Bogdan C. Popescu scite author profile

This paper describes a security architecture allowing digital rights management in home networks consisting of consumer electronic devices. The idea is to allow devices to establish dynamic groups, so called "Authorized Domains", where legally acquired copyrighted content can seamlessly move from device to device. This greatly improves the enduser experience, preserves "fair use" expectations, and enables the development of new business models by content providers. Key to our design is a hybrid compliance checking and group establishment protocol, based on pre-distributed symmetric keys, with minimal reliance on public key cryptographic operations. Our architecture does not require continuous network connectivity between devices, and allows for efficient and flexible key updating and revocation.

show abstract

Safe and Private Data Sharing with Turtle: Friends Team-Up and Beat the System

Popescu

Crispo

Tanenbaum

2006

View full text Add to dashboard Cite

show abstract

Enabling DRM-Preserving Digital Content Redistribution

Nair

Popescu

Gamage

et al.

View full text Add to dashboard Cite

Traditionally, the process of online digital content distribution has involved a limited number of centralised distributors selling protected contents and licenses authorising the use of these contents, to consumers. In this paper, we extend this model by introducing a security scheme that enables DRM preserving digital content redistribution. Essentially consumers can not only buy the rights to use digital content but also the rights to redistribute it to other consumers in a DRM controlled fashion. We examine the threats associated with such a redistribution model and explain how our scheme addresses them.

show abstract

Symmetric Key Authentication Services Revisited

Crispo

Popescu

Tanenbaum

2004

View full text Add to dashboard Cite

Most of the symmetric key authentication schemes deployed today are based on principles introduced by Needham and Schroeder [17] more than twenty years ago. However, since then, the computing environment has evolved from a LAN-based client-server world to include new paradigms, including wide area networks, peer-to-peer networks, mobile ad-hoc networks and ubiquitous computing. Also, there are new threats, including viruses, worms and denial of service attacks.In this paper we review existing symmetric key authentication protocols in the light of these changes, and propose a authentication infrastructure design specifically tailored to address the latest developments in the distributed computing landscape. The key element in our design is placing the authentication server off-line, which greatly strengthens the security of its cryptographic material and shields it from denial of service attacks. Although the authentication server is not accessible on-line, our scheme can handle a dynamic client population, as well as critical issues such as re-issuing of keys and revocation.

show abstract

A certificate revocation scheme for a large-scale highly replicated distributed system

Popescu

Crispo

Tanenbaum

View full text Add to dashboard Cite

A common way to protect objects in distributed systems is to issue authorization certificates to users, which they present to gain access. In some situations a way is needed to revoke existing certificates. Current methods, such as having a master revocation list, have been designed to work efficiently with identity certificates, and do not take into account the delegation of certificate-issuing rights required when implementing complex administrative hierarchies for large distributed applications. In this paper we present a novel mechanism for revoking authorization certificates based on clustering users and servers, and present arguments showing that it is more efficient than other methods. We also discuss a way for probabilistically auditing the use of the revocation mechanism proposed to reduce the chances of any component behaving maliciously.

show abstract

Securely Replicated Web Documents

Popescu

Steen

Crispo

et al.

View full text Add to dashboard Cite

Safe and Private Data Sharing with Turtle: Friends Team-Up and Beat the System (Transcript of Discussion)

Popescu

2006

View full text Add to dashboard Cite

Standard profile for use of IEEE std 1588-2008 precision time protocol (PTP) in power system applications

Antonova¹,

Apostolov

Amold³

et al. 2013

View full text Add to dashboard Cite

This paper provides a summary of the IEEE C37.238-2011 standard, which specifies a subset of PTP parameters and options to provide global time availability, device interoperability, and failure management. This set of PTP parameters and options allows IEEE 1588-based time synchronization to be used in mission critical power system protection, control, automation, and data communication applications utilizing Ethernet communications architecture.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Bogdan C. Popescu

A DRM security architecture for home networks

Safe and Private Data Sharing with Turtle: Friends Team-Up and Beat the System

Enabling DRM-Preserving Digital Content Redistribution

Symmetric Key Authentication Services Revisited

A certificate revocation scheme for a large-scale highly replicated distributed system

Securely Replicated Web Documents

Safe and Private Data Sharing with Turtle: Friends Team-Up and Beat the System (Transcript of Discussion)

Standard profile for use of IEEE std 1588-2008 precision time protocol (PTP) in power system applications

Contact Info

Product

Resources

About