C. Chen, Chung-Wei Chen, C. Kuo, Yan-Hao Lai, Jonathan M. McCune, Ahren Studer, A. Perrig, Bo-Yin Yang, Tzong-Chen Wu
{"title":"帮派:聚集,认证和安全组","authors":"C. Chen, Chung-Wei Chen, C. Kuo, Yan-Hao Lai, Jonathan M. McCune, Ahren Studer, A. Perrig, Bo-Yin Yang, Tzong-Chen Wu","doi":"10.1145/1409944.1409957","DOIUrl":null,"url":null,"abstract":"Establishing secure communication among a group of physically collocated people is a challenge. This problem can be reduced to establishing authentic public keys among all the participants - these public keys then serve to establish a shared secret symmetric key for encryption and authentication of messages. Unfortunately, in most real-world settings, public key infrastructures (PKI) are uncommon and distributing a secret in a public space is difficult. Thus, it is a challenge to exchange authentic public keys in a scalable, secure, and easy to use fashion.\n In this paper, we propose GAnGS, a protocol for the secure exchange of authenticated information among a group of people. In contrast to prior work, GAnGS resists Group-in-the-Middle and Sybil attacks by malicious insiders, as well as infiltration attacks by malicious bystanders. GAnGS is designed to be robust to user errors, such as miscounting the number of participants or incorrectly comparing checksums. We have implemented and evaluated GAnGS on Nokia N70 phones. The GAnGS system is viable and achieves a good balance between scalability, security, and ease of use.","PeriodicalId":378295,"journal":{"name":"ACM/IEEE International Conference on Mobile Computing and Networking","volume":"30 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-09-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"88","resultStr":"{\"title\":\"GAnGS: gather, authenticate 'n group securely\",\"authors\":\"C. Chen, Chung-Wei Chen, C. Kuo, Yan-Hao Lai, Jonathan M. McCune, Ahren Studer, A. Perrig, Bo-Yin Yang, Tzong-Chen Wu\",\"doi\":\"10.1145/1409944.1409957\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Establishing secure communication among a group of physically collocated people is a challenge. This problem can be reduced to establishing authentic public keys among all the participants - these public keys then serve to establish a shared secret symmetric key for encryption and authentication of messages. Unfortunately, in most real-world settings, public key infrastructures (PKI) are uncommon and distributing a secret in a public space is difficult. Thus, it is a challenge to exchange authentic public keys in a scalable, secure, and easy to use fashion.\\n In this paper, we propose GAnGS, a protocol for the secure exchange of authenticated information among a group of people. In contrast to prior work, GAnGS resists Group-in-the-Middle and Sybil attacks by malicious insiders, as well as infiltration attacks by malicious bystanders. GAnGS is designed to be robust to user errors, such as miscounting the number of participants or incorrectly comparing checksums. We have implemented and evaluated GAnGS on Nokia N70 phones. The GAnGS system is viable and achieves a good balance between scalability, security, and ease of use.\",\"PeriodicalId\":378295,\"journal\":{\"name\":\"ACM/IEEE International Conference on Mobile Computing and Networking\",\"volume\":\"30 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-09-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"88\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"ACM/IEEE International Conference on Mobile Computing and Networking\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/1409944.1409957\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"ACM/IEEE International Conference on Mobile Computing and Networking","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/1409944.1409957","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 88
摘要
在一群人之间建立安全的通信是一个挑战。这个问题可以简化为在所有参与者之间建立可信的公钥——然后这些公钥用于建立用于消息加密和身份验证的共享秘密对称密钥。不幸的是,在大多数现实环境中,公钥基础设施(PKI)并不常见,在公共空间中分发秘密是很困难的。因此,以一种可扩展、安全且易于使用的方式交换真实的公钥是一项挑战。在本文中,我们提出了一种用于在一组人之间安全交换已认证信息的协议gang。与之前的工作相比,gang可以抵御恶意内部人员的group - In - middle和Sybil攻击,以及恶意旁观者的渗透攻击。gang被设计为对用户错误(如错误计算参与者数量或错误比较校验和)具有鲁棒性。我们已经在诺基亚N70手机上实施并评估了帮派。gang系统是可行的,并且在可伸缩性、安全性和易用性之间取得了很好的平衡。
Establishing secure communication among a group of physically collocated people is a challenge. This problem can be reduced to establishing authentic public keys among all the participants - these public keys then serve to establish a shared secret symmetric key for encryption and authentication of messages. Unfortunately, in most real-world settings, public key infrastructures (PKI) are uncommon and distributing a secret in a public space is difficult. Thus, it is a challenge to exchange authentic public keys in a scalable, secure, and easy to use fashion.
In this paper, we propose GAnGS, a protocol for the secure exchange of authenticated information among a group of people. In contrast to prior work, GAnGS resists Group-in-the-Middle and Sybil attacks by malicious insiders, as well as infiltration attacks by malicious bystanders. GAnGS is designed to be robust to user errors, such as miscounting the number of participants or incorrectly comparing checksums. We have implemented and evaluated GAnGS on Nokia N70 phones. The GAnGS system is viable and achieves a good balance between scalability, security, and ease of use.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
