Privacy-Preserving Photo Sharing based on Secure JPEG
Size: px
Start display at page:

Download "Privacy-Preserving Photo Sharing based on Secure JPEG"

Transcription

1 Privacy-Preserving Photo Sharing based on Secure Lin Yuan, Touradj Ebrahimi Multimedia Signal Processing Group - MMSPG Ecole Polytechnique Fédérale de Lausanne EPFL CH-1015 Lausanne, Switzerland Touradj.Ebrahimi@epfl.ch 1 Social network and cloud service Easy and fast photo sharing,huge amount Privacy concern: A picture is worth a thousand words. Visual info., metadata, geo-taging, etc. Motivation 2 1

2 Privacy scandals Motivation Governmental surveillance, e.g. PRISM Leakage of celebrities private photos Existing privacy protection solutions limited degree of protection and control 3 Goal Goal and Approaches Diminish privacy risks in online photo sharing, while preserving a maximal usability Approaches Secure : Scrambling Transmorphing Photo sharing architecture based on a Public Key Infrastructure (PKI) 4 2

3 11/11/15 Scrambling Randomly change the signs of DCT coefficients Original photo Descrambled photos Signs of DCT coefficients Scrambled photo ROI 9, Level9, Key9 Pseudo-random number 9 k1 7 8 ROI1, Level1, Key k9 Metadata Insert parameters in header COST Action IC1206 MC&WGs meetings, Valletta, Malta 5 Transmorphing Converting an image to its processed version while preserving sufficient information about the original image in the processed image in order to reverse it. Reconstructed image Original image Mask matrix T Processed image 0!0!0!0!0!0!0!0!0!0! 0!0!0!0!0!0!1!1!0!0! 0!0!1!1!0!1!1!1!1!0! 0!1!1!1!1!1!1!1!1!0! 0!1!1!1!1!0!1!1!0!0! 0!0!1!1!0!0!0!0!0!0! 0!0!0!0!0!0!0!0!0!0! Threshold t Sub-image Transcoder Morphed image Transcoder Transcoder Sub-image embedded in APPn Markers COST Action IC1206 MC&WGs meetings, Valletta, Malta 6 3

4 Transmorphing APP marker in header Protected Sub-image Transmorphed image APP markers Protection method & parameters 0!0!0!0!0!0!0!0!0!0! 0!0!0!0!0!0!1!1!0!0! 0!0!1!1!0!1!1!1!1!0! 0!1!1!1!1!1!1!1!1!0! 0!1!1!1!1!0!1!1!0!0! 0!0!1!1!0!0!0!0!0!0! 0!0!0!0!0!0!0!0!0!0! File size in byte 0x01 0x02 0xB7 0x1F0x2A0x45 0xF4 0x3C 0x6B0xE10x13 Marker ID 1 byte Security Tool 2 bytes Mask Matrix m bytes Data Length 4 bytes Sub- Data n bytes Metadata 7 Evaluation and Comparison Bitrate Overhead - Scrambling - Transmorphing AVG. overhead (face regions scrambled) AVG. overhead (whole image scrambled) Low-level scrambled Medium-level scrambled High-level scrambled 1.87% 2.04% 2.15% 1.87% 4.89% 5.96% images, max. pixel resolution 1024 x 1024, file size 100 KB ~ 330 KB 8 4

5 Similarity Evaluation and Comparison compatible Reversible, and fast Difference Bitrate overhead Scrambling: extremely low Transmorphing: higher Pleasantness Transmorphing is absolutely better 9 Assumptions Client device/application completely trusted Server minimally trusted (for revocation) Social networks or cloud services not trusted Principles Photo data protection/recovery ONLY on client device ONLY protecteddata flying on cloud 10 5

6 Public Key Infrastructure Private key cryptography Like our Secure protections Public key cryptography Encryption with public key Decryption with private key Attribute-based Encryption key key Encryption data with an access structure (policy) Decryption with private key, associated with a set of attributes 11 Server side Content Server Untrusted Trusted Key Server Certificate Authority Client side User A User B 12 6

7 Photo protection, sharing and accessing Sender operation Server operation Protection Protected Recovery Key Generator Secret Key CP-ABE Encryption Encrypted Secret Key CP-ABE Decryption Secret Key Access Policy Sender APK ASK 13 Assign attribute privacy keys to friends Sender operation Server operation ASK PKC Encryption Encrypted ASK PKC Decryption ASK CP-ABE Key Generator TPK TSK Sender APK Sender AMSK Attributes 14 7

8 11/11/15 Prototype and Demo Prototype application: ProShare ios Android ProShare COST Action IC1206 MC&WGs meetings, Valletta, Malta 15 Security and Privacy SOI APP1 (Exif) Data SOI APP1 (Exif) APP1 (Exif) APP3 (JPSearch) APP3 (JPSearch) APP11 (protected metadata) APP11 (protected image data) data EOI original codestream -1 decoder Data APP1 (Exif) APP3 (JPSearch) Privacy & Security decoder EOI compatible codestream with data protection COST Action IC1206 MC&WGs meetings, Valletta, Malta APP11 (protected metadata) APP11 (protected image data) data 16 8

9 Future Work Context-aware privacy protection Further evaluation 17 Thanks! Question? 18 9

Similar documents

summarization Ivan Ivanov, Peter Vajda, Jong-Seok Lee, Touradj Ebrahimi

summarization Ivan Ivanov, Peter Vajda, Jong-Seok Lee, Touradj Ebrahimi 1 Epitome A social game for photo album summarization Ivan Ivanov, Peter Vajda, Jong-Seok Lee, Touradj Ebrahimi Ecole Polytechnique Federale de Lausanne, Switzerland Motivation 2 Number of photos taken

More information

Server-based Certificate Validation Protocol

Server-based Certificate Validation Protocol Server-based Certificate Validation Protocol Digital Certificate and PKI a public-key certificate is a digital certificate that binds a system entity's identity to a public key value, and possibly to additional

More information

Tale of a mobile application ruining the security of global solution because of a broken API design. SIGS Geneva 21/09/2016 Jérémy MATOS

Tale of a mobile application ruining the security of global solution because of a broken API design. SIGS Geneva 21/09/2016 Jérémy MATOS Tale of a mobile application ruining the security of global solution because of a broken API design SIGS Geneva 21/09/2016 Jérémy MATOS whois securingapps Developer background Spent last 10 years working

More information

Coding of Still Pictures

Coding of Still Pictures ISO/IEC JTC 1/SC 29/WG 1 (ITU-T SG16) Coding of Still Pictures JBIG Joint Bi-level Image Experts Group JPEG Joint Photographic Experts Group TITLE: Privacy and Security Final Call for Proposals SOURCE:

More information

When providing a native mobile app ruins the security of your existing web solution. CyberSec Conference /11/2015 Jérémy MATOS

When providing a native mobile app ruins the security of your existing web solution. CyberSec Conference /11/2015 Jérémy MATOS When providing a native mobile app ruins the security of your existing web solution CyberSec Conference 2015 05/11/2015 Jérémy MATOS whois securingapps Developer background Spent last 10 years working

More information

DECENTRALIZED ATTRIBUTE-BASED ENCRYPTION AND DATA SHARING SCHEME IN CLOUD STORAGE

DECENTRALIZED ATTRIBUTE-BASED ENCRYPTION AND DATA SHARING SCHEME IN CLOUD STORAGE DECENTRALIZED ATTRIBUTE-BASED ENCRYPTION AND DATA SHARING SCHEME IN CLOUD STORAGE ABSTRACT We propose a Multi-Authority Attribute-Based Encryption (ABE) system. In our system, any party can become an authority

More information

ESP Egocentric Social Platform

ESP Egocentric Social Platform ESP Egocentric Social Platform T. J. Purtell, Ian Vo, Monica S. Lam With: Kanak Biscuitwala, Willem Bult, Dan Boneh, Ben Dodson, Steve Fan, and Frank Wang, Global Social Platforms Ideal for Meeting strangers

More information

Lamassu: Storage-Efficient Host-Side Encryption

Lamassu: Storage-Efficient Host-Side Encryption Lamassu: Storage-Efficient Host-Side Encryption Peter Shah, Won So Advanced Technology Group 9 July, 2015 1 2015 NetApp, Inc. All rights reserved. Agenda 1) Overview 2) Security 3) Solution Architecture

More information

Harnessing Encrypted Data in Cloud for Secure and Efficient Image Sharing from Mobile Devices

Harnessing Encrypted Data in Cloud for Secure and Efficient Image Sharing from Mobile Devices 34th IEEE INFOCOM, 26 April 1 May, 2015, Hong Kong Harnessing Encrypted Data in Cloud for Secure and Efficient Image Sharing from Mobile Devices Helei Cui, Xingliang Yuan, and Cong Wang Department of Computer

More information

Sieve: Cryptographically Enforced Access Control for User Data in Untrusted Clouds

Sieve: Cryptographically Enforced Access Control for User Data in Untrusted Clouds Sieve: Cryptographically Enforced Access Control for User Data in Untrusted Clouds Frank Wang (MIT CSAIL), James Mickens (Harvard), Nickolai Zeldovich (MIT CSAIL), Vinod Vaikuntanathan (MIT CSAIL) 1 Motivation

More information

Computer Networks. Network Security and Ethics. Week 14. College of Information Science and Engineering Ritsumeikan University

Computer Networks. Network Security and Ethics. Week 14. College of Information Science and Engineering Ritsumeikan University Computer Networks Network Security and Ethics Week 14 College of Information Science and Engineering Ritsumeikan University Security Intro for Admins l Network administrators can break security into two

More information

CSC 5930/9010 Cloud S & P: Cloud Primitives

CSC 5930/9010 Cloud S & P: Cloud Primitives CSC 5930/9010 Cloud S & P: Cloud Primitives Professor Henry Carter Spring 2017 Methodology Section This is the most important technical portion of a research paper Methodology sections differ widely depending

More information

DIGITAL STEGANOGRAPHY 1 DIGITAL STEGANOGRAPHY

DIGITAL STEGANOGRAPHY 1 DIGITAL STEGANOGRAPHY DIGITAL STEGANOGRAPHY 1 DIGITAL STEGANOGRAPHY DIGITAL STEGANOGRAPHY 2 Abstract Steganography derives from a Greek word and means covered writing. It is a sector of computer information security. Cryptography

More information

Diffie-Hellman. Part 1 Cryptography 136

Diffie-Hellman. Part 1 Cryptography 136 Diffie-Hellman Part 1 Cryptography 136 Diffie-Hellman Invented by Williamson (GCHQ) and, independently, by D and H (Stanford) A key exchange algorithm o Used to establish a shared symmetric key Not for

More information

Propagation of geotags based on object duplicate detection

Propagation of geotags based on object duplicate detection Propagation of geotags based on object duplicate detection Peter Vajda, Ivan Ivanov, Jong-Seok Lee, Lutz Goldmann and Touradj Ebrahimi Multimedia Signal Processing Group MMSPG Institute of Electrical Engineering

More information

CSE 565 Computer Security Fall 2018

CSE 565 Computer Security Fall 2018 CSE 565 Computer Security Fall 2018 Lecture 11: Public Key Infrastructure Department of Computer Science and Engineering University at Buffalo 1 Lecture Outline Public key infrastructure Certificates Trust

More information

JPEG decoding using end of block markers to concurrently partition channels on a GPU. Patrick Chieppe (u ) Supervisor: Dr.

JPEG decoding using end of block markers to concurrently partition channels on a GPU. Patrick Chieppe (u ) Supervisor: Dr. JPEG decoding using end of block markers to concurrently partition channels on a GPU Patrick Chieppe (u5333226) Supervisor: Dr. Eric McCreath JPEG Lossy compression Widespread image format Introduction

More information

Authenticated Storage Using Small Trusted Hardware Hsin-Jung Yang, Victor Costan, Nickolai Zeldovich, and Srini Devadas

Authenticated Storage Using Small Trusted Hardware Hsin-Jung Yang, Victor Costan, Nickolai Zeldovich, and Srini Devadas Authenticated Storage Using Small Trusted Hardware Hsin-Jung Yang, Victor Costan, Nickolai Zeldovich, and Srini Devadas Massachusetts Institute of Technology November 8th, CCSW 2013 Cloud Storage Model

More information

Signature schemes variations

Signature schemes variations Signature schemes variations Multisignatures: several signers create a signature on a single message, that is shorter and faster to verify than when a standard signature scheme is used in a straightforward

More information

SURVEILLANCE VIDEO FOR MOBILE DEVICES

SURVEILLANCE VIDEO FOR MOBILE DEVICES SURVEILLANCE VIDEO FOR MOBILE DEVICES Olivier Steiger, Touradj Ebrahimi Signal Processing Institute Ecole Polytechnique Fédérale de Lausanne (EPFL) CH-1015 Lausanne, Switzerland {olivier.steiger,touradj.ebrahimi}@epfl.ch

More information

Encrypting the Auto Detected Face Part of Human in a Image Using RC4 and Hiding the Data in Image

Encrypting the Auto Detected Face Part of Human in a Image Using RC4 and Hiding the Data in Image Encrypting the Auto Detected Face Part of Human in a Image Using RC4 and Hiding the Data in Image N.Mahesh Chandra M.Tech Student, Sreenidhi Institute of Science and Technology. Abstract: In this paper,

More information

Encrypted Data Deduplication in Cloud Storage

Encrypted Data Deduplication in Cloud Storage Encrypted Data Deduplication in Cloud Storage Chun- I Fan, Shi- Yuan Huang, Wen- Che Hsu Department of Computer Science and Engineering Na>onal Sun Yat- sen University Kaohsiung, Taiwan AsiaJCIS 2015 Outline

More information

ISO/IEC INTERNATIONAL STANDARD. Information technology JPEG 2000 image coding system: Reference software

ISO/IEC INTERNATIONAL STANDARD. Information technology JPEG 2000 image coding system: Reference software INTERNATIONAL STANDARD ISO/IEC 15444-5 Second edition 2015-10-15 Information technology JPEG 2000 image coding system: Reference software Technologies de l'information Système de codage d'images JPEG 2000:

More information

PROGRESSIVE QUALITY DEGRADATION IN JPEG COMPRESSED IMAGE USING DC BLOCK ORIENTATION WITH REWRITABLE DATA EMBEDDING FUNCTIONALITY

PROGRESSIVE QUALITY DEGRADATION IN JPEG COMPRESSED IMAGE USING DC BLOCK ORIENTATION WITH REWRITABLE DATA EMBEDDING FUNCTIONALITY PROGRESSIVE QUALITY DEGRADATION IN JPEG COMPRESSED IMAGE USING DC BLOCK ORIENTATION WITH REWRITABLE DATA EMBEDDING FUNCTIONALITY SimYing Ong, Kazuki Minemura, KokSheik Wong simying@siswa.um.edu.my, kazuki.minemura@gmail.com,

More information

Network Security and Cryptography. 2 September Marking Scheme

Network Security and Cryptography. 2 September Marking Scheme Network Security and Cryptography 2 September 2015 Marking Scheme This marking scheme has been prepared as a guide only to markers. This is not a set of model answers, or the exclusive answers to the questions,

More information

The inverse of a matrix

The inverse of a matrix The inverse of a matrix A matrix that has an inverse is called invertible. A matrix that does not have an inverse is called singular. Most matrices don't have an inverse. The only kind of matrix that has

More information

CSCE 813 Internet Security Final Exam Preview

CSCE 813 Internet Security Final Exam Preview CSCE 813 Internet Security Final Exam Preview Professor Lisa Luo Fall 2017 Coverage All contents! Week1 ~ Week 15 The nature of the exam: 12 questions: 3 multiple choices questions 1 true or false question

More information

JPEG 2000 A versatile image coding system for multimedia applications

JPEG 2000 A versatile image coding system for multimedia applications International Telecommunication Union JPEG 2000 A versatile image coding system for multimedia applications Touradj Ebrahimi EPFL Why another still image compression standard? Low bit-rate compression

More information

Watermarking Moble Phone Color Images With Error Correction Codes

Watermarking Moble Phone Color Images With Error Correction Codes IOSR Journal of Electronics & Communication Engineering (IOSR-JECE) ISSN(e) : 2278-1684 ISSN(p) : 2320-334X, PP 05-09 www.iosrjournals.org Watermarking Moble Phone Color Images With Error Correction Codes

More information

Introduction to Cryptography Lecture 7

Introduction to Cryptography Lecture 7 Introduction to Cryptography Lecture 7 Public-Key Encryption: El-Gamal, RSA Benny Pinkas page 1 1 Public key encryption Alice publishes a public key PK Alice. Alice has a secret key SK Alice. Anyone knowing

More information

Separable Reversible Data Hiding in Encrypted JPEG Bitstreams

Separable Reversible Data Hiding in Encrypted JPEG Bitstreams 1 Separable Reversible Data Hiding in Encrypted JPEG s Zhenxing Qian, Member, IEEE, Hang Zhou, Xinpeng Zhang, Member, IEEE, Weiming Zhang Abstract While most techniques of reversible data hiding in encrypted

More information

Session Based Ciphertext Policy Attribute Based Encryption Method for Access Control in Cloud Storage

Session Based Ciphertext Policy Attribute Based Encryption Method for Access Control in Cloud Storage IOSR Journal of Engineering (IOSRJEN) ISSN (e): 2250-3021, ISSN (p): 2278-8719 Vol. 04, Issue 09 (September. 2014), V3 PP 21-25 www.iosrjen.org Session Based Ciphertext Policy Attribute Based Encryption

More information

Implementation of IBE with Outsourced Revocation technique in Cloud Computing

Implementation of IBE with Outsourced Revocation technique in Cloud Computing Implementation of IBE with Outsourced Revocation technique in Cloud Computing M.MOHANRAO, POCKLA PAVANI Assistant Professor, M.TECH STUDENT Dept of CSE,Megha Institute of Engineering & Technology For womens,edulabad,ghatkesar

More information

Weak Spots Enterprise Mobility Management. Dr. Johannes Hoffmann

Weak Spots Enterprise Mobility Management. Dr. Johannes Hoffmann Weak Spots Enterprise Mobility Management Dr. Johannes Hoffmann Personal details TÜV Informationstechnik GmbH TÜV NORD GROUP Dr. Johannes Hoffmann IT Security Business Security & Privacy Main focus: Mobile

More information

The Identity-Based Encryption Advantage

The Identity-Based Encryption Advantage White Paper Security The Identity-Based Encryption Advantage Table of Contents page Introduction... 1 Six Requirements for Enterprise Key Management... 1 Traditional Approaches to Key Management... 2 Public

More information

How to Select the Right Marketing Cloud Edition

How to Select the Right Marketing Cloud Edition How to Select the Right Marketing Cloud Edition Email Studio, Mobile Studio, and Web Studio ith Salesforce Marketing Cloud, marketers have one platform to manage 1-to-1 customer journeys through the entire

More information

Course Design Document. IS436: Data Security and Privacy. Version 1.0

Course Design Document. IS436: Data Security and Privacy. Version 1.0 Course Design Document IS436: Data Security and Privacy Version 1.0 7 July 2014 Table of Content 1 Versions History... 3 2 Overview of Data Security and Privacy Course... 3 2.1 Synopsis... 3 2.2 Prerequisites...

More information

An introduction to JPEG Standards for Digitization and Archiving Applications

An introduction to JPEG Standards for Digitization and Archiving Applications An introduction to JPEG Standards for Digitization and Archiving Applications Frederik Temmermans 1,2, Tim Bruylants 1,2, Peter Schelkens 1,2, and Touradj Ebrahimi 3 1 Vrije Universiteit Brussel, Department

More information

1) Revision history Revision 0 (Oct 29, 2008) First revision (r0)

1) Revision history Revision 0 (Oct 29, 2008) First revision (r0) To: INCITS Technical Committee T10 From: David L. Black, EMC Email: black_david@emc.com Date: October 29, 2008 Subject: SPC-4: Digital Signature Authentication (08-423r0) 1) Revision history Revision 0

More information

ISSN Vol.04,Issue.05, May-2016, Pages:

ISSN Vol.04,Issue.05, May-2016, Pages: WWW.IJITECH.ORG ISSN 2321-8665 Vol.04,Issue.05, May-2016, Pages:0737-0741 Secure Cloud Storage using Decentralized Access Control with Anonymous Authentication C. S. KIRAN 1, C. SRINIVASA MURTHY 2 1 PG

More information

Split and Merge - an algorithm to implement security on the Internet

Split and Merge - an algorithm to implement security on the Internet Split and Merge - an algorithm to implement security on the Internet OÃO PAULO PIMENTÃO, PEDRO A. C. SOUSA, ADOLFO STEIGER GARÇÃO UNINOVA Centre for Intelligent Robotics Universidade Nova de Lisboa Quinta

More information

Certificate service General description Implementation project of a national Incomes Register

Certificate service General description Implementation project of a national Incomes Register Version 1.0 Certificate service General description Implementation project of a national Incomes Register Version history Version Date Description 1.0 30.10.2017 Document published. CONTENTS 1 Foreword...

More information

Cryptography in Lotus Notes/Domino Pragmatic Introduction for Administrators

Cryptography in Lotus Notes/Domino Pragmatic Introduction for Administrators Cryptography in Lotus Notes/Domino Pragmatic Introduction for Administrators Belfast, 11-Nov-2010 Innovative Software Solutions. Thomas Bahn - graduated in mathematics, University of Hannover - developing

More information

Security+ SY0-501 Study Guide Table of Contents

Security+ SY0-501 Study Guide Table of Contents Security+ SY0-501 Study Guide Table of Contents Course Introduction Table of Contents About This Course About CompTIA Certifications Module 1 / Threats, Attacks, and Vulnerabilities Module 1 / Unit 1 Indicators

More information

Growing Consumer Clash with Photo-Sharing: Privacy vs. Tech Giants Cool, Convenience

Growing Consumer Clash with Photo-Sharing: Privacy vs. Tech Giants Cool, Convenience Growing Consumer Clash with Photo-Sharing: Privacy vs. Tech Giants Cool, Convenience 1 Photo-sharing report Methodology Americans are concerned about online privacy and security and are taking steps to

More information

L.C.Smith. Privacy-Preserving Offloading of Mobile App to the Public Cloud

L.C.Smith. Privacy-Preserving Offloading of Mobile App to the Public Cloud Privacy-Preserving Offloading of Mobile App to the Public Cloud Yue Duan, Mu Zhang, Heng Yin and Yuzhe Tang Department of EECS Syracuse University L.C.Smith College of Engineering 1 and Computer Science

More information

Public-key Infrastructure Options and choices

Public-key Infrastructure Options and choices Public-key Infrastructure Options and choices Tim Moses Director, Advanced Security Technology April 98 1997 Entrust Technologies Overview General-purpose and Dedicated PKIs Trust models Two-key architecture

More information

Lecture 2 Applied Cryptography (Part 2)

Lecture 2 Applied Cryptography (Part 2) Lecture 2 Applied Cryptography (Part 2) Patrick P. C. Lee Tsinghua Summer Course 2010 2-1 Roadmap Number theory Public key cryptography RSA Diffie-Hellman DSA Certificates Tsinghua Summer Course 2010 2-2

More information

BS801E-BSCS. Cryptography

BS801E-BSCS. Cryptography Jay-Ar Baliguat BS801E-BSCS Ms.Myrlen Maria Antoni Cryptography Cryptography can be defined as the conversion of data into a scrambled code that can be deciphered and sent across a public or private network.

More information

Modern key distribution with ClaimChains

Modern key distribution with ClaimChains Modern key distribution with ClaimChains A decentralized Public Key Infrastructure that supports privacy-friendly social verification NEXTLEAP Bogdan Kulynych Marios Isaakidis Carmela Troncoso George Danezis

More information

PKI Services. Text PKI Definition. PKI Definition #1. Public Key Infrastructure. What Does A PKI Do? Public Key Infrastructures

PKI Services. Text PKI Definition. PKI Definition #1. Public Key Infrastructure. What Does A PKI Do? Public Key Infrastructures Public Key Infrastructures Public Key Infrastructure Definition and Description Functions Components Certificates 1 2 PKI Services Security Between Strangers Encryption Integrity Non-repudiation Key establishment

More information

Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls

Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls Overview Cryptography functions Secret key (e.g., DES) Public key (e.g., RSA) Message

More information

Publicly Verifiable Secret Sharing for Cloud-based Key Management

Publicly Verifiable Secret Sharing for Cloud-based Key Management Publicly Verifiable Secret Sharing for Cloud-based Key Management Roy D Souza, David Jao, Ilya Mironov and Omkant Pandey Microsoft Corporation and University of Waterloo December 13, 2011 Overview Motivation:

More information

WAVE: A Decentralized Authorization Framework with Transitive Delegation

WAVE: A Decentralized Authorization Framework with Transitive Delegation WAVE: A Decentralized Authorization Framework with Transitive Delegation Michael P Andersen, Sam Kumar, H y u n g-sin Kim, John Kolb, Kaifei C h e n, Moustafa AbdelBaky, Gabe Fierro, David E. Culler, R

More information

Lecture Nov. 21 st 2006 Dan Wendlandt ISP D ISP B ISP C ISP A. Bob. Alice. Denial-of-Service. Password Cracking. Traffic.

Lecture Nov. 21 st 2006 Dan Wendlandt ISP D ISP B ISP C ISP A. Bob. Alice. Denial-of-Service. Password Cracking. Traffic. 15-441 Lecture Nov. 21 st 2006 Dan Wendlandt Worms & Viruses Phishing End-host impersonation Denial-of-Service Route Hijacks Traffic modification Spyware Trojan Horse Password Cracking IP Spoofing DNS

More information

Overview. SSL Cryptography Overview CHAPTER 1

Overview. SSL Cryptography Overview CHAPTER 1 CHAPTER 1 Secure Sockets Layer (SSL) is an application-level protocol that provides encryption technology for the Internet. SSL ensures the secure transmission of data between a client and a server through

More information

Privacy Preserving Ranked Multi-Keyword Search for Multiple Data Owners in Cloud Computing

Privacy Preserving Ranked Multi-Keyword Search for Multiple Data Owners in Cloud Computing S.NO PROJECT CODE IEEE JAVA PROJECT TITLES DOMAIN 1 NEO1501 A Hybrid Cloud Approach for Secure Authorized Deduplication 2 NEO1502 A Profit Maximization Scheme with Guaranteed Quality of Service in Cloud

More information

Cooperative Private Searching in Clouds

Cooperative Private Searching in Clouds Cooperative Private Searching in Clouds Jie Wu Department of Computer and Information Sciences Temple University Road Map Cloud Computing Basics Cloud Computing Security Privacy vs. Performance Proposed

More information

CMSC 414 S09 Exam 2 Page 1 of 6 Name:

CMSC 414 S09 Exam 2 Page 1 of 6 Name: CMSC 414 S09 Exam 2 Page 1 of 6 Name: Total points: 100. Total time: 115 minutes. 6 problems over 6 pages. No book, notes, or calculator Unless stated otherwise, the following conventions are used: K{X}

More information

FPKIPA CPWG Antecedent, In-Person Task Group

FPKIPA CPWG Antecedent, In-Person Task Group FBCA Supplementary Antecedent, In-Person Definition This supplement provides clarification on the trust relationship between the Trusted Agent and the applicant, which is based on an in-person antecedent

More information

Introduction to Cryptography Lecture 7

Introduction to Cryptography Lecture 7 Introduction to Cryptography Lecture 7 El Gamal Encryption RSA Encryption Benny Pinkas page 1 1 Public key encryption Alice publishes a public key PK Alice. Alice has a secret key SK Alice. Anyone knowing

More information

AllNet: Ubiquitous Interpersonal Communication

AllNet: Ubiquitous Interpersonal Communication AllNet: Ubiquitous Interpersonal Communication Edoardo Biagioni University of Hawaii at Mãnoa esb@hawaii.edu Basic Idea The radio in my cellphone can talk to the radio in your cellphone There is no software

More information

Identity-Based Decryption

Identity-Based Decryption Identity-Based Decryption Daniel R. L. Brown May 30, 2011 Abstract Identity-based decryption is an alternative to identity-based encryption, in which Alice encrypts a symmetric key for Bob under a trusted

More information

Watermarking 3D images and 3D meshes

Watermarking 3D images and 3D meshes Watermarking 3D images and Applications for cultural heritage William PUECH LIRMM Laboratoire d Informatique, de Robotique et de Microélectronique de Montpellier UMR 5506 CNRS, University of Montpellier,

More information

Using Cryptography CMSC 414. October 16, 2017

Using Cryptography CMSC 414. October 16, 2017 Using Cryptography CMSC 414 October 16, 2017 Digital Certificates Recall: K pub = (n, e) This is an RSA public key How do we know who this is for? Need to bind identity to a public key We can do this using

More information

TLS. RFC2246: The TLS Protocol. (c) A. Mariën -

TLS. RFC2246: The TLS Protocol. (c) A. Mariën - TLS RFC2246: The TLS Protocol What does it achieve? Confidentiality and integrity of the communication Server authentication Eventually: client authentication What is does not do Protect the server Protect

More information

Previous Name: D3. Fourth Estate. A secure, decentralized news data storing and sharing solution for journalists

Previous Name: D3. Fourth Estate. A secure, decentralized news data storing and sharing solution for journalists Previous Name: D3 Fourth Estate A secure, decentralized news data storing and sharing solution for journalists Aaron Chong Remini Yip International Student Blockchain Competition s Presentation 1 Problem

More information

CSC 5930/9010 Modern Cryptography: Public-Key Infrastructure

CSC 5930/9010 Modern Cryptography: Public-Key Infrastructure CSC 5930/9010 Modern Cryptography: Public-Key Infrastructure Professor Henry Carter Fall 2018 Recap Digital signatures provide message authenticity and integrity in the public-key setting As well as public

More information

5G-ENSURE. Privacy Enablers. (Project Number )

5G-ENSURE. Privacy Enablers. (Project Number ) 5G-ENSURE (Project Number 671562) Privacy Enablers madalina.baltatu@telecomitalia.it luciana.costa@telecomitalia.it dario.lombardo@telecomitalia.it Privacy enhanced identity protection Privacy Enablers

More information

FADE: A Secure Overlay Cloud Storage System with Access Control and Assured Deletion. Patrick P. C. Lee

FADE: A Secure Overlay Cloud Storage System with Access Control and Assured Deletion. Patrick P. C. Lee FADE: A Secure Overlay Cloud Storage System with Access Control and Assured Deletion Patrick P. C. Lee 1 Cloud Storage is Emerging Cloud storage is now an emerging business model for data outsourcing Individual

More information

Secure Scalable Streaming and Secure Transcoding with JPEG-2000

Secure Scalable Streaming and Secure Transcoding with JPEG-2000 Secure Scalable Streaming and Secure Transcoding with JPEG- Susie Wee, John Apostolopoulos Mobile and Media Systems Laboratory HP Laboratories Palo Alto HPL-3-117 June 13 th, 3* secure streaming, secure

More information

Jian Liu, Sara Ramezanian

Jian Liu, Sara Ramezanian CloSer WP2: Privacyenhancing Technologies Jian Liu, Sara Ramezanian Overview Seek to understand how user privacy is impacted by cloud-assisted security services Develop a suite of privacy-enhancing technologies

More information

Ten Risks of PKI : What You re not Being Told about Public Key Infrastructure By Carl Ellison and Bruce Schneier

Ten Risks of PKI : What You re not Being Told about Public Key Infrastructure By Carl Ellison and Bruce Schneier Presented by Joshua Schiffman & Archana Viswanath Ten Risks of PKI : What You re not Being Told about Public Key Infrastructure By Carl Ellison and Bruce Schneier Trust Models Rooted Trust Model! In a

More information

4 PKI Public Key Infrastructure

4 PKI Public Key Infrastructure 67 PKI 4.1 PKI history 4 PKI Public Key Infrastructure 4.1 PKI history Classical cryptography Example form II WW: Enigma dates back thousands of years symmetric key 68 PKI 4.1 PKI history Symmetric key

More information

Scalable Video Coding

Scalable Video Coding Introduction to Multimedia Computing Scalable Video Coding 1 Topics Video On Demand Requirements Video Transcoding Scalable Video Coding Spatial Scalability Temporal Scalability Signal to Noise Scalability

More information

Creating Trust in a Highly Mobile World

Creating Trust in a Highly Mobile World Creating Trust in a Highly Mobile World Technical White Paper Oct, 2014 MobileCrypt with Hardware Strength Security MobileCrypt s solution leverages an Android based mobile application and a Hardware Security

More information

IEEE Std and IEEE Std 1363a Ashley Butterworth Apple Inc.

IEEE Std and IEEE Std 1363a Ashley Butterworth Apple Inc. apple IEEE Std 1363-2000 and IEEE Std 1363a-2004 Ashley Butterworth Apple Inc. The Titles IEEE Std 1363-2000 - IEEE Standard Specifications for Public-Key Cryptography IEED Std 1363a-2004 - IEEE Standard

More information

Getting to Grips with Public Key Infrastructure (PKI)

Getting to Grips with Public Key Infrastructure (PKI) Getting to Grips with Public Key Infrastructure (PKI) What is a PKI? A Public Key Infrastructure (PKI) is a combination of policies, procedures and technology that forms a trust infrastructure to issue

More information

Certificateless Public Key Cryptography

Certificateless Public Key Cryptography Certificateless Public Key Cryptography Mohsen Toorani Department of Informatics University of Bergen Norsk Kryptoseminar November 9, 2011 1 Public Key Cryptography (PKC) Also known as asymmetric cryptography.

More information

A practical integrated device for lowoverhead, secure communications.

A practical integrated device for lowoverhead, secure communications. A practical integrated device for lowoverhead, secure communications. Gord Allan Matt Lewis Design Goals Versatility Mobility Security -can be used in a range of devices -compatibility, low/no infrastructure

More information

MASHaBLE: Mobile Applications of Secret Handshakes over Bluetooth Low-Energy. Yan Michalevsky, Suman Nath, Jie Liu

MASHaBLE: Mobile Applications of Secret Handshakes over Bluetooth Low-Energy. Yan Michalevsky, Suman Nath, Jie Liu MASHaBLE: Mobile Applications of Secret Handshakes over Bluetooth Low-Energy Yan Michalevsky, Suman Nath, Jie Liu Motivation Private communication Anonymous messaging Secret communities Location-based

More information

Cryptanalyzing the Polynomial Reconstruction based Public-Key System under Optimal Parameter Choice

Cryptanalyzing the Polynomial Reconstruction based Public-Key System under Optimal Parameter Choice Cryptanalyzing the Polynomial Reconstruction based Public-Key System under Optimal Parameter Choice Aggelos Kiayias - Moti Yung U. of Connecticut - Columbia U. (Public-Key) Cryptography intractability

More information

Authentication Technology for a Smart eid Infrastructure.

Authentication Technology for a Smart eid Infrastructure. Authentication Technology for a Smart eid Infrastructure. www.aducid.com One app to access all public and private sector online services. One registration allows users to access all their online accounts

More information

A Novel Information Security Scheme using Cryptic Steganography

A Novel Information Security Scheme using Cryptic Steganography A Novel Information Security Scheme using Cryptic Steganography B.RAJA RAO Associate Professor, E.C.E Dept raja_rao_b@ yahoo.com P.ANIL KUMAR Assistant Professor, I.T Dept anilkumar_pallikonda@yahoo.co.in

More information

Attribute Based Encryption with Privacy Protection in Clouds

Attribute Based Encryption with Privacy Protection in Clouds Attribute Based Encryption with Privacy Protection in Clouds Geetanjali. M 1, Saravanan. N 2 PG Student, Department of Information Technology, K.S.R College of Engineering, Tiruchengode, Tamilnadu, India

More information

Securing the Frisbee Multicast Disk Loader

Securing the Frisbee Multicast Disk Loader Securing the Frisbee Multicast Disk Loader Robert Ricci, Jonathon Duerig University of Utah 1 What is Frisbee? 2 Frisbee is Emulab s tool to install whole disk images from a server to many clients using

More information

IoT security based on the DPK platform

IoT security based on the DPK platform Zz S E C U M O B I. WHITE PAPER IoT security based on the DPK platform Powered by Ethereum David Khoury Elie Kfoury ABSTRACT Public key distribution remains one of the main security weaknesses in many

More information

Send documentation comments to

Send documentation comments to CHAPTER 6 Configuring Certificate Authorities and Digital Certificates This chapter includes the following topics: Information About Certificate Authorities and Digital Certificates, page 6-1 Default Settings,

More information

Most Common Security Threats (cont.)

Most Common Security Threats (cont.) Most Common Security Threats (cont.) Denial of service (DoS) attack Distributed denial of service (DDoS) attack Insider attacks. Any examples? Poorly designed software What is a zero-day vulnerability?

More information

A Less Weight Secure Data Sharing Scheme for Mobile Cloud Computing

A Less Weight Secure Data Sharing Scheme for Mobile Cloud Computing A Less Weight Secure Data Sharing Scheme for Mobile Cloud Computing P. Likitha Department of Computer Science and Engineering, MJR College of Engineering & Technology, Piler, A.P - 517214, India. ABSTRACT:

More information

Introduction to Symmetric Cryptography

Introduction to Symmetric Cryptography Introduction to Symmetric Cryptography Tingting Chen Cal Poly Pomona 1 Some slides are from Dr. Cliff Zou. www.cs.ucf.edu/~czou/cis3360-12/ch08-cryptoconcepts.ppt Basic Cryptography Private Key Cryptography

More information

Configuring Certificate Authorities and Digital Certificates

Configuring Certificate Authorities and Digital Certificates CHAPTER 43 Configuring Certificate Authorities and Digital Certificates Public Key Infrastructure (PKI) support provides the means for the Cisco MDS 9000 Family switches to obtain and use digital certificates

More information

DAC-MACS: Effective Data Access Control for Multiauthority Cloud Storage Systems

DAC-MACS: Effective Data Access Control for Multiauthority Cloud Storage Systems 1790 IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, VOL. 8, NO. 11, NOVEMBER 2013 DAC-MACS: Effective Data Access Control for Multiauthority Cloud Storage Systems Kan Yang, Associate Member,

More information

Key management. Pretty Good Privacy

Key management. Pretty Good Privacy ECE 646 - Lecture 4 Key management Pretty Good Privacy Using the same key for multiple messages M 1 M 2 M 3 M 4 M 5 time E K time C 1 C 2 C 3 C 4 C 5 1 Using Session Keys & Key Encryption Keys K 1 K 2

More information

BlackBerry Enterprise Solution Security

BlackBerry Enterprise Solution Security Release 4.1 Technical Overview 2006 Research In Motion Limited. All rights reserved. Contents Wireless security... 4 BlackBerry Enterprise Solution security... 4 New security features...6 BlackBerry encryption

More information

Introduction and Overview. Why CSCI 454/554?

Introduction and Overview. Why CSCI 454/554? Introduction and Overview CSCI 454/554 Why CSCI 454/554? Get Credits and Graduate Security is important More job opportunities More research funds 1 Workload Five homework assignments Two exams (open book

More information

ERICSSON RESEARCH Media Lab. Signal Processing Laboratory Swiss Federal Institute of Technology, Lausanne

ERICSSON RESEARCH Media Lab. Signal Processing Laboratory Swiss Federal Institute of Technology, Lausanne 71 72 73 74 75 Example: Progressive by quality Image: Bitrates: Woman 0.125 bpp 0.25 bpp 0.5 bpp 1.0 bpp 2.0 bpp 76 0.125 bpp 77 0.25 bpp 78 0.5 bpp 79 1.0 bpp 80 2.0 bpp 81 Region Of Interest coding Allows

More information

Secure Encryption Using Armstrong Number,Color Code ASCII and Prime Number

Secure Encryption Using Armstrong Number,Color Code ASCII and Prime Number Advances in Wireless and Mobile Communications. ISSN 0973-6972 Volume 10, Number 6 (2017), pp. 1257-1265 Research India Publications http://www.ripublication.com Secure Encryption Using Armstrong Number,Color

More information

ISO/IEC INTERNATIONAL STANDARD. Information technology Trusted Platform Module Part 1: Overview

ISO/IEC INTERNATIONAL STANDARD. Information technology Trusted Platform Module Part 1: Overview INTERNATIONAL STANDARD ISO/IEC 11889-1 First edition 2009-05-15 Information technology Trusted Platform Module Part 1: Overview Technologies de l'information Module de plate-forme de confiance Partie 1:

More information

Digital Certificates Demystified

Digital Certificates Demystified Digital Certificates Demystified Ross Cooper, CISSP IBM Corporation RACF/PKI Development Poughkeepsie, NY Email: rdc@us.ibm.com August 9 th, 2012 Session 11622 Agenda Cryptography What are Digital Certificates

More information
2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback