CST: P2P Anonymous Authentication System Based on Collaboration Signature

Wang, Xiaoliang; Sun, Xingming; Sun, Guang; Luo, Duan

doi:10.1109/futuretech.2010.5482740

Cited by 5 publications

(5 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Many P2P networks propose trust and reputation management schemes to solve this problem. Some works (Gokhale and Dasgupta, 2003;Wang et al, 2010;Tsang and Smith, 2008) use trust and reputation schemes to discover peers that can be considered as trusted peers of the network. These trusted peers are used in authentication as trusted third parties.…”

Section: Authentication In P2pmentioning

confidence: 99%

“…The PPAA is proven to be secure in the Random Oracle Model (ROM). Wang et al (2010) present Collaboration Signature Trust (CST) to authenticate users anonymously. However, this mechanism is not safe in a semi-trusted environment such as a P2P network.…”

Section: Anonymous Authentication In P2pmentioning

confidence: 99%

“…Therefore, keys need to be broken into parts and distributed among multiple peers and a peer should be able to reconstruct a key without the knowledge of all the distributed parts. There are P2P anonymous authentication mechanisms that use the concept of secret sharing: Wang et al (2010); Wang and Sun (2009).…”

Section: Secret Sharing Schemesmentioning

confidence: 99%

See 2 more Smart Citations

Anonymous and Distributed Authentication for Peer-to-Peer Networks

Tennakoon¹,

Karunathilaka²,

Lavakumar³

et al. 2023

Journal of Computer Science

View full text Add to dashboard Cite

Well-known authentication mechanisms such as Public-key Infrastructure (PKI) and Identity-based Public-key Certificates (ID-PKC) are not suitable for integration in a Peer-to-Peer (P2P) network environment, the reason being either the lack of or the difficulty in maintaining a centralized authority to manage the certificates. Authentication becomes even harder in anonymous environments. In this study, we present three authentication protocols such that the users can authenticate themselves in an anonymous P2P network, without revealing their identities. The first protocol uses existing ring signature schemes to obtain anonymous authentication, the second is an anonymous authentication protocol utilizing secret sharing schemes, and lastly a zero-knowledge-based anonymous authentication protocol. We provide security justifications for the three aforementioned protocols in terms of anonymity, completeness, soundness, resilience to impersonation attacks, and resilience to replay attacks. We also provide examples of conceptual topologies and how the peers would behave and rearrange in case of failure.

show abstract

Section: Authentication In P2pmentioning

confidence: 99%

Section: Anonymous Authentication In P2pmentioning

confidence: 99%

See 1 more Smart Citation

Anonymous and Distributed Authentication for Peer-to-Peer Networks

Tennakoon¹,

Karunathilaka²,

Lavakumar³

et al. 2023

Journal of Computer Science

View full text Add to dashboard Cite

show abstract

“…The major drawback of this proposal is that it is difficult to manage redundancy in key parts and to react when a certain number of nodes leave the network simultaneously. This idea of distributed signatures was used by Wang et al [59] to manage the access rights of data.…”

Section: Related Workmentioning

confidence: 99%

Mutida: A Rights Management Protocol for Distributed Storage Systems Without Fully Trusted Nodes

Confais¹,

Rostirolla²,

Parrein

et al. 2022

Transactions on Large-Scale Data- And Knowledge-Centered Systems LII

View full text Add to dashboard Cite

Several distributed storage solutions that do not rely on a central server have been proposed over the last few years. Most of them are deployed on public networks on the internet. However, these solutions often do not provide a mechanism for access rights to enable the users to control who can access a specific file or piece of data. In this article, we propose Mutida (from the Latin word "Aditum" meaning "access"), a protocol that allows the owner of a file to delegate access rights to another user. This access right can then be delegated to a computing node to process the piece of data. The mechanism relies on the encryption of the data, public key/value pair storage to register the access control list and on a function executed locally by the nodes to compute the decryption key. After presenting the mechanism, its advantages and limitations, we show that the proposed mechanism has similar functionalities to Wave, an authorization framework with transitive delegation. However, Wave does not require fully trusted nodes. We implement our approach in a Java software program and evaluate it on the Grid'5000 testbed. We compare our approach to an approach based on a protocol relying on Shamir key reconstruction, which provides similar features.is that there are no servers that we can rely on to be in charge of the protocol for rights management. Additionally, anonymity is a key point since peers are communicating directly and additional layers need to be in place to guarantee it. [19]. In this paper, we propose Mutida (from the Latin word "Aditum" meaning "access" and written from right to left), a protocol that focuses on enabling users to manage access rights in a network of the second category.In this paper, we consider the files stored on the Interplanetary File System [11] (IPFS), which is a storage solution that relies on a BitTorrent-like [35] protocol to exchange the files between the nodes and on a Kademlia [39] Distributed Hash Table (DHT) to locate the different pieces of data in the network. The essential characteristic of IPFS is that files are immutable and cannot be modified once they are written.Using a DHT forwards all location requests through different nodes. Therefore, any connected node is involved in the routing of requests and can determine the identifiers of popular files [26]. Additionally, since the storage solution does not manage any permission and because IPFS does not provide any encryption mechanism to protect user privacy [47], every user can access all the files stored in it if the content identifier (CID) is known.The consequence of this is that any node in the IPFS network can observe the DHT requests and access the corresponding files. This illustrates and justifies the need to manage access permissions in such a network. With Mutida, all users will still be able to find the files in the network, but only the permitted users will be able to decrypt the content.Because of the use of Merkle trees [40] and the use of a root hash as a file identifier, users of IPFS do not need to tru...

show abstract

“…in [Lu et al, 2007], the protocol proposed by Lu et al uses an anonymous zeroknowledge authentication protocol to support trust management such that users can use unforgeable and verifiable pseudonyms instead of their real identities. Similarly, Wang et al in [Wang et al, 2010] have proposed an anonymous collaboration signature authentication protocol in which each user, instead of using his or her real identity, owns an un-forgeable and verifiable identity signature and this identity signature is signed by a trusted party through a collaboration signature method.…”

Section: Anonymous Authenticationmentioning

confidence: 99%