Anonymity and Privacy in Distributed Early Warning Systems

Brunner, Martin; Hofinger, Hans; Roblee, Christopher; Schoo, Peter; Todt, Sascha

doi:10.1007/978-3-642-21694-7_7

Cited by 14 publications

(13 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In 2010 Brunner et al [8] proposed a concept combing Traceable Anonymous Certificates and anonymous Peer-to-Peer Overlay Networks such as GNUnet to address anonymity and privacy issues for IT early warning systems. This paper leaves the selection and sanitization of the exchanged data to the originator of an early warning message and focuses on the aspects of originator anonymity.…”

Section: Related Workmentioning

confidence: 99%

Collaboratively Exchanging Warning Messages between Peers While under Attack

Haustein¹,

Sighart²,

Titze³

et al. 2013

2013 International Conference on Availability, Reliability and Security

Self Cite

View full text Add to dashboard Cite

Secure Multi-party Computation (MPC) allows a secure joint cooperation within a distributed group of peers. In this paper we investigate an extended Secure MPC solution that allows mutual information exchange and distribution of warnings among a group of participating peers within an information sharing network. The implementation of this MPC solution is deployed in a peer-to-peer network. This paper evaluates the performance of the implementation based on two scenarios that stress the network load and thus simulate the implementation under attack. Using a network simulation provides a connection between a simulated network model and real systems by use of System-in-the-loop (SITL) technology for the validation of the considered MPC implementation.

show abstract

Section: Related Workmentioning

confidence: 99%

Collaboratively Exchanging Warning Messages between Peers While under Attack

Haustein¹,

Sighart²,

Titze³

et al. 2013

2013 International Conference on Availability, Reliability and Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…In 2010 Brunner et al [8] proposed a concept combing Traceable Anonymous Certificates (TAC, RFC 5636) and anonymous Peer-to-Peer Overlay Networks such as GNUnet to address anonymity and privacy issues for IT early warning systems. Similar to our approach this paper also leaves the selection and sanitization of the exchanged data to the originator of an early warning message and focuses on the aspects of originator anonymity.…”

Section: Related Workmentioning

confidence: 99%

Using Secure Multiparty Computation for Collaborative Information Exchange

Titze

Hofinger

Schoo

2013

2013 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications

Self Cite

View full text Add to dashboard Cite

In this paper we describe an extension of the Secure Multiparty Computation (MPC) library SEPIA that allows mutual information exchange and distribution of warnings among a group of participating peers within an Information Sharing Network. This extension has been implemented and can be used to communicate security incident related data in an anonymous and privacy-preserving manner within IT early warning systems. More concrete: it allows for anonymous distribution of arbitrary binary input data to participating peers. It hence addresses several obstacles, e.g., concerning reputation loss, that are nowadays reasons for a reluctant attitude regarding information sharing across different administrative domains.

show abstract

“…As far as operational TI architectures are concerned, broadly available platforms, such as AlienVault Open Threat Exchange, Malware Information Sharing Project, or ThreatView's Cyber Threat & Reputation Intelligence, have been developed either commercially or by community‐driven projects. The scientific research has been focusing on conceptual models of TI architectures or methodologies of their development, deployment, and governance …”

Section: Related Workmentioning

confidence: 99%

“…A prototype of the architecture was implemented using an open‐source CMS. Alternatively, Klump and Kwiatkowski proposed an architecture for sharing cyberincident information among smart grid stakeholders, while Brunner et al devised a concept of decentralized security IS that supports privacy of collaborating partners.…”

Section: Related Workmentioning

confidence: 99%

Threat intelligence platform for the energy sector

Wróbel

2019

Softw Pract Exp

View full text Add to dashboard Cite

In recent years, critical infrastructures and power systems in particular have been subjected to sophisticated cyberthreats, including targeted attacks and advanced persistent threats. A promising response to this challenging situation is building up enhanced threat intelligence (TI) that interlinks information sharing and fine-grained situation awareness. In this paper, a framework that integrates all levels of TI, ie, strategic, tactical, operational, and technical, is presented. The platform implements the centralized model of information exchange with peer-to-peer interactions between partners as an option. Several supportive solutions were introduced, including anonymity mechanisms or data processing and correlation algorithms. A data model that enables communication of cyberincident information, both in natural language and machine-readable formats, was defined. Similarly, security requirements for critical components were devised. A pilot implementation of the platform was developed and deployed in the operational environment, which enabled practical evaluation of the design. Also, the security of the anonymity architecture was analyzed.

show abstract

Anonymity and Privacy in Distributed Early Warning Systems

Cited by 14 publications

References 8 publications

Collaboratively Exchanging Warning Messages between Peers While under Attack

Collaboratively Exchanging Warning Messages between Peers While under Attack

Using Secure Multiparty Computation for Collaborative Information Exchange

Threat intelligence platform for the energy sector

Contact Info

Product

Resources

About