Goals for this key infrastructure offer a rigorous framework must scale must impart some semantics that facilitate trust assessment

17 Backup

18 Observations Internet-scale key infrastructures do not exist PKIs seem too rigid for such a scale Web of trust does not impart enough rigor for trust New secure protocols need to be built, and need a generic infrastructure

19 PSKI Details - Entities Key ID Key Inception / Expiration

20 PSKI Details - Trust Graph Entities Entity cross signatures Lapses of Entity registration An Entity is allowed to expire, then renewed later Rollover information

21 PSKI Details - Actions Lookup-key Entity Action Type Inception / Expiration Target of Action

22 PSKI Details - Entities’ Actions Entities relate to their actions with meta- data: How often an Entity has signed for data How many active/unexpired Links to actions Current conflicts (with other Entity signatures) Total number of conflicts for this Entity

Download ppt "Security Through Publicity Eric Osterweil Dan Massey Batsukh Tsendjav Beichuan Zhang Lixia Zhang."

Similar presentations

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Cryptography and Network Security

Cryptography and Network Security
COEN 350 Public Key Infrastructure. PKI Task: Securely distribute public keys. Certificates. Repository for retrieving certificates. Method for revoking.

COEN 350 Public Key Infrastructure. PKI Task: Securely distribute public keys. Certificates. Repository for retrieving certificates. Method for revoking.
Lecture 18 Page 1 CS 236 Online DNS Security The Domain Name Service (DNS) translates human-readable names to IP addresses –E.g., thesiger.cs.ucla.edu.

Lecture 18 Page 1 CS 236 Online DNS Security The Domain Name Service (DNS) translates human-readable names to IP addresses –E.g., thesiger.cs.ucla.edu.
Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.

Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.
Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.

Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.
Computer Security Key Management. Introduction We distinguish between a session key and a interchange key ( long term key ). The session key is associated.

Computer Security Key Management. Introduction We distinguish between a session key and a interchange key ( long term key ). The session key is associated.
Securing the Border Gateway Protocol (S-BGP) Dr. Stephen Kent Chief Scientist - Information Security.

Securing the Border Gateway Protocol (S-BGP) Dr. Stephen Kent Chief Scientist - Information Security.
Computer Security Key Management

Computer Security Key Management
Network Infrastructure Security Research at Colorado State University Dan Massey November 19, 2004.

Network Infrastructure Security Research at Colorado State University Dan Massey November 19, 2004.
1 SecSpider: Distributed DNSSEC Monitoring Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.

1 SecSpider: Distributed DNSSEC Monitoring Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.
Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.
Security and Information Assurance for the DNS Dan Massey USC/ISI.

Security and Information Assurance for the DNS Dan Massey USC/ISI.
1 Observations from the DNSSEC Deployment Dan Massey Colorado State University Joint work with Eric Osterweil and Lixia Zhang UCLA.

1 Observations from the DNSSEC Deployment Dan Massey Colorado State University Joint work with Eric Osterweil and Lixia Zhang UCLA.
1 The State and Challenges of the DNSSEC Deployment Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.

1 The State and Challenges of the DNSSEC Deployment Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.
Chapter 8 Web Security.

Chapter 8 Web Security.
PKI To The Masses IPCCC 2004 Dan Massey USC/ISI. 1 March PKI Is Necessary l My PKI related actions since arriving at IPCCC n Used an.

PKI To The Masses IPCCC 2004 Dan Massey USC/ISI. 1 March PKI Is Necessary l My PKI related actions since arriving at IPCCC n Used an.
Security Management.

Security Management.
Domain Name System Security Extensions (DNSSEC) Hackers 2.

Domain Name System Security Extensions (DNSSEC) Hackers 2.
1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

Similar presentations

Ads by Google