revcast fast private certificate revocation over fm radio
play

RevCast : Fast, Private Certificate Revocation over FM radio Aaron - PowerPoint PPT Presentation

Jul 19, 2023 •24 likes •834 views

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University Dave Levin Neil Spring University of Maryland University of Maryland Authentication in the PKI Authentication in the PKI I want an

  1. RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University Dave Levin Neil Spring 
 University of Maryland University of Maryland

  2. Authentication in the PKI

  3. Authentication in the PKI I want an encrypted connection.

  4. Authentication in the PKI I want an encrypted connection. Certificate #12 Signed by CA:

  5. Authentication in the PKI I want an encrypted connection. The CA ( ) Certificate #12 attests that is controlled by Signed by CA:

  6. Authentication in the PKI Is bound to ? The CA ( ) Certificate #12 attests that is controlled by Signed by CA:

  7. Authentication in the PKI Is bound to ? The CA ( ) Certificate #12 attests that Trusted 
 Root CAs is controlled by Signed by CA:

  8. Authentication in the PKI Is bound to ? The CA ( ) Certificate #12 attests that Trusted 
 Root CAs ✔ is controlled by Signed by CA:

  9. Revocation in the PKI Certificate #12 Trusted 
 Root CAs Signed by CA: C

  10. Revocation in the PKI Trusted 
 Certificate #12 Root CAs Signed by CA: C

  11. Revocation in the PKI Trusted 
 Certificate #12 Root CAs Signed by CA: C

  12. Revocation in the PKI Trusted 
 Certificate #12 Root CAs Signed by CA: C

  13. Revocation in the PKI Trusted 
 Certificate #12 Root CAs Signed by CA: C

  14. Revocation in the PKI Trusted 
 Certificate #12 Root CAs Signed by CA: C

  15. Revocation in the PKI Trusted 
 Certificate #12 Root CAs Signed by CA: C

  16. Revocation in the PKI Revocation Trusted 
 Certificate #12 Certificate #12 Root CAs Signed by CA: Signed by CA: C

  17. Revocation in the PKI Revocation Trusted 
 The CA ( ) breaks Certificate #12 Certificate #12 Root CAs the binding of with Signed by CA: Signed by CA: C

  18. Revocation in the PKI Revocation Trusted 
 The CA ( ) breaks Certificate #12 Certificate #12 Root CAs the binding of with ✔ Signed by CA: Signed by CA: C

  19. Revocation in the PKI Revocation Trusted 
 ❌ The CA ( ) breaks Certificate #12 Certificate #12 Root CAs the binding of with ✔ Signed by CA: Signed by CA: C

  20. Revocation in the PKI Revocation Trusted 
 ❌ The CA ( ) breaks Certificate #12 Certificate #12 Root CAs the binding of with ✔ Signed by CA: Signed by CA: C

  21. Revocation in the PKI One revocation every 1.1 seconds for all CAs on the Internet Revocation Trusted 
 ❌ The CA ( ) breaks Certificate #12 Certificate #12 Root CAs the binding of with ✔ Signed by CA: Signed by CA: C

  22. Every device needs revocations Revocation Certificate #12 Signed by CA: C

  23. Every device needs revocations Revocation Certificate #12 Signed by CA: C

  24. Properties of revocation systems

  25. Properties of revocation systems 10s Timeliness Clients’ revocation 
 state should be 
 up-to-date, ideally 
 within 10s of seconds

  26. Properties of revocation systems $ $ 10s $ $ $ $ Timeliness Low-cost dissemination The distribution 
 Clients’ revocation 
 mechanism must scale 
 state should be 
 with CAs, certificates, up-to-date, ideally 
 and clients within 10s of seconds

  27. Properties of revocation systems $ $ 10s $ $ $ $ Timeliness Privacy Low-cost dissemination The distribution 
 Clients’ revocation 
 Users’ browsing 
 mechanism must scale 
 state should be 
 habits should not 
 with CAs, certificates, up-to-date, ideally 
 have to be revealed and clients within 10s of seconds

  28. Properties of revocation systems It is generally regarded that no system can possibly achieve all three. $ $ 10s $ $ $ $ Timeliness Privacy Low-cost dissemination The distribution 
 Clients’ revocation 
 Users’ browsing 
 mechanism must scale 
 state should be 
 habits should not 
 with CAs, certificates, up-to-date, ideally 
 have to be revealed and clients within 10s of seconds

  29. Properties of revocation systems It is generally regarded that no system can possibly achieve all three. $ $ 10s $ $ $ $ Timeliness Privacy Low-cost dissemination ✔ ✔ ✔ The distribution 
 Clients’ revocation 
 Users’ browsing 
 mechanism must scale 
 state should be 
 habits should not 
 with CAs, certificates, up-to-date, ideally 
 have to be revealed RevCast and clients within 10s of seconds

  30. Existing revocation systems Certificate CRL CA Revocation Lists 
 Client 124, 24 21, 2521 (CRL) Online Certificate Revocation CA Certificate #12 Status Protocol Client Signed by CA: (OCSP) Certificate #12 Certificate #12 CA Org Short lived certs Client Signed by CA: Signed by CA: Still ok Still ok CA OCSP Stapling Org Client Certificate #12 Certificate #12 Signed by CA: Signed by CA:

  31. CRL CA Client 124, 24 21, 2521 Revocation CA Certificate #12 Client Signed by CA: Certificate #12 Certificate #12 CA Org Client Signed by CA: Signed by CA: Still ok Still ok CA Org Client Certificate #12 Certificate #12 Signed by CA: Signed by CA:

  32. Existing revocation systems ❌ ❌ ✔ CRL CA CRLs Client 124, 24 21, 2521 ❌ ❌ ✔ Revocation CA OCSP Certificate #12 Client Signed by CA: ❌ ✔ * ✔ Certificate #12 Certificate #12 CA Short lived Client Org Signed Signed ❌ ✔ ✔ Still ok Still ok Stapling CA Org Certificate #12 Certificate #12 Client Signed Signed

  33. Existing revocation systems ❌ ❌ ✔ CRL CA CRLs Client 124, 24 21, 2521 ❌ ❌ ✔ Revocation CA OCSP Certificate #12 Client Signed by CA: ❌ ✔ * ✔ Certificate #12 Certificate #12 CA Short lived Client Org Signed Signed ❌ ✔ ✔ Still ok Still ok Stapling CA Org Certificate #12 Certificate #12 Client Signed Signed All of these protocols rely on unicast transmission of revocations

  34. Unicast is not well suited for distributing revocations Doesn’t scale to distributing to every device on the Internet Failures are benign indication of connectivity issues (soft-fail) Multicast revocation is also flawed (Sybils, MITM, DoS)

  35. RevCast We propose broadcasting revocations over FM RDS Revocation Certificate #12 Signed by CA: Tower: http://cityspottercards.com/

  36. RevCast We propose broadcasting revocations over FM RDS Revocation Certificate #12 Signed by CA: Tower: http://cityspottercards.com/

  37. FM RDS coverage is ideal for disseminating revocations 200,000 150,000 100,000 50,000 0 • Transmitters are where people are • Up to 10 million people per tower

  38. Properties of revocation systems $ $ $ $ $ $ Low-cost dissemination Privacy One transmission Radio broadcasts covers up to 10 million 
 are inherently & Under-monotized receiver anonymous

  39. Properties of revocation systems $ $ $ $ $ $ Low-cost dissemination Privacy One transmission Radio broadcasts covers up to 10 million 
 are inherently & Under-monotized receiver anonymous

  40. Properties of revocation systems Solved . Let’s go party like it’s 1989! $ $ $ $ $ $ Low-cost dissemination Privacy One transmission Radio broadcasts covers up to 10 million 
 are inherently & Under-monotized receiver anonymous

  41. 10s Timeliness? One tiny problem. RDS has an effective bitrate of 421.8 bps .

  42. Rest of the talk RevCast protocol - fitting revocations in 421.8 bps 
 Evaluate RevCast with 2 months of revocations

  43. Revoking over FM RDS Radio CAs Receivers station

  44. Revoking over FM RDS Radio CAs Receivers station 1 R 2 R 3 R

  45. Revoking over FM RDS Radio CAs Receivers station 1 R 3 2 2 1 R R R R 3 R

  46. Losses can go undetected Radio CAs Receivers station 1 R 2 R 3 2 1 R R R 3 R

  47. Losses can go undetected Radio CAs Receivers station 1 R 2 R 3 2 1 R R R ❌ 3 R

  48. Losses can go undetected Radio CAs Receivers station 1 R ❌ 2 R 3 2 1 R R R ❌ 3 R

  49. Losses can go undetected Radio CAs Receivers station 1 R ❌ 2 R 3 2 1 R R R ❌ 3 R GoDaddy didn’t revoke

  50. Making losses detectible with “nothing now” Radio CAs Receivers station 1 R 3 2 2 1 R Nn R R 3 Nn

  51. Making losses detectible with “nothing now” Radio CAs Receivers station 1 R 3 2 2 1 R Nn R R 3 Nn GoDaddy says they didn’t revoke

  52. Making losses detectible with “nothing now” Radio CAs Receivers station 1 R 3 2 2 1 R Nn R R ❌ 3 Nn GoDaddy says they didn’t revoke

  53. Making losses detectible with “nothing now” Radio CAs Receivers station 1 R ❌ 3 2 2 1 R Nn R R ❌ 3 Nn GoDaddy says they didn’t revoke

  54. Making losses detectible with “nothing now” Radio CAs Receivers station 1 R ❌ 3 2 2 1 R Nn R R ❌ 3 Nn Danger!!! I am not up- to-date with GoDaddy

  55. Sleeping receivers can lose synchronization Radio CAs Receivers station 1 R 3 2 2 1 R Nn R R Z Z Z 3 Nn Z

  56. Sleeping receivers can lose synchronization Radio CAs Receivers station 1 R 3 2 2 1 R Nn R R 3 Nn What did I miss?

Recommend

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect CRL, dynamic CRL-DP Delta-CRL, windowed CRL, etc. Certificate Revocation Tree (CRT) and other Authenticated Data Structures OCSP

745 views • 35 slides
An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* University of Maryland

1.32k views • 67 slides
An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* *Northeastern University

1.33k views • 65 slides
Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in VANETs Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS) www.ee.kth.se/nss Royal Institute of Technology (KTH)

700 views • 35 slides
Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc Networks Kastuv M. Tuladhar Department of Computer Science University of South Dakota kastuv.tuladhar@coyotes.usd.edu November 20, 2018 Thesis

991 views • 68 slides
Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects clients from compromised certificates Without revocation, these attacks would go undetected 2 Certificate Revocation Lists (CRLs) Lists of

544 views • 27 slides
Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

KTH ROYAL INSTITUTE OF TECHNOLOGY Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular Communication Systems Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS)

981 views • 52 slides
A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status Protocol Satoshi Koga, Kouichi Sakurai Satoshi Koga Kyushu University, Japan Background Background Certificate Revocation Problem Certificate

349 views • 10 slides
One Statement Certificate Policies Milan Sova The problem Was this certificate issued to

One Statement Certificate Policies Milan Sova The problem Was this certificate issued to

One Statement Certificate Policies Milan Sova The problem Was this certificate issued to a host or to a person? Is the private key stored on a hardware token or in a software? Is the private key encrypted?

368 views • 7 slides
Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com www.digicert.com +1 (801) 877-2100 Focus What is a Certificate Authority? Current situation with gTLD's and internal names

246 views • 13 slides
Radio signals and Fast Radio Bursts from axion dark matter and axion star through SKA Fa

Radio signals and Fast Radio Bursts from axion dark matter and axion star through SKA Fa

Radio signals and Fast Radio Bursts from axion dark matter and axion star through SKA Fa Peng Huang Department of Physics and McDonnell Center for the Space Sciences, Washington University in St. Louis based on my work arXiv:2004.06486

728 views • 39 slides
Fast Radio Bursts K. Masui, H-S. Lin, J. Sievers, Y. Liao, C. Kuo, L. Connor U. Pen, T. Chang, X.

Fast Radio Bursts K. Masui, H-S. Lin, J. Sievers, Y. Liao, C. Kuo, L. Connor U. Pen, T. Chang, X.

Introduction FRBs Summary image credit: NRAO/AUI/NSF Fast Radio Bursts K. Masui, H-S. Lin, J. Sievers, Y. Liao, C. Kuo, L. Connor U. Pen, T. Chang, X. Chen, J. Peterson and many more December 29, 2015 U. Pen Fast Radio Bursts Introduction

516 views • 22 slides
Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway, University of London Keith Vella Licari Weekend Conference 2013 keith@vellalicari.com Agenda About me Project approach Certificate

446 views • 27 slides
CAN THE CRAB PULSAR HELP US UNDERSTAND FAST RADIO BURSTS? Guillaume Shippee UC Berkeley

CAN THE CRAB PULSAR HELP US UNDERSTAND FAST RADIO BURSTS? Guillaume Shippee UC Berkeley

CAN THE CRAB PULSAR HELP US UNDERSTAND FAST RADIO BURSTS? Guillaume Shippee UC Berkeley gshippee@berkeley.edu CASPER CONFERENCE 2017 WHAT ARE PULSARS? WHAT ARE FAST RADIO BURSTS? Discovered in past decade Last several

334 views • 17 slides
Collapsing Bose stars as source of repeating fast radio bursts D. Levkov, A. Panin, I. Tkachev

Collapsing Bose stars as source of repeating fast radio bursts D. Levkov, A. Panin, I. Tkachev

Collapsing Bose stars as source of repeating fast radio bursts D. Levkov, A. Panin, I. Tkachev INR RAS, Moscow Fast radio bursts The first FRB 010724 was discovered by Duncan Lorimer and his student David Narkevic in 2007 [D.R. Lorimer et

434 views • 26 slides
The Fast Radio Burst population as observed by ASKAP Dr Ryan Shannon, Swinburne & Ozgrav On

The Fast Radio Burst population as observed by ASKAP Dr Ryan Shannon, Swinburne & Ozgrav On

The Fast Radio Burst population as observed by ASKAP Dr Ryan Shannon, Swinburne & Ozgrav On behalf of the ASKAP-CRAFT Survey Science Project Overview Fast radio bursts ASKAP + CRAFT The flys eye survey Special snowflakes Connection

588 views • 26 slides
Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge REVOCATIONS AND REVOCATION APPEALS The Revocation Decision Pursuant to T.C.A. 49-13-122(b), a charter school authorizer may revoke a

386 views • 35 slides
Agenda Item #11 19.31.2 NMAC Revocation Rule Summary of Proposed Changes to 19.31.2 The

Agenda Item #11 19.31.2 NMAC Revocation Rule Summary of Proposed Changes to 19.31.2 The

Agenda Item #11 19.31.2 NMAC Revocation Rule Summary of Proposed Changes to 19.31.2 The proposed amendments would: Increase points for hunting on private property without written permission from 10 pts to 17 pts Increase points for

225 views • 7 slides
Agenda Item #5a 19.31.2 NMAC Revocation Rule Summary of Proposed Changes to 19.31.2 The

Agenda Item #5a 19.31.2 NMAC Revocation Rule Summary of Proposed Changes to 19.31.2 The

Agenda Item #5a 19.31.2 NMAC Revocation Rule Summary of Proposed Changes to 19.31.2 The proposed amendments would: Increase points for hunting on private property without written permission from 10 pts to 17 pts Increase points for

315 views • 7 slides
RADIO RADIO Ca Cate tegor gory y Br Breakdo eakdown wn Radio Radio Cr Crea eativity

RADIO RADIO Ca Cate tegor gory y Br Breakdo eakdown wn Radio Radio Cr Crea eativity

This i his is s your br our brain ain on on RADIO RADIO Ca Cate tegor gory y Br Breakdo eakdown wn Radio Radio Cr Crea eativity tivity Radio makes the difference Canadian Radio Study partnering with the largest companies

677 views • 51 slides
Internet-Wide Network Studies Previous research has shown promise of Internet-wide surveys Mining

Internet-Wide Network Studies Previous research has shown promise of Internet-wide surveys Mining

Fast Internet-Wide Scanning, ZMap Weak Keys and the HTTPS Certificate Ecosystem Zakir Durumeric Michael Bailey University of Michigan ZMap: Fast Internet-Wide Scanning, Weak Keys, and the HTTPS Certificate Ecosystem Zakir Durumeric

491 views • 46 slides
Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR Fintech Index is a long-only, USD-based, actively managed total return index. The pace of innovation in financial technology (Fintech) has been

616 views • 26 slides
Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Introduction & background Path-key-enabled attacks Secure path-key revocation Conclusions Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler Moore and Jolyon Clulow University of Cambridge

505 views • 22 slides
Search for Neutrino Emission from Fast Radio Bursts with IceCube Donglian Xu Samuel Fahey,

Search for Neutrino Emission from Fast Radio Bursts with IceCube Donglian Xu Samuel Fahey,

Search for Neutrino Emission from Fast Radio Bursts with IceCube Donglian Xu Samuel Fahey, Justin Vandenbroucke and Ali Kheirandish for the IceCube Collaboration International Cosmic Ray Conference (ICRC) 2017 July 14 th , 2017 | Busan, South

239 views • 19 slides

More recommend