modern key distribution with claimchains
play

Modern key distribution with ClaimChains A decentralized Public Key - PowerPoint PPT Presentation

Feb 20, 2023 •122 likes •593 views

Modern key distribution with ClaimChains A decentralized Public Key Infrastructure that supports privacy-friendly social verification Bogdan Kulynych Marios Isaakidis N E X T L E A P Carmela Troncoso George Danezis photo by lisa cee

  1. Modern key distribution with ClaimChains A decentralized Public Key Infrastructure that supports privacy-friendly social verification Bogdan Kulynych Marios Isaakidis N E X T L E A P Carmela Troncoso George Danezis photo by lisa cee

  3. HIGH-INTEGRITY Tamper proof Authenticity

  4. DECENTRALIZATION HIGH-INTEGRITY Availability Tamper proof Censorship-resistant Authenticity Global consensus

  5. Cryptocurrency chains TRANSACTIONS ● transaction x 0 HEAD Powerful abstraction for identities ● transaction x 1 Global namespace . . . ● transaction x n No mechanism for social validation All transactions are public Users need to buy coins and pay for transaction fees BLOCK HEADER Resource expensive ● pointer to previous block ● hash of block transactions ● timestamp . . .

  6. Federated “Merkle prefix tree” chains Accountability Easy discovery Efficient Do not prevent equivocation Centralization Single point of failure – Surveillance – keybase.io CONIKS CONIKS

  7. Merkle binary prefix trees Leaf nodes are ordered using ROOT a Verifiable Random Function 0 1 0 1 1 0 H(child 0 , child 1 ) 0 0 1 0 1 0 1 1 i = 000… i = 001… v = value Y v = value X

  8. ClaimChains claimchain.github.io photo by Wendi Halet

  9. ClaimChains A ClaimChain for each user/device/identity ● Blocks appended as needed ● Compromises appear as ClaimChain forks ● Owner selects who can read a specific ● claim – all readers get the same content

  10. ClaimChains A ClaimChain for each user/device/identity ● cross-hash Blocks appended as needed ● Compromises appear as ClaimChain forks ● Owner selects who can read a specific ● claim – all readers get the same content

  11. ClaimChains A ClaimChain for each user/device/identity ● cross-hash Blocks appended as needed ● Compromises appear as ClaimChain forks ● Owner selects who can read a specific claim – all ● readers get the same content Propagation of key updates in “cliques” of user ● Vouch for the latest state of a friend’s ClaimChain ● Friend introductions - Social validation – Web of Trust ● … while preserving privacy

  12. Overview ● ClaimChains are high-integrity, authenticated data stores that can support generic claims ● Privacy: a capabilities mechanism for fine-grained claim-specific access control ● Non-equivocation: all readers of a private claim get the same view ● Cross-hashing enables the propagation and vouching of the latest state of linked ClaimChains ● Equivocation attempts a compromises produce non-repudiable cryptographic evidence (“ClaimChain forks”) ● Flexible in terms of deployment ● Efficient “selective sharing” of claims

  13. ClaimChains block structure ClaimChain version Block index Timestamp Nonce Signature CLAIMCHAIN METADATA under pk SIG ● Connected identities ● ClaimChain Public keys (pk SIG , pk VRF , pk DH ) BLOCK MAP Merkle prefix tree with all claims and capabilities Pointers to previous blocks

  14. Block claim map: Adding a claim label = bob@riseup.net claim = 0515b693e5 ROOT

  15. Block claim map: Adding a claim label = bob@riseup.net claim = 0515b693e5 ROOT 1) Compute claim key k = VRF ( || nonce)

  16. Block claim map: Adding a claim label = bob@riseup.net claim = 0515b693e5 ROOT 1) Compute claim key k = VRF ( || nonce) 2) Calculate the index of the leaf node: i = SHA256( k || “lookup” )

  17. Block claim map: Adding a claim label = bob@riseup.net claim = 0515b693e5 ROOT 1) Compute claim key k = VRF ( || nonce) 2) Calculate the index of the leaf node: i = SHA256( k || “lookup” ) 3) Generate a symm. enc. key K = SHA256( k || “enc” )

  18. Block claim map: Adding a claim label = bob@riseup.net claim = 0515b693e5 ROOT 1) Compute claim key k = VRF ( || nonce) 2) Calculate the index of the leaf node: i = SHA256( k || “lookup” ) 3) Generate a symm. enc. key K = SHA256( k || “enc” ) 4) Encrypt claim content C = Enc K ( VRFproof + “0515b693e5” )

  19. Block claim map: Adding a claim label = bob@riseup.net claim = 0515b693e5 ROOT 1) Compute claim key k = VRF ( || nonce) 2) Calculate the index of the leaf node: i = SHA256( k || “lookup” ) i = 0110... v = C 3) Generate a symm. enc. key K = SHA256( k || “enc” ) 4) Encrypt claim content C = Enc K ( VRFproof + “0515b693e5” )

  20. Block claim map: Adding a capability for to read ROOT i = 0110... v = C

  21. Block claim map: Adding a capability for to read ROOT 1) Establish DH shared secret s between and i = 0110... v = C

  22. Block claim map: Adding a capability for to read ROOT 1) Establish DH shared secret s between and 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) i = 0110... v = C

  23. Block claim map: Adding a capability for to read ROOT 1) Establish DH shared secret s between and 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) 3) Derive the symm. enc. key K = SHA256( nonce || s || “enc” ) i = 0110... v = C

  24. Block claim map: Adding a capability for to read ROOT 1) Establish DH shared secret s between and 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) 3) Derive the symm. enc. key K = SHA256( nonce || s || “enc” ) 4) Encrypt claim key VRF ( || nonce) C = Enc K ( k ) i = 0110... v = C

  25. Block claim map: Adding a capability for to read ROOT 1) Establish DH shared secret s between and 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) i = 1010... 3) Derive the symm. enc. key v = C K = SHA256( nonce || s || “enc” ) 4) Encrypt claim key VRF ( || nonce) C = Enc K ( k ) i = 0110... v = C

  26. Block claim map: retrieving the latest update for ROOT i = 1010... i = 0110... v = C v = C

  27. Block claim map: retrieving the latest update for 1) Establish DH shared secret s between and ROOT i = 1010... i = 0110... v = C v = C

  28. Block claim map: retrieving the latest update for 1) Establish DH shared secret s between and ROOT 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) i = 1010... i = 0110... v = C v = C

  29. Block claim map: retrieving the latest update for 1) Establish DH shared secret s between and ROOT 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) 3) Derive the symm. enc. key K = SHA256( nonce || s || “enc” ) i = 1010... i = 0110... v = C v = C

  30. Block claim map: retrieving the latest update for 1) Establish DH shared secret s between and ROOT 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) 3) Derive the symm. enc. key K = SHA256( nonce || s || “enc” ) i = 1010... 4) Retrieve capability block and decrypt it with K v = C Result: key for ‘s claim i = 1010... i = 0110... v = C v = C

  31. Block claim map: retrieving the latest update for 1) Establish DH shared secret s between and ROOT 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) 3) Derive the symm. enc. key K = SHA256( nonce || s || “enc” ) i = 1010... 4) Retrieve capability block and decrypt it with K v = C Result: key for ‘s claim i = 0110... 5) Retrieve ‘s claim and decrypt it v = C i = 1010... i = 0110... v = C v = C

  32. Block claim map: retrieving the latest update for 1) Establish DH shared secret s between and ROOT 2) Derive the capability lookup key i = SHA256 ( nonce || s || “lookup” ) 3) Derive the symm. enc. key K = SHA256( nonce || s || “enc” ) i = 1010... 4) Retrieve capability block and decrypt it with K v = C Result: key for ‘s claim i = 0110... 5) Retrieve ‘s claim and decrypt it v = C i = 1010... 6) Verify VRFproof i = 0110... v = C v = C

  33. Resilience ● Field research to understand user needs ● Collaboration with related communities ● Applied research: – Cryptographic games to define security and privacy properties – Formally verified implementation ● Simulations using real world data ● Interoperability and plans for gradual deployment ● User-centric design ● Multidisciplinarity ● Open Innovation (open access and extendability)

  34. Thank you @misaakidis claimchain.github.io photo by alcidecota

  35. Evaluation of scalability Claim map construction time Cumulative block storage size

  36. Key propagation in a fully decentralized setting Outgoing bandwidth cost Email encryption status (%)

  37. Merkle binary prefix trees: Proof of inclusion ROOT 1 0 0 1 1 0 0 0 1 0 1 0 1 1

  38. Merkle binary prefix trees: Proof of inclusion (alice@riseup.net, 0x1A2B3C) ROOT VRF pkVRF (alice@riseup.net) = 01011... 1 0 0 1 1 0 0 0 1 0 1 0 1 1

  39. Merkle binary prefix trees: Proof of inclusion (alice@riseup.net, 0x1A2B3C) ROOT VRF pkVRF (alice@riseup.net) = 01011... 1 0 0 1 1 0 0 0 1 0 1 0 1 1

  40. Merkle binary prefix trees: Proof of inclusion (alice@riseup.net, 0x1A2B3C) ROOT ROOT VRF pkVRF (alice@riseup.net) = 01011... 1 0 0 1 1 0 0 0 1 0 1 0 1 1 i = 01011… v =0x1A2B

Recommend

MODERN 1 MODERN 2 MODERN 3 MODERN 4 MODERN A peep at some distant orb has power to raise

MODERN 1 MODERN 2 MODERN 3 MODERN 4 MODERN A peep at some distant orb has power to raise

MODERN 1 MODERN 2 MODERN 3 MODERN 4 MODERN A peep at some distant orb has power to raise and purify our thoughts like a strain picture, or a passage from the grander poets. It always does one good. 5 MODERN 6 MODERN 7 MODERN 8

524 views • 24 slides
Modern Loads & Poor Power Quality Harmonics Issues 29/30 Nov 2017 Distribution Utility

Modern Loads & Poor Power Quality Harmonics Issues 29/30 Nov 2017 Distribution Utility

Modern Loads & Poor Power Quality Harmonics Issues 29/30 Nov 2017 Distribution Utility Meet (DUM 2017) Bangalore Indias Grid PQ Nearing Cliff? Region-wise Power Quality Parameters observed across the country (Source: Swachh Power

579 views • 16 slides
1. Normal distribution 2. Geometric distribution 3. Binomial distribution 4.

1. Normal distribution 2. Geometric distribution 3. Binomial distribution 4.

Chapter 3. Distribution of Random Variables Jan 26, 2016 by Huamei Dong 1. Normal distribution 2. Geometric distribution 3. Binomial distribution 4. Negative binomial distribution 5. Poisson distribution 1.Normal distribution

520 views • 11 slides
Sea lions and Te Ao Mo with a focus on Ngi Tahu whnui Past Distribution Map derived from:

Sea lions and Te Ao Mo with a focus on Ngi Tahu whnui Past Distribution Map derived from:

Sea lions and Te Ao Mo with a focus on Ngi Tahu whnui Past Distribution Map derived from: Childerhouse & Gales (1998) Historical and modern distribution and abundance of the New Zealand sea lion Phocarctos hookeri, New Zealand

426 views • 26 slides
Distribution The definition of distribution Distribution of the subject-term Distribution of the

Distribution The definition of distribution Distribution of the subject-term Distribution of the

Three Acts of the Mind Verbal Expression: Mental Act: Simple Apprehension Term Judgment Proposition Deductive Inference Syllogism Slide 8-1 Distribution The definition of distribution Distribution of the subject-term

390 views • 12 slides
H6751 Summary Zhao Rui Agenda 1. Modern AI 2. Course Summary Modern AI Modern AI

H6751 Summary Zhao Rui Agenda 1. Modern AI 2. Course Summary Modern AI Modern AI

H6751 Summary Zhao Rui Agenda 1. Modern AI 2. Course Summary Modern AI Modern AI (90s-present) Stat Model :Pearl (1988) promote Bayesian networks in AI to model uncertainty (based on Bayes rule from 1700) Stat Model: infer the

441 views • 11 slides
Wonders of Modern Architecture Oh, the wonders of modern architecture! The geniuses of

Wonders of Modern Architecture Oh, the wonders of modern architecture! The geniuses of

Wonders of Modern Architecture Oh, the wonders of modern architecture! The geniuses of architecture today continue to create design masterpieces that could make one proud of being a citizen of the 21st Century! Enjoy the beauty of these modern

832 views • 52 slides
Apprenticeships Modern Apprenticeships Tackling Scotlands skills gap Modern

Apprenticeships Modern Apprenticeships Tackling Scotlands skills gap Modern

Modern and Graduate Apprenticeships Modern Apprenticeships Tackling Scotlands skills gap Modern Apprenticeships help employers to develop their workforce by training new staff, and upskilling existing employees. For individuals, an MA is

532 views • 6 slides
Lecture 14 : The Gamma Distribution and its Relatives 0/ 18 The gamma distribution is a

Lecture 14 : The Gamma Distribution and its Relatives 0/ 18 The gamma distribution is a

Lecture 14 : The Gamma Distribution and its Relatives 0/ 18 The gamma distribution is a continuous distribution depending on two parameters, and . It gives rise to three special cases 1 The exponential distribution ( = 1 , = 1 ) 2

303 views • 19 slides
Modern Defense Tooling Artificial intelligence as a defense platform Ameen Altajer Modern

Modern Defense Tooling Artificial intelligence as a defense platform Ameen Altajer Modern

Modern Defense Tooling Artificial intelligence as a defense platform Ameen Altajer Modern Defense Tooling A drastic change in the modern AI landscape The work of both DeepMind and OpenAI is a testament of how things drastically changed Modern

700 views • 15 slides
Modern Mississippi Chapters 10-11 MS state flag, seal and Coat of Arms Chp 10 &11 (Modern

Modern Mississippi Chapters 10-11 MS state flag, seal and Coat of Arms Chp 10 &11 (Modern

Modern Mississippi Chapters 10-11 MS state flag, seal and Coat of Arms Chp 10 &11 (Modern MS) 2 Chp 10 &11 (Modern MS) 3 Modern Mississippi Statistics As of the year 2000, MS had a population of 2,844,658. The largest city

1.09k views • 60 slides
Modern technology supporting hygiene in in food production Paul Middleton-Walker UK &

Modern technology supporting hygiene in in food production Paul Middleton-Walker UK &

Modern technology supporting hygiene in in food production Paul Middleton-Walker UK & Ireland Distribution Manager Our History EnSURE Touch ATP Hygiene Monitoring System Four critical components that make up a quality ATP hygiene

777 views • 10 slides
Probability Distribution 1. Probability Distribution: ( ,..., ) is a tuple p p p 1 n

Probability Distribution 1. Probability Distribution: ( ,..., ) is a tuple p p p 1 n

Probability Distribution : Building up the notion of Pseudo-randomness Debdeep Mukhopadhyay IIT Kharagpur Probability Distribution 1. Probability Distribution: ( ,..., ) is a tuple p p p 1 n of elements , 0 p 1,

311 views • 18 slides
Distribution The Role of Distribution To ensure that the products are available for customers at

Distribution The Role of Distribution To ensure that the products are available for customers at

Marketing Mix Distribution The Role of Distribution To ensure that the products are available for customers at the right place , right time , in right quantities and in right conditions Definition Distribution is the process of making a

531 views • 22 slides
Using Modern C++ In Anger Todd L. Montgomery @toddlmontgomery Aeron and C++? What

Using Modern C++ In Anger Todd L. Montgomery @toddlmontgomery Aeron and C++? What

StoneTor Using Modern C++ In Anger Todd L. Montgomery @toddlmontgomery Aeron and C++? What constitutes Modern C++ ? How Aeron Adopts Modern C++? What Lessons were learned? Whats Next ? Aeron and C++? Truly modern

2.03k views • 98 slides
SelfSplit automatic workload distribution in parallel computation Matteo Fischetti, Michele

SelfSplit automatic workload distribution in parallel computation Matteo Fischetti, Michele

SelfSplit automatic workload distribution in parallel computation Matteo Fischetti, Michele Monaci, Domenico Salvagnin University of Padova Aussois, January 2014 1 Parallel computation Modern PCs / notebooks have several processing

459 views • 17 slides
Insulator Application in Insulator Application in Distribution Distribution Research &

Insulator Application in Insulator Application in Distribution Distribution Research &

Insulator Application in Insulator Application in Distribution Distribution Research & Standardization in Eskom Distribution Welcome to the year 2 000 000 BC! CUSTOMER REQUIREMENTS 500 kVA mobile point of supply for diamond fields

942 views • 73 slides
Modern Modern Template Techniques Template The Simplest Function Template

Modern Modern Template Techniques Template The Simplest Function Template

Modern Modern Template Techniques Template The Simplest Function Template CRTPStatic Polymorphism Techniques Type TraitsBasic Metaprogramming Compile-time Conditionals Policy Classes Perfect Forwarding

1.29k views • 42 slides
Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography Symmetric cryptography DES 3DES AES Asymmetric cryptography Diffie-Hellman key exchange 2 Modern cryptography Moving into

338 views • 16 slides
W HAT CAN BE DONE WITH A SO SIMPLE LOGIC ? The facts are propositional variables The knowledge is

W HAT CAN BE DONE WITH A SO SIMPLE LOGIC ? The facts are propositional variables The knowledge is

History of SAT Modern Solvers Main Components Conclusion / Challenges T OWARDS A N EW E RA OF SAT S OLVERS Laurent Simon Inside Modern SAT Solvers Contains Materials from Joao Marques-Silva, Daniel Le Berre 1/66 History of SAT Modern

2.02k views • 186 slides
What is TypeScript? TypeScript = JavaScript TypeScript = Modern JavaScript TypeScript = Modern

What is TypeScript? TypeScript = JavaScript TypeScript = Modern JavaScript TypeScript = Modern

What is TypeScript? TypeScript = JavaScript TypeScript = Modern JavaScript TypeScript = Modern JavaScript + Types Open source and open development Closely track ECMAScript standard Innovate in type system Best of breed tooling Continuously

909 views • 53 slides
CAREERS & SKILLS ASSEMBLY Modern Languages Modern Languages at Boroughmuir and beyond

CAREERS & SKILLS ASSEMBLY Modern Languages Modern Languages at Boroughmuir and beyond

CAREERS & SKILLS ASSEMBLY Modern Languages Modern Languages at Boroughmuir and beyond You have the chance to learn French, German, Spanish, Mandarin and Italian Everyone studies at least one language until the end of S4 From S3,

554 views • 6 slides
Exponential & Normal Distribution Lec.22 July 29, 2020 Exponential Distribution: Fundamental

Exponential & Normal Distribution Lec.22 July 29, 2020 Exponential Distribution: Fundamental

Exponential & Normal Distribution Lec.22 July 29, 2020 Exponential Distribution: Fundamental Idea The exponential distribution is the continuous analog of the geometric distribution. In the case of the geometric coin flipping experiment,

372 views • 33 slides
In Investor Update Ju June 2017 What is is Modern? Success in a Low Modern GRANDE PRAIRIE

In Investor Update Ju June 2017 What is is Modern? Success in a Low Modern GRANDE PRAIRIE

In Investor Update Ju June 2017 What is is Modern? Success in a Low Modern GRANDE PRAIRIE Market Pipelines Price Environment (NGTL, Alliance) Pembina Peace Clean, safe, low liability HS&E Leadership Liquids Pipeline HWY 40

485 views • 21 slides

More recommend