Password Management: Distribution, Review and Revocation

Information Security Journal: A Global Perspective

2019

Self Cite

We refer to a distributed architecture consisting of sensor nodes connected by wireless links and organized in a tree shaped hierarchy. We present a paradigm for the management of the cryptographic keys used by nodes to communicate, and we consider the problems connected with key generation, distribution, and replacement. In our paradigm, names are assigned to nodes by using a uniform scheme, which is based on the position of the given node in the node hierarchy. Each node holds a hierarchical key to communicate with its ancestors, and a level key to communicate with its siblings. A single, publiclyknown parametric one-way function is used to assign hierarchical keys to nodes, in an iterative procedure that starts from the key of the root of the node hierarchy, and proceeds downwards to the lowest hierarchical levels. A similar procedure is used to generate the level keys. The total memory requirements for key storage are extremely low. The number of keys exchanged in a key replacement process is kept to a minimum. Dynamic access control is fully supported, whereby new nodes can be added to the node hierarchy, and existing nodes can be evicted from the hierarchy.

Section: The Protection Modelmentioning

confidence: 99%

Key management in wireless sensor networks

Information Security Journal: A Global Perspective

2019

Self Cite

“…A related problem is that of access right revocation. Several solutions have been proposed to this problem [21]. A propagation graph can be constructed for each capability, which keeps track of all copies of this capability [7].…”

Section: Revocationmentioning

confidence: 99%

“…In a classic protection system paradigm, a set of active subjects (users, processes) attempts to access a set of passive, typed entities called objects [21], [38]. The type of a given object states the set of the operations that can be executed on this object, and the access rights that are necessary to accomplish each operation successfully.…”

Section: Introductionmentioning

confidence: 99%

Access control lists in password capability environments

2016

Computers & Security

Self Cite

With reference to a protection system featuring active subjects that attempt to access passive, typed objects,we propose a set of mechanisms supporting the distribution,verification,review and revocation of access privileges. In our approach, a protection domain is a collection of access rights for the protected objects. An access control list is associated with each object to specify the access rights in each domain. Objects are grouped into clusters.To access the objects in a given cluster, a subject presents a gate referencing this cluster. The gate is a form of password capability that identifies one or more domains.The gate grants the access rights specified for these domains by the access control lists of the objects in the cluster. A subject that holds a gate and is aimed at distributing the access privileges in this gate in restricted form can reduce the gate to eliminate domains; the gate reduction procedure requires no intervention of the protection system. A small set of protection primitives allows subjects to manage objects and access control lists. Forms of revocation of access permissions are supported, at both levels of gates and access control lists

“…the method to restrict the extent of an access privilege by eliminating one or more access rights), and revocation (i.e. the ability to prevent further utilization of a given access privilege) [29]. In the capability list approach, segregation needs to be supported by ad-hoc mechanisms, e.g.…”

Section: Password Capabilitiesmentioning

confidence: 99%

Password systems: Design and implementation

Dini

Computers & Electrical Engineering

2015

Self Cite

Critical infrastructures require protection systems that are both flexible and efficient. Flexibility is essential to capture the multi-organizational and state-based nature of these systems, efficiency is necessary to cope with limitations of hardware resources. To meet these requirements, we consider a classical protection environment featuring subjects that attempt to access the protected objects. We approach the problem of specifying the access privileges held by each subject. Our protection model associates a password system with each object; the password system features a password for each access privilege defined for this object. A subject can access the object if it holds a key matching one of the passwords in the password system, and the access privilege corresponding to this password permits to accomplish the access. Password systems are implemented as hierarchical bidimensional one-way chains. Trade-offs are possible between the memory requirements for storage of a password system and the processing time necessary to validate a key.