Ephemeral Secrets: Multi-Party Secret Key Acquisition for Secure IEEE 802.11 Mobile Ad Hoc Communication

Bhatti, David Samuel; Saleem, Shahzad

doi:10.1109/access.2020.2970147

Cited by 7 publications

(5 citation statements)

References 65 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Present security solutions are computationally secure, but with sufficient resources, they can be breached. There are information-theoretic cryptography solutions that are resilient against the large computing power of an adversary [79], such as quantum key distribution and secret key generation using information-theoretic perspectives of wireless physical or MAC layer characteristics for use in the future [80].…”

Section: Plos Onementioning

confidence: 99%

Performance analysis: Securing SIP on multi-threaded/multi-core proxy server using public keys on Diffie–Hellman (DH) in single and multi-server queuing scenarios

Bhatti,

Sidrat,

Saleem

et al. 2024

PLoS ONE

Self Cite

View full text Add to dashboard Cite

The rapid replacement of PSTN with VOIP networks indicates the definitive phase-out of the PBX/PABX with smartphone-based VOIP technology that uses WLAN connectivity for local communication; however, security remains a key issue, regardless of the communication coverage area. Session initiation protocol (SIP) is one of the most widely adopted VOIP connection establishment protocols but requires added security. On the Internet, different security protocols, such as HTTPS (SSL/TLS), IPSec, and S/MIME, are used to protect SIP communication. These protocols require sophisticated infrastructure and some pose a significant overhead that may deteriorate SIP performance. In this article, we propose the following: i) avoid using Internet bandwidth and complex Internet protocols for local communication within an organization, but harness WLAN connectivity, ii) use multi-threaded or multicore computer systems to handle concurrent calls instead of installing hardware-based SIP servers, and iii) run each thread in a separate core. Cryptography is a key tool for securely transmitting confidential data for long- and short-range communication, and the Diffie-Hellman (DH) protocol has consistently been a popular choice for secret key exchanges. Primarily, used for symmetric key sharing, it has been proven effective in generating public/private key pairs, sharing public keys securely over public channels, and subsequently deriving shared secret keys from private/public keys. This key exchange scheme was proposed to safeguard VOIP communication within WLANs, which rely on the SIP for messaging and multimedia communication. For ensuring an efficient implementation of SIP, the system was rigorously analyzed using the M/M/1 and M/M/c queuing models. We analyze the behavior of SIP servers with queuing models with and without end-to-end security and increase users’ trust in SIP security by providing a transparent sense of end-to-end security as they create and manage their private and public keys instead of relying on the underlying SIP technology. This research implements instant messaging, voice conversation, and secret key generation over DH while implementing and observing the role of multi-threading in multiqueue systems that serve incoming calls. By increasing the number of threads from one to two, the SIP response time improved from 20.23809 to 0.08070 min at an arrival rate of 4250 calls/day and a service rate of three calls/min. Similarly, by adding one to seven threads, the queue length was reduced by four calls/min. Implementing secure media streaming and reliable AES-based signaling for session confidentiality and integrity introduces a minor 8-ms tradeoff in SIP service performance. However, the advantages of implementing added security outweigh this limitation.

show abstract

Section: Plos Onementioning

confidence: 99%

Performance analysis: Securing SIP on multi-threaded/multi-core proxy server using public keys on Diffie–Hellman (DH) in single and multi-server queuing scenarios

Bhatti,

Sidrat,

Saleem

et al. 2024

PLoS ONE

Self Cite

View full text Add to dashboard Cite

show abstract

“…The shared secret computed using the Weil pairing should be hard to drive given the public keys (P A, QA), (P B, QB), and (P C, QC) are available to adversaries. But such security solutions, while computationally secure, may be vulnerable to breaches with powerful adversaries, while information-theoretic cryptography solutions will offer resilience in the future [36].…”

Section: Proposed Modelmentioning

confidence: 99%

IoT-Enhanced Transport and Monitoring of Medicine Using Sensors, MQTT, and Secure Short Message Service

Bhatti,

Hussain,

Suh

et al. 2024

IEEE Access

Self Cite

View full text Add to dashboard Cite

Since its inception more than a decade ago, Internet of Things (IoT) technology has been guiding people in the development of a world full of smart solutions in which all devices and physical objects, represented as "things," are interlinked with sensors using the Internet. In some areas, the delivery of medications to patients or receivers at their destinations remains highly informal and old. In smart medicine delivery, the medicine needs to maintain its original state while facing multiple environmental factors, like temperature fluctuations, humidity, etc. This paper presents an effective implementation of IoT (Internet of Things) for monitoring the transportation of medicines and vaccines, along with temperature control facilitated through mobile applications and sensor networks. The system employs mobile applications as the user interface, utilizes Arduino, MQTT (Message Queuing Telemetry Transport) for communication, incorporates a temperature sensor, and employs a mini portable cooling box. Designed for the generalized delivery of medicines/vaccines from sender to receiver, the system also suggests CRC-32 as an optimal algorithm for error detection instead of complex hash functions such as MD5 and SHA, ensuring better performance, smooth operation, and data integrity. In addition, elliptic curve based shared keys are used for protected data transmission. The accuracy of the proposed system is 89.88%, and the value of the F1-score is 0.686, which is greater than the threshold of 0.5, hence conclusively validating the authenticity and reliability of the proposed system.

show abstract

“…Among above mentioned researches [6][7][8][9][10] have investigated wireless radio channels' physical layer characteristics. They've found that wireless nodes can establish identical secret key acquisition by exploiting channel reciprocity and randomness.…”

Section: Introductionmentioning

confidence: 99%

“…This symmetric state remains identical for a brief period known as the coherence time, emphasizing the importance of timely key establishment in secure wireless communication [6][7][8]11 . In wireless communication's link layer, it's commonly believed that two nodes can't hear the exact same transmission unless they're within λ /2 distance 5,9,10,[17][18][19][20] . Practical observations reveal discrepancies due to wireless errors and environmental factors like multi-path fading and interference.…”

Section: Introductionmentioning

confidence: 99%

A Dynamic Symmetric Key Generation at Wireless Link Layer: Information-Theoretic Perspectives

Bhatti

2024

Preprint

Self Cite

View full text Add to dashboard Cite

The expansion of wireless communication introduces security vulnerabilities, emphasizing the essential need for secure systems that prioritize confidentiality, integrity, and other key aspects of data protection. Since, computational security acknowledges the possibility of breaches when adequate computational resources are available that is why information-theoretic security is being explored that suggests the existence of unbreakable cryptographic systems, even in the presence of limitless processing power. Secret key exchange has traditionally relied on RSA or DH protocols, but researchers are now exploring innovative approaches for sharing secret keys among wirless network devices, leveraging physical or link layer characteristics. This research seeks to revolutionize secure multi-party key acquisition in wireless networks, capitalizing on information-theoretic security and collaborative data extraction. It comprehensively organize and elucidate the information-theoretic aspects of secret key generation within the lower layers of wireless networks, especially the link layer, proposes a novel theoretical framework for the dynamic acquisition of symmetric secret keys, and responds to contemporary information security challenges by relying on information theory principles rather than vulnerable mathematical relationships in the post-quantum period. A new cryptographic key can be generated using a straightforward method, and when it's combined (XORed) with the previous key, it creates a continuously changing secret for encryption and decryption. This approach enhances security because as attackers attempt to break the encryption, the system generates fresh, dynamic keys, making it progressively more challenging for them to succeed. The research work in question integrates key renewal, or how often keys are updated (dynamic keys), with a security off-period. It introduces a framework for determining the best key refresh rate based on the anticipated rate at which keys might be compromised.

show abstract

Ephemeral Secrets: Multi-Party Secret Key Acquisition for Secure IEEE 802.11 Mobile Ad Hoc Communication

Cited by 7 publications

References 65 publications

Performance analysis: Securing SIP on multi-threaded/multi-core proxy server using public keys on Diffie–Hellman (DH) in single and multi-server queuing scenarios

Performance analysis: Securing SIP on multi-threaded/multi-core proxy server using public keys on Diffie–Hellman (DH) in single and multi-server queuing scenarios

IoT-Enhanced Transport and Monitoring of Medicine Using Sensors, MQTT, and Secure Short Message Service

A Dynamic Symmetric Key Generation at Wireless Link Layer: Information-Theoretic Perspectives

Contact Info

Product

Resources

About