authcoin validation and authentication in decentralized
play

Authcoin Validation and Authentication in Decentralized Networks - PowerPoint PPT Presentation

Aug 29, 2023 •343 likes •553 views

Introduction Authcoin Conclusion and Future Work Authcoin Validation and Authentication in Decentralized Networks Benjamin Leiding 1 Clemens H. Cap 2 Thomas Mundt 2 Samaneh Rashidibajgan 2 1 University of G ottingen

  1. Introduction Authcoin Conclusion and Future Work Authcoin Validation and Authentication in Decentralized Networks Benjamin Leiding 1 Clemens H. Cap 2 Thomas Mundt 2 Samaneh Rashidibajgan 2 1 University of G¨ ottingen benjamin.leiding@cs.uni-goettingen.de 2 University of Rostock { clemens.cap,thomas.mundt,samaneh.rashidibajgan } @uni-rostock.de September 6, 2016 Benjamin Leiding Authcoin — MCIS 2016 1 / 19

  2. Introduction Authcoin Conclusion and Future Work Overview 1 Introduction 2 Authcoin 3 Conclusion and Future Work Benjamin Leiding Authcoin — MCIS 2016 2 / 19

  3. Introduction Authcoin Conclusion and Future Work Introduction Benjamin Leiding Authcoin — MCIS 2016 3 / 19

  4. Introduction Authcoin Conclusion and Future Work Motivation Existing solutions • Certificate authorities (CAs) • PGP Web of Trust • Certcoin BUT: All of them suffer from several disadvantages. Benjamin Leiding Authcoin — MCIS 2016 4 / 19

  5. Introduction Authcoin Conclusion and Future Work Certificate Authorities (CAs) Figure: Hierarchical trust model Benjamin Leiding Authcoin — MCIS 2016 5 / 19

  6. Introduction Authcoin Conclusion and Future Work PGP Web of Trust • Decentralized trust model for public keys • Mainly used for encrypted email communication • Users sign other users’ public key using their own private key to certify authenticity • Interpreting each key as node and each signature as directed edge results in a directed graph → The PGP Web of Trust Figure: PGP Web of Trust Benjamin Leiding Authcoin — MCIS 2016 6 / 19

  7. Introduction Authcoin Conclusion and Future Work Certcoin An alternative approach • PGP Web of Trust + Block chain = Certcoin • Shares similarities with Authcoin • Inherited almost all disadvantages of the PGP Web of Trust • Has not been implemented yet Benjamin Leiding Authcoin — MCIS 2016 7 / 19

  8. Introduction Authcoin Conclusion and Future Work Authcoin Benjamin Leiding Authcoin — MCIS 2016 8 / 19

  9. Introduction Authcoin Conclusion and Future Work Overview Benjamin Leiding Authcoin — MCIS 2016 9 / 19

  10. Introduction Authcoin Conclusion and Future Work General Validation and Authentication Figure: General V&A procedure Benjamin Leiding Authcoin — MCIS 2016 10 / 19

  11. Introduction Authcoin Conclusion and Future Work Validation and Authentication Validation 1 An entity has access to the email account (account validation) 2 Same entity has access to the public and private key (key validation) 3 The key pair corresponds to the tested email account (binding) Authentication • Verify the identity of the entity. Benjamin Leiding Authcoin — MCIS 2016 11 / 19

  12. Introduction Authcoin Conclusion and Future Work Challenges Challenges in a Nutshell • Security depends on chosen challenges • Flexible and customizable (use case, threat level, available information) • Bidirectional validation and authentication • Varying complexity • Users have to interpret information Benjamin Leiding Authcoin — MCIS 2016 12 / 19

  13. Introduction Authcoin Conclusion and Future Work Storing Information Block chain • Store keys, signatures, challenges, responses, etc • Utilize advantages of block chain-based storage: decentralized, distributed, fault tolerant, transparent, difficult to manipulate, etc. • Either setup own chain or utilize existing one (as Namecoin does) Benjamin Leiding Authcoin — MCIS 2016 13 / 19

  14. Introduction Authcoin Conclusion and Future Work Overview Benjamin Leiding Authcoin — MCIS 2016 14 / 19

  15. Introduction Authcoin Conclusion and Future Work Automated Validation and Authentication Requests Validation and Authentication Requests (VARs) • Automatically and randomly create with each new block • Number of generated VARs depends on number of valid keys in chain • Break into sybil collectives “by accident” Benjamin Leiding Authcoin — MCIS 2016 15 / 19

  16. Introduction Authcoin Conclusion and Future Work Conclusion and Future Work Benjamin Leiding Authcoin — MCIS 2016 16 / 19

  17. Introduction Authcoin Conclusion and Future Work Conclusion Conclusion • Highly flexible Challenge-Response-based V&A • Bidirectional V&A • Tamper-proof and transparent information storage (block chain) • More resilient against sybil node attacks than current solutions • No single point of failure Benjamin Leiding Authcoin — MCIS 2016 17 / 19

  18. Introduction Authcoin Conclusion and Future Work Future Work Future Work • Implementation • API-based incentive system • Abstract from key pair use case • Biometric identifiers? Benjamin Leiding Authcoin — MCIS 2016 18 / 19

  19. Introduction Authcoin Conclusion and Future Work Questions? Benjamin Leiding Authcoin — MCIS 2016 19 / 19

Recommend

OPT : LIGHTWEIGHT SOURCE AUTHENTICATION & PATH VALIDATION

OPT : LIGHTWEIGHT SOURCE AUTHENTICATION & PATH VALIDATION

OPT : LIGHTWEIGHT SOURCE AUTHENTICATION & PATH VALIDATION Tiffany Hyun-Jin Kim , 1 Cris(na Basescu, 2 Limin Jia, 1 Soo Bum Lee, 3 Yih-Chun Hu, 4 and Adrian

502 views • 26 slides
Packet Validation in the Network Environments Yingdi Yu UCLA 1 Packet Authentication How

Packet Validation in the Network Environments Yingdi Yu UCLA 1 Packet Authentication How

Packet Validation in the Network Environments Yingdi Yu UCLA 1 Packet Authentication How to authenticate a data packet containing the electricity usage of a room at certain time? Data is signed, but how to verify the signature?

224 views • 19 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the process of verifying the identity of the communicating principals to one another Usually sub-divided into Entity authentication Authentication

288 views • 10 slides
Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a precondition How to authenticate: Something you know Password, Secrets Something you have Smart Card, Token Something you are Biometrie

607 views • 4 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

1.66k views • 27 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

613 views • 27 slides
A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization, Sessions Authentication Determining user identity Multiple ways What you know (password) What you have (phone, RSA SecureID, Yubikey)

1.57k views • 28 slides
Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password Token-based authentication Third party authentication Local Authentication How to store and verify password? Clear Data can be hacked

615 views • 14 slides
Identity Stefan Thomas, CTO Agenda Goals Terminology What can decentralized

Identity Stefan Thomas, CTO Agenda Goals Terminology What can decentralized

Identity Stefan Thomas, CTO Agenda Goals Terminology What can decentralized networks contribute? Better Identity Provider Public attestation Stefan Thomas, CTO Goals What are we trying to solve? Authentication

520 views • 19 slides
The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch Security Engineer kbabioch@suse.de New authentication standards ... 2 Some authentication technologies ... 3 - Authentication theory -

1.28k views • 88 slides
Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239 Authentication on a single machine Computer Security Authentication across a network February 21, 2007 Lecture 9 Lecture 9 Page 1 Page 2 CS 236,

302 views • 8 slides
A Decentralized and Distributed E-voting Scheme Based on Cryptographic Shuffles Decentralized

A Decentralized and Distributed E-voting Scheme Based on Cryptographic Shuffles Decentralized

A Decentralized and Distributed E-voting Scheme Based on Cryptographic Shuffles Decentralized and Distributed Systems Laboratory Andy Caforio Responsible: Prof. Bryan Ford Supervision: Linus Gasser, Philipp Jovanovic 1 Way back when

445 views • 20 slides
I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform Agenda Authentication Inbound authentication Outbound authentication Single Sign-on Definitions Stage Process Method Physical

781 views • 48 slides
Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values

Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values

Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values are correct some types of validation: preventing blank values (email address) ensuring the type of values integer, real number,

284 views • 24 slides
Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far

Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far

Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far Various metrics (e.g., accuracy, F-measure, RMSE, ) Evaluation protocol setups Split Validation Cross Validation Special

1.04k views • 55 slides
HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been proposed for applications including: Encryption and authentication For detecting malicious alterations of design components For

645 views • 15 slides
1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

396 views • 17 slides
THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication overview Current state of Authentication The future of authentication MY JOURNEY 2012-2015 2004-2011 2015-Present 1998-2004 Staff at MIT

453 views • 34 slides
User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication middleware for Node. It is designed to serve a singular purpose: authenticate requests. Supports a comprehensive set of authentication mechanisms called

808 views • 16 slides
Fixing healthcare data exchange with decentralized FOSS Protect your API's with a decentralized

Fixing healthcare data exchange with decentralized FOSS Protect your API's with a decentralized

Fixing healthcare data exchange with decentralized FOSS Protect your API's with a decentralized trust layer Steven van der Vegt Open standard to enable safe and correct exchange of healthcare data. Goal Create a (inter)national network of

708 views • 35 slides
Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM

Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM

Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM Lab., CS Dept., NCTU Jung Hong Chuang Contents Why Validate? Validation Approaches Domain Why is Validation Abstraction

724 views • 47 slides
Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and Schroeder Authentication in general Bishop: Authentication is the binding of an identity to a principal. Network-based authentication mechanisms

1.6k views • 43 slides
HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest mechanisms called challenge-response entity authentication exchange cleartext bitstrings directly, i.e., no cryptographic primitives are used A PUF

1.08k views • 38 slides

More recommend