Upload File

a toolkit for secure internet multicast debanjan saha isabel chang robert engel dimitris pendarakis...

  • Home
  • Documents
  • A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research
14
A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research Center [email protected]

Upload: shana-whitehead

Post on 17-Dec-2015

213 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

A Toolkit for Secure Internet Multicast

Debanjan Saha

Isabel Chang Robert Engel Dimitris Pendarakis

Pankaj Rohatgi Ran Canetti

IBM T.J. Watson Research Center

[email protected]

Page 2: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Overall Architecture

Members

Members

Members

Controller& reflector

Controller& reflector

Controller& reflector

Group owner

Page 3: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Domain Architecture

Data Plane Control Plane

SendersSenders

Receivers Receivers

ControllerReflector

To

& f

rom

oth

er d

omai

ns

To

& f

rom

oth

er d

omai

ns

Page 4: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Control Messages

Join a session Leave from a session Expelled from a session

Key Update

Client Initiated Controller Initiated

Forward secrecyBackward secrecy

Registration

Page 5: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Message Types• Member initiated

– Registration• Registration request• Registration response

– Join a session• Join request• Join response

– Leave a session• Leave request• Leave confirm

• Controller initiated– Update session key

– Expel a member

Page 6: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Control MessagesDomain controllerSender Receiver

Sender Join Request

Receiver Join Request

Sender Join ConfirmReceiver Join Confirm

Key UpdateKey Update

Sender Leave Request

Sender Leave Confirm

Receiver Expel Confirm

Key UpdateKey Update

Receiver ID

Page 7: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Joining a Group: Message FlowControllerMember

Member Hello

Certificate

[Master Secret] Controller public key

Client ID & Password

Member Join Confirm

Key Exchange

Controller Hello

Member Join Confirm

Keys

3.7ms (512-bit key)12.3ms (1024-bit key)

10.13ms (512-bit key) 47.9ms (1024-bit key)

Page 8: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Light Weight Protocol: Message Flow

ControllerMemberMember Join Request

[Session keys] Member public key

Member Join Confirm

Member ID

10.13ms (512-bit key) 47.9ms (1024-bit key)

1.3ms (512-bit key) 5.2ms (1024-bit key)

Page 9: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Wallner Scheme

M0 M1 M2 M3 M4 M5 M6 M7

SK

K0 K1 K2 K3 K4 K5 K6 K7

K01K23

K45K67

K0123 K4567

Page 10: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Update Session Key: Message Format

• Key encrypting keys (K0,K1) and K2

• Consider an one way hash function g( )

Message Type Message Len

Session ID Sequence #

Payload Len Number of KEK

KeyID(K0) KeyID(K1)

[ SK ] g(K0,K1)

Payload Len Number of KEK

KeyID(K2)

[ SK ] g(K2)

Controller Signature

Page 11: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Data Plane

• Encryption/authentication is transparent to the application

• Socket like send/receive API• Encryption/authentication can be turned on/off using a flag• Facilitates partial encryption/authentication based on

application semantics

Page 12: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Software Architecture:Controller

CryptoEngine

SSL

SessionManager

GUI

Cipher Manager

RegistrationManager

Secure Multicast Protocol Suite

Socket API

Reliable Multicast

SSLStandardMulticast

Page 13: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Software Architecture:Client

CryptoEngine

Reliable Multicast

Secure Multicast Protocol Suite

Socket API

Key Ring RegistrationAgent

Secure Multicast Socket API

SSLStandardMulticast

Page 14: A Toolkit for Secure Internet Multicast Debanjan Saha Isabel Chang Robert Engel Dimitris Pendarakis Pankaj Rohatgi Ran Canetti IBM T.J. Watson Research

Status

• Version 0.5 of the toolkit available• Planned demo at Chicago IETF & RSA conference• Applications

– Stock distribution• Authentic and/or confidential

• Real-time, low data rate, reliable

– Audio/video distribution• 20 Kbps to 1 Mbps

• Authentic and/or confidential

• Real-time, unreliable multicast


Nir Bitansky, Ran Canetti, Omer Paneth, Alon Rosen

En 1954, Elias Canetti, viajó a Marrakesh; de sus

Canetti, Elias - Crowds and Power (Continuum, 1978)

Debanjan Chowdhury and Subir Sachdevqpt.physics.harvard.edu/p270.pdf · Debanjan Chowdhury1 and Subir Sachdev1,2 1Department of Physics, Harvard University, Cambridge, Massachusetts-02138,

[v. K. Rohatgi, A. K. Md. Ehsanes Saleh] an Introduction

MOBILE + CTV = KILLER VIDEO STRATEGY - Paul Canetti - Maz Digital

Obtaining Universally Composable Security: Towards the ...canetti/materials/ac07.pdf · Obtaining Universally Composable Security: Towards the Bare Bones of Trust Ran Canetti IBM

Tarde, Canetti, And Deleuze on Crowds and Packs_2010

Telephone Directory - Rohatgi Charitable Trust Kishore Rohatgi (R) 9213731010 Retired Lt.Nawal Kishore 2287, Gali Anar , Kinari Bazar , Wife : Rajni Bala Rohatgi (M) 9268195325 Business

Ran Canetti, Yael Tauman Kalai, Mayank Varia, Daniel Wichs

Peter N. Golder, Debanjan Mitra, & Christine Moorman …moorman/Publications/What is... · Peter N. Golder, Debanjan Mitra, & Christine Moorman ... An Integrative Framework of Processes

4 Souvik Modi, Swetha M.G, Debanjan Goswami, Gagan D Gupta, … · 2009-05-12 · 4 Souvik Modi, Swetha M.G, Debanjan Goswami, Gagan D Gupta, Satyajit Mayor, 5 Yamuna Krishnan* 6

Sumeet Rohatgi Elsevier Innovation Live

Ran Canetti, Yilei Chen, # Eurocrypt 2017 special edition ... · 1 Constraint hiding constrained PRF for NC1 from LWE Ran Canetti, Yilei Chen, # Eurocrypt 2017 special edition

Carolyn Canetti - Social Networking Sites and the Music Industry

"Volatile Oil "by Debanjan Chatterjee & Arunit Maji

6.897: Selected Topics in Cryptography - MIT OpenCourseWare · 6.897: Selected Topics in Cryptography Lectures 9 and 10 Lecturer: Ran Canetti. Highlights of past lectures ... [Canetti-Halevi-Katz04]

Canetti Elias Adorno Theodor Elias Canetti Discussion With Theodor w Adorno

Demokratibegreppet hos Elias Canetti

Debanjan summer

Canetti Elias Kafkas Other Trial Letters Felice

Peter N. Golder, Debanjan Mitra, & Christine Moorman …moorman/Publications/Golder, Mitra... · Peter N. Golder, Debanjan Mitra, & Christine Moorman What Is Quality? An Integrative

Just Fast Keying: Key Agreement In A Hostile Internetpeople.csail.mit.edu/canetti/materials/jfk.pdf · 2008. 10. 12. · 2 Aiello, Bellovin, Blaze, Canetti, Ioannidis, Keromytis,

IP over Optical Networks Debanjan Saha Bala Rajagopalan {dsaha, braja}@tellium.com

KDC11- Anand Rohatgi, Synergy Consulting

BRIEF ON VISIT OF PROF. PRADEEP ROHATGI TO IIM … · BRIEF ON VISIT OF PROF. PRADEEP ROHATGI TO IIM DC ON 17.1.2015 Prof. Pradeep K Rohatgi is a Distinguished Professor in ... the

Debanjan Saha synopsis of research proposal

Template attacks Suresh Chari, Josyula R. Rao, Pankaj Rohatgi IBM Research

Canetti Auto de Fe

Elie Canetti* Advisor, Western Hemisphere Department ... · Elie Canetti* Advisor, Western Hemisphere Department, International Monetary Fund *This presentation represents the personal

110 YEARS FROM THE BIRTH OF ELIAS CANETTI 2015 CANETTI … · 2020. 1. 27. · Management "Elias Canetti", Ruse for the fifth year was organized an essay writing contest on a quote

UvA-DARE (Digital Academic Repository) De mens is …Canetti und China 202n Canetti und die chinesische Kultur 202, 203n, 207n, 209n, 213n, 218n, 219n ‘Canetti und Macht’ 198n

Fiat-Shamir and correlation Ran Canetti intractability …cs-people.bu.edu/chenyl/docs/Fiat-Shamir-CIS.pdfRan Canetti Yilei Chen Leonid Reyzin Ron Rothblum Fiat-Shamir and correlation

Sourav Das, Hathibelagal M Roshan, Pradeep Rohatgi ...webman.ceas.uwm.edu/poster/sites/default/files/webform/poster A205... · Sourav Das, Hathibelagal M Roshan, Pradeep Rohatgi Department

An IPSec-based Host Architecture for Secure Internet Multicast R. Canetti, P-C. Cheng, F.Giraud, D. Pendarakis, J.R. Rao, P. Rohatgi, IBM Research D. Saha