Trust management for secure information flows

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Trust management for secure information flows

Full text

Pdf (1.03 MB)

Source

Conference on Computer and Communications Security archive
Proceedings of the 15th ACM conference on Computer and communications security table of contents

Alexandria, Virginia, USA

SESSION: Software security 2 table of contents

Pages 175-188

Year of Publication: 2008

ISBN:978-1-59593-810-7

Authors

Mudhakar Srivatsa	IBM T.J. Watson Research Center, New York, NY, USA
Shane Balfe	Royal Holloway, University of London, Egham, United Kingdom
Kenneth G. Paterson	Royal Holloway, University of London, Egham, United Kingdom
Pankaj Rohatgi	IBM T.J. Watson Research Center, New York, NY, USA

Sponsors

ACM: Association for Computing Machinery
SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 45, Downloads (12 Months): 605, Citation Count: 0

Additional Information:

abstract references index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1455770.1455794 What is a DOI?

ABSTRACT

In both the commercial and defence sectors a compelling need is emerging for the rapid, yet secure, dissemination of information across traditional organisational boundaries. In this paper we present a novel trust management paradigm for securing pan-organisational information flows that aims to address the threat of information leakage. Our trust management system is built around an economic model and a trust-based encryption primitive wherein: (i) entities purchase a key from a Trust Authority (TA) which is bound to a voluntarily reported trust score r, (ii) information flows are encrypted such that a flow tagged with a recipient trust score R can be decrypted by the recipient only if it possesses the key corresponding to a voluntarily reported score r < = R, (iii) the economic model (the price of keys) is set such that a dishonest entity wishing to maximise information leakage is incentivised to report an honest trust score r to the TA. This paper makes two important contributions. First, we quantify fundamental tradeoffs on information flow rate, information leakage rate and error in estimating recipient trust score R. Second, we present a suite of encryption schemes that realise our trust-based encryption primitive and identify computation and communication tradeoffs between them.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Luzi Anderegg , Stephan Eidenbenz, Ad hoc-VCG: a truthful and cost-efficient routing protocol for mobile ad hoc networks with selfish agents, Proceedings of the 9th annual international conference on Mobile computing and networking, September 14-19, 2003, San Diego, CA, USA [doi>10.1145/938985.939011]
	2	G. Athanasiou, L. Tassiulas, and G. S. Yovanof. Overcoming Misbehaviour in Mobile Ad Hoc Networks: An Overview. Crossroads The ACM Student Magazine, (114):23--30, 2005.
	3	D. Balfanz, D.K. Smetters, P. Stewart, and H.C. Wong. Talking To Strangers: Authentication in Ad-Hoc Wireless Networks. In Proceedings of the Network and Distributed System Security Symposium (NDSS 2002). The Internet Society, 2002.
	4	S. Balfe, K. Boklan, Z. Klagsburn, and K.G. Paterson. Key Refreshing in Identity-based Cryptography and its Applications in MANETs. In Proceedings of the 2007 IEEE Military Communications Conference (Milcom 2007), 2007.
	5	M. Barbosa and P. Farshim. Efficient Identity-Based Key Encapsulation to Multiple Parties. In Cryptography and Coding, volume 3796 of Lecture Notes in Computer Science, 2005.
	6	K. Bentahar , P. Farshim , J. Malone-Lee , N. P. Smart, Generic Constructions of Identity-Based and Certificateless KEMs, Journal of Cryptology, v.21 n.2, p.178-199, February 2008 [doi>10.1007/s00145-007-9000-z]
	7	D. Boneh, X. Boyen, and E.-J. Goh. Hierarchical Identity-Based Encryption with Constant Size Ciphertext. In EUROCRYPT, volume 3494 of Lecture Notes in Computer Science, pages 440--456. Springer, 2005.
	8	Dan Boneh , Matthew K. Franklin, Identity-Based Encryption from the Weil Pairing, Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology, p.213-229, August 19-23, 2001
	9	D. Boneh and B. Waters. Conjunctive, Subset, and Range Queries on Encrypted Data. In Proceedings of the 4th Theory of Cryptography Conference (TCC 2007), volume 4392 of LNCS, pages 535--554. Springer, 2007.
	10	S. Buchegger and J.-Y. Le Boudec. Self-Policing Mobile Ad Hoc Networks by Reputation Systems. Communications Magazine, IEEE, 43(7):101--107, 2005.
	11	Levente Buttyán , Jean-Pierre Hubaux, Enforcing service availability in mobile ad-hoc WANs, Proceedings of the 1st ACM international symposium on Mobile ad hoc networking & computing, November 20, 2000, Boston, Massachusetts
	12	Levente Buttyán , Jean-Pierre Hubaux, Stimulating cooperation in self-organizing mobile ad hoc networks, Mobile Networks and Applications, v.8 n.5, p.579-592, October 2003 [doi>10.1023/A:1025146013151]
	13	Naouel Ben Salem , Levente Buttyan , Jean-Pierre Hubaux , Markus Jakobsson, Node Cooperation in Hybrid Ad Hoc Networks, IEEE Transactions on Mobile Computing, v.5 n.4, p.365-376, April 2006 [doi>10.1109/TMC.2006.1599405]
	14	Haowen Chan , Adrian Perrig , Dawn Song, Random Key Predistribution Schemes for Sensor Networks, Proceedings of the 2003 IEEE Symposium on Security and Privacy, p.197, May 11-14, 2003
	15	Pau-Chen Cheng , Pankaj Rohatgi , Claudia Keser , Paul A. Karger , Grant M. Wagner , Angela Schuett Reninger, Fuzzy Multi-Level Security: An Experiment on Quantified Risk-Adaptive Access Control, Proceedings of the 2007 IEEE Symposium on Security and Privacy, p.222-230, May 20-23, 2007 [doi>10.1109/SP.2007.21]
	16	Marco Conti , Enrico Gregori , Gaia Maselli, Cooperation Issues in Mobile Ad Hoc Networks, Proceedings of the 24th International Conference on Distributed Computing Systems Workshops - W7: EC (ICDCSW'04), p.803-808, March 23-24, 2004
	17	Hongmei Deng , Anindo Mukherjee , Dharma P. Agrawal, Threshold and Identity-based Key Management and Authentication for Wireless Ad Hoc Networks, Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 2, p.107, April 05-07, 2004
	18	John R. Douceur, The Sybil Attack, Revised Papers from the First International Workshop on Peer-to-Peer Systems, p.251-260, March 07-08, 2002
	19	Stephan Eidenbenz , Giovanni Resta , Paolo Santi, COMMIT: A Sender-Centric Truthful and Energy-Efficient Routing Protocol for Ad Hoc Networks with Selfish Nodes, Proceedings of the 19th IEEE International Parallel and Distributed Processing Symposium (IPDPS'05) - Workshop 12, p.239.2, April 04-08, 2005 [doi>10.1109/IPDPS.2005.142]
	20	Laurent Eschenauer , Virgil D. Gligor, A key-management scheme for distributed sensor networks, Proceedings of the 9th ACM conference on Computer and communications security, November 18-22, 2002, Washington, DC, USA [doi>10.1145/586110.586117]
	21	P. Farshim. Extensions of Public-Key, Identity-Based and Certificateless Encryption Schemes. PhD thesis, University of Bristol, 2008.
	22	Craig Gentry , Alice Silverberg, Hierarchical ID-Based Cryptography, Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology, p.548-566, December 01-05, 2002
	23	Abhishek Ghose , Jens Grossklags , John Chuang, Resilient Data-Centric Storage in Wireless Ad-Hoc Sensor Networks, Proceedings of the 4th International Conference on Mobile Data Management, p.45-62, January 21-24, 2003
	24	Q. He, D. Wu, and P. Khosla. SORI: A Secure and Objective Reputation-Based Incentive Scheme for Ad--Hoc Networks. In Proceedings of the 3rd IEEE Wireless Communications and Networking Conference, (WCNC 2004), pages 825--830. IEEE Press, 2004.
	25	K. Hoeper and G. Gong. Bootstrapping Security in Mobile Ad Hoc Networks Using Identity-Based Schemes with Key Revocation. Technical Report CACR 2006-04, Centre for Applied Cryptographic Research (CACR) at the University of Waterloo, Canada, 2006.
	26	D. Hwang, B.-C. C. Lai, and I. Verbauwhede. Energy-Memory-Security Tradeoffs in Distributed Sensor Networks. In Ad-Hoc, Mobile, and Wireless Networks: 3rd International Conference, ADHOC--NOW, pages 70--81. Springer-Verlag, 2004.
	27	Sepandar D. Kamvar , Mario T. Schlosser , Hector Garcia-Molina, The Eigentrust algorithm for reputation management in P2P networks, Proceedings of the 12th international conference on World Wide Web, May 20-24, 2003, Budapest, Hungary [doi>10.1145/775152.775242]
	28	Aram Khalili , Jonathan Katz , William A. Arbaugh, Toward Secure Key Distribution in Truly Ad-Hoc Networks, Proceedings of the 2003 Symposium on Applications and the Internet Workshops (SAINT'03 Workshops), p.342, January 27-31, 2003
	29	K. Lai, M. Feldman, I. Stoica, and J. Chuang. Incentives for Cooperation in Peer-to-Peer Networks. In Proceedings of the 1st Workshop on Economics of Peer-to-Peer Systems, 2003.
	30	Jiangtao Li , Ninghui Li , William H. Winsborough, Automated trust negotiation using cryptographic credentials, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA [doi>10.1145/1102120.1102129]
	31	N. Li , W. Winsborough, Towards Practical Automated Trust Negotiation, Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02), p.92, June 05-07, 2002
	32	C.D. McCollum and J.R. Messing L. Notargiacomo. Beyond the Pale of MAC and DAC-Defining New Forms of Access Control. In Proceedings of the 1990 IEEE Symposium on Security and Privacy (S&P 1990), pages 190--200. IEEE Computer Society, 1990.
	33	Pietro Michiardi , Refik Molva, Core: a collaborative reputation mechanism to enforce node cooperation in mobile ad hoc networks, Proceedings of the IFIP TC6/TC11 Sixth Joint Working Conference on Communications and Multimedia Security: Advanced Communications and Multimedia Security, p.107-121, September 26-27, 2002
	34	Andrew C. Myers , Barbara Liskov, A decentralized model for information flow control, Proceedings of the sixteenth ACM symposium on Operating systems principles, p.129-142, October 05-08, 1997, Saint Malo, France
	35	A.C. Myers and B. Liskov. Complete Safe Information Flow with Decentralized Labels. In Proceedings of the 1998 IEEE Symposium on Security and Privacy (S&P 1998), pages 186--197. IEEE Computer Society, 2001.
	36	Jason Program Office. HORIZONTAL INTEGRATION: Broader Access Models for Realizing Information Dominance. Special Report JSR-04-13, MITRE Corporation, 2004.
	37	D. Page , N. P. Smart , F. Vercauteren, A comparison of MNT curves and supersingular curves, Applicable Algebra in Engineering, Communication and Computing, v.17 n.5, p.379-392, October 2006 [doi>10.1007/s00200-006-0017-6]
	38	Bryan Parno , Adrian Perrig , Virgil Gligor, Distributed Detection of Node Replication Attacks in Sensor Networks, Proceedings of the 2005 IEEE Symposium on Security and Privacy, p.49-63, May 08-11, 2005 [doi>10.1109/SP.2005.8]
	39	D. Roberts, G. Lock, and D.C. Verma. Holistan: A Futuristic Scenario for International Coalition Operations. In In Proceedings of 4th International Conference on Knowledge Systems for Coalition Operations (KSCO 2007), 2007.
	40	Elaine Shi , John Bethencourt , T-H. Hubert Chan , Dawn Song , Adrian Perrig, Multi-Dimensional Range Query over Encrypted Data, Proceedings of the 2007 IEEE Symposium on Security and Privacy, p.350-364, May 20-23, 2007 [doi>10.1109/SP.2007.29]
	41	M. Srivatsa, D. Agrawal, and S. Balfe. A Metadata Calculus for Securing Information Flows. In Proceedings of 26th Army Science Conference (ASC 2008), 2008.
	42	Frank Stajano, The Resurrecting Duckling - What Next?, Revised Papers from the 8th International Workshop on Security Protocols, p.204-214, April 03-05, 2000
	43	G. Stoneburner, A. Goguen, and A. Feringa. Risk Management Guide for Information Technology Systems. Special Report 800-300, NIST, 2002.
	44	N. Swamy, M. Hicks, and S. Tsang. Verified Enforcement of Security Policies for Cross-Domain Information Flows. In Proceedings of the 2007 Military Communications Conference (MILCOM 2007), pages 192--206. IEEE Computer Society, 2007.
	45	R. Anderson T. Moore, J. Clulow and S. Nagaraja. New Strategies for Revocation in Ad-Hoc Networks. In Proceedings of the 4th European Workshop on Security and Privacy in Ad Hoc and Sensor Networks (ESAS 2007), pages 232--246. Springer, 2007.
	46	Jeffrey A. Vaughan , Steve Zdancewic, A Cryptographic Decentralized Label Model, Proceedings of the 2007 IEEE Symposium on Security and Privacy, p.192-206, May 20-23, 2007 [doi>10.1109/SP.2007.5]
	47	PeerTrust: Supporting Reputation-Based Trust for Peer-to-Peer Electronic Communities, IEEE Transactions on Knowledge and Data Engineering, v.16 n.7, p.843-857, July 2004 [doi>10.1109/TKDE.2004.1318566]
	48	Beverly Yang , Hector Garcia-Molina, PPay: micropayments for peer-to-peer systems, Proceedings of the 10th ACM conference on Computer and communications security, October 27-30, 2003, Washington D.C., USA [doi>10.1145/948109.948150]
	49	Steve Zdancewic , Andrew C. Myers, Secure Information Flow and CPS, Proceedings of the 10th European Symposium on Programming Languages and Systems, p.46-61, April 02-06, 2001
	50	S. Zhong, J. Chen, and Y. R. Yang. Sprite: A Simple, Cheat-Proof, Credit-Based System for Mobile Ad-Hoc Networks. In Proceedings of the 22nd Annual Joint Conference of the IEEE Computer and Communications Societies (INFOCOM 2003), pages 1987--1997. IEEE Press, 2003.
	51	Sheng Zhong , Li Erran Li , Yanbin Grace Liu , Yang Richard Yang, On designing incentive-compatible routing and forwarding protocols in wireless ad-hoc networks: an integrated approach using game theoretic and cryptographic techniques, Wireless Networks, v.13 n.6, p.799-816, December 2007 [doi>10.1007/s11276-006-9855-1]