Individual Authentication in Multiparty Communications

Bergadano, Francesco; Cavagnino, Davide; Crispo, Bruno

doi:10.1016/s0167-4048(02)00813-1

Cited by 19 publications

(21 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Its history can be traced back to Lamport's scheme which uses one-way chains to authenticate users over an insecure network [21]. The work of Bergadano et al [8] proposes several variants of one-way chain based protocols, with or without time synchronization. Previous work which inspired this family of protocols is the Guy Fawkes protocol from [2].…”

Section: A Related Work On Secure Broadcast Protocolsmentioning

confidence: 99%

See 1 more Smart Citation

Efficient Protocols for Secure Broadcast in Controller Area Networks

Groza

Murvay

2013

IEEE Trans. Ind. Inf.

106

View full text Add to dashboard Cite

Abstract-Controller Area Network is a bus commonly used by controllers inside vehicles and in various industrial control applications. In the past controllers were assumed to operate in secure perimeters, but today these environments are well connected to the outside world and recent incidents showed them extremely vulnerable to cyber-attacks. To withstand such threats, one can implement security in the application layer of CAN. Here we design, refine and implement a broadcast authentication protocol based on the well known paradigm of using key-chains and time synchronization, a commonly used mechanism in wireless sensor networks, which allows us to take advantage from the use of symmetric primitives without the need of secret shared keys during broadcast. But, as process control is a time critical operation we make several refinements in order to improve on the authentication delay. For this we study several trade-offs to alleviate shortcomings on computational speed, memory and bandwidth up to the point of using reduced versions of hash functions that can assure ad hoc security. To prove the efficiency of the protocol we provide experimental results on two representative microcontrollers from the market: a Freescale S12X and an Infineon TriCore, both devices were specifically chosen as they are located somewhat on the extremes of computational power. As bandwidth proved to be the main limitation, to provide clear bounds on the effectiveness of the solution we used low speed, fault tolerant and high speed communication as well.Index Terms-Authentication, Broadcast, Controller Area Network, S12X, TriCore. [28]. As data throughput has increased inside cars, high performance buses were developed in the last decade, e.g., FlexRay, but because of its efficiency and reduced cost CAN is still present in most automotives Manuscript received September 20, 2011. Accepted for publication November 29, 2012. Copyright c 2012 IEEE. Personal use of this material is permitted. However, permission to use this material for any other purposes must be obtained from the IEEE by sending a request to pubs-permissions@ieee.org. B. Groza and S. Murvay are with the Faculty of Automatics and Computers, Politehnica University of Timisoara, Romania. Phone: +40-256-403242, email: bogdan.groza@aut.upt.ro, stefan.murvay@gmail.com produced today. Due to its reliability and excellent priceperformance ratio, CAN bus is likely to remain wide-spread for a long time, especially in applications that do not require high bandwidth. I. MOTIVATION AND RELATED WORKReliability was always a main concern in control systems and in automotives in particular, but only with respect to natural phenomenons (electromagnetic disturbances, thermal noise, etc.) or accidents of various causes and not in front of active Dolev-Yao adversaries. For this purpose, CAN has been designed to deal with errors and to recover afterwards. The probability of an undetected error on CAN is extremely low, informally one undetected error occurs at about one thousand years for each v...

show abstract

Section: A Related Work On Secure Broadcast Protocolsmentioning

confidence: 99%

“…The security of this family of protocols is well established, formal proofs of security can be found in [8] and [31]. The informal argument is that from MAC K (M) and F(K ) an adversary cannot produce MAC K (M ′ ) for any M ′ = M since K is not known as well as it cannot be found from F(K ).…”

Section: Generic Description Of the Protocolmentioning

confidence: 99%

Efficient Protocols for Secure Broadcast in Controller Area Networks

Groza

Murvay

2013

IEEE Trans. Ind. Inf.

106

View full text Add to dashboard Cite

show abstract

“…This kind of solutions is subject to collusions, where a set of fraudulent receivers collaborate to reconstruct a part of the whole key material used by the sender, in order to forge authentic messages on its behalf. Other solutions [1,2] [32,34,35] [26,33,40] suggest to use time as source of asymmetry. In other words, receivers are synchronized with the sender's clock and are instructed when to accept a specific key as being used to authenticate received messages.…”

Section: Introductionmentioning

confidence: 99%

RLH: receiver driven layered hash-chaining for multicast data origin authentication

Challal

Bouabdallah

Hinard

2005

Computer Communications

View full text Add to dashboard Cite

“…The multicast source streams the three RLH layers: the basic data payload layer (layer L0), the medium redundant authentication layer (layer L1), and the highly redundant 2 We considered the maximal packet loss ratio strategy so that all receivers reach the target verification ratio We were interested in measuring the tree authentication information cost, which we define as follows:…”

Section: Simulation Resultsmentioning

confidence: 99%

“…This kind of solutions is subject to collusions, where a set of fraudulent receivers collaborate to reconstruct a part of the whole key material used by the sender, in order to forge authentic messages on its behalf. Other solutions [1,2] [29,31,32] [23,30,35] suggest to use time as source of asymmetry. In other words, receivers are synchronized with the sender's clock and are instructed when to accept a specific key as being used to authenticate received messages.…”

mentioning

confidence: 99%

Efficient multicast source authentication using layered hash-chaining scheme

Challal

Bouabdallah

Hinard

29th Annual IEEE International Conference on Local Computer Networks

View full text Add to dashboard Cite

Abstract-In this paper, we propose an efficient multicast source authentication protocol based on a novel layered hash-chaining scheme. Our protocol tolerates packet loss and guarantees non-repudiation of media-streaming origin. Furthermore, our protocol allows receivers to make the decision regarding the authentication information redundancy degree depending on the quality of reception in term of packet loss ratio. This novel technique allows to save bandwidth since the packet loss distribution over a large scale network is likely to be not uniform. We have simulated our protocol using NS-2, and the simulation results show that the protocol has remarkable features and efficiency compared to other recent source authentication protocols.

show abstract

Individual Authentication in Multiparty Communications

Cited by 19 publications

References 20 publications

Efficient Protocols for Secure Broadcast in Controller Area Networks

Efficient Protocols for Secure Broadcast in Controller Area Networks

RLH: receiver driven layered hash-chaining for multicast data origin authentication

Efficient multicast source authentication using layered hash-chaining scheme

Contact Info

Product

Resources

About