Optimal key-trees for tree-based private authentication

Authors:
Levente Buttyán;Tamás Holczer;István Vajda
Affiliations:
Laboratory of Cryptography and System Security (CrySyS), Department of Telecommunications, Budapest University of Technology and Economics, Hungary;Laboratory of Cryptography and System Security (CrySyS), Department of Telecommunications, Budapest University of Technology and Economics, Hungary;Laboratory of Cryptography and System Security (CrySyS), Department of Telecommunications, Budapest University of Technology and Economics, Hungary
Venue:
PET'06 Proceedings of the 6th international conference on Privacy Enhancing Technologies
Year:
2006

Citing 10
Cited 13

The dining cryptographers problem: unconditional sender and recipient untraceability

Journal of Cryptology
Anonymity, unobservability, and pseudeonymity — a proposal for terminology

International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability
An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation

EUROCRYPT '01 Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
Protocols for Key Establishment and Authentication

Protocols for Key Establishment and Authentication
Privacy and security in library RFID: issues, practices, and architectures

Proceedings of the 11th ACM conference on Computer and communications security
Quantitative evaluation of unlinkable ID matching schemes

Proceedings of the 2005 ACM workshop on Privacy in the electronic society
Towards an information theoretic metric for anonymity

PET'02 Proceedings of the 2nd international conference on Privacy enhancing technologies
Towards measuring anonymity

PET'02 Proceedings of the 2nd international conference on Privacy enhancing technologies
Reducing time complexity in RFID systems

SAC'05 Proceedings of the 12th international conference on Selected Areas in Cryptography
RFID security and privacy: a research survey

IEEE Journal on Selected Areas in Communications

Improved Privacy of the Tree-Based Hash Protocols Using Physically Unclonable Function

SCN '08 Proceedings of the 6th international conference on Security and Cryptography for Networks
A survey of RFID privacy approaches

Personal and Ubiquitous Computing
Flexible authentication in vehicular ad hoc networks

APCC'09 Proceedings of the 15th Asia-Pacific conference on Communications
Performance analysis of the simple lightweight authentication protocol

Proceedings of the 7th International Conference on Advances in Mobile Computing and Multimedia
Review: Privacy versus scalability in radio frequency identification systems

Computer Communications
Secure and private search protocols for RFID systems

Information Systems Frontiers
Tree-based RFID authentication protocols are definitively not privacy-friendly

RFIDSec'10 Proceedings of the 6th international conference on Radio frequency identification: security and privacy issues
Quantifying information leakage in tree-based hash protocols (short paper)

ICICS'06 Proceedings of the 8th international conference on Information and Communications Security
Efficient mutual authentication for multi-domain RFID systems using distributed signatures

WISTP'10 Proceedings of the 4th IFIP WG 11.2 international conference on Information Security Theory and Practices: security and Privacy of Pervasive Systems and Smart Devices
Minimizing information leakage of tree-based RFID authentication protocols using alternate tree-walking

ACISP'12 Proceedings of the 17th Australasian conference on Information Security and Privacy
Simple Lightweight Authentication Protocol: Security and Performance Considerations

International Journal of Business Data Communications and Networking
Improved anonymity for key-trees

RFIDSec'12 Proceedings of the 8th international conference on Radio Frequency Identification: security and privacy issues
Efficient detection of counterfeit products in large-scale RFID systems using batch authentication protocols

Personal and Ubiquitous Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Key-tree based private authentication has been proposed by Molnar and Wagner as a neat way to efficiently solve the problem of privacy preserving authentication based on symmetric key cryptography. However, in the key-tree based approach, the level of privacy provided by the system to its members may decrease considerably if some members are compromised. In this paper, we analyze this problem, and show that careful design of the tree can help to minimize this loss of privacy. First, we introduce a benchmark metric for measuring the resistance of the system to a single compromised member. This metric is based on the well-known concept of anonymity sets. Then, we show how the parameters of the key-tree should be chosen in order to maximize the system's resistance to single member compromise under some constraints on the authentication delay. In the general case, when any member can be compromised, we give a lower bound on the level of privacy provided by the system. We also present some simulation results that show that this lower bound is quite sharp. The results of this paper can be directly used by system designers to construct optimal key-trees in practice; indeed, we consider this as the main contribution of our work.