Cryptographic security for mobile code

Proceedings 2001 IEEE Symposium on Security and Privacy. S&P 2001 Pub Date : 2001-05-14 DOI:10.1109/SECPRI.2001.924283

Joy Algesheimer, C. Cachin, J. Camenisch, G. Karjoth

{"title":"Cryptographic security for mobile code","authors":"Joy Algesheimer, C. Cachin, J. Camenisch, G. Karjoth","doi":"10.1109/SECPRI.2001.924283","DOIUrl":null,"url":null,"abstract":"We address the protection of mobile code against cheating and potentially malicious hosts. We point out that the recent approach based on computing with \"encrypted functions\" is limited to the case where only the code originator learns the result of the completion and the host running the code must not notice anything at all. We argue that if the host is to receive some output of the computation, then securing mobile code requires minimal trust in a third party. Tamper-proof hardware installed on each host has been proposed for this purpose. We introduce a new approach for securely executing (fragments of) mobile code that relies on a minimally trusted third party. This party is a generic independent entity, called the secure computation service, which performs some operations on behalf of the mobile application, but does not learn anything about the encrypted computation. Because it is universal, the secure computation service needs to be only minimally trusted and can serve many different applications. We present a protocol based on tools from theoretical cryptography that is quite practical for computing small functions.","PeriodicalId":20502,"journal":{"name":"Proceedings 2001 IEEE Symposium on Security and Privacy. S&P 2001","volume":"6 1","pages":"2-11"},"PeriodicalIF":0.0000,"publicationDate":"2001-05-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"142","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings 2001 IEEE Symposium on Security and Privacy. S&P 2001","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SECPRI.2001.924283","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 142

Abstract

We address the protection of mobile code against cheating and potentially malicious hosts. We point out that the recent approach based on computing with "encrypted functions" is limited to the case where only the code originator learns the result of the completion and the host running the code must not notice anything at all. We argue that if the host is to receive some output of the computation, then securing mobile code requires minimal trust in a third party. Tamper-proof hardware installed on each host has been proposed for this purpose. We introduce a new approach for securely executing (fragments of) mobile code that relies on a minimally trusted third party. This party is a generic independent entity, called the secure computation service, which performs some operations on behalf of the mobile application, but does not learn anything about the encrypted computation. Because it is universal, the secure computation service needs to be only minimally trusted and can serve many different applications. We present a protocol based on tools from theoretical cryptography that is quite practical for computing small functions.

查看原文本刊更多论文

移动代码的加密安全性

我们解决了移动代码的保护，防止作弊和潜在的恶意主机。我们指出，最近基于“加密函数”计算的方法仅限于只有代码发起者知道补全结果，而运行代码的主机绝对不会注意到任何事情的情况。我们认为，如果主机要接收计算的一些输出，那么确保移动代码的安全需要对第三方的最小信任。为此，建议在每台主机上安装防篡改硬件。我们引入了一种新的方法来安全执行(片段)依赖于最低限度信任的第三方的移动代码。这一方是一个通用的独立实体，称为安全计算服务，它代表移动应用程序执行一些操作，但不了解任何关于加密计算的信息。因为它是通用的，所以安全计算服务只需要得到最低限度的信任，并且可以服务于许多不同的应用程序。我们提出了一种基于理论密码学工具的协议，它对于计算小函数非常实用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings 2001 IEEE Symposium on Security and Privacy. S&P 2001

自引率

0.00%

发文量