Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals

LCMsec aims to provide confidentiality and integrity of not only the messages in transit, but also the channelname associated with them. We also provide a notion of authenticity: messages are guaranteed to have originated from a trusted entity within the LCMDomain. We provide a reduced form of security against an attacker, who has no permission to send on a specific channel.


This content originally appeared on HackerNoon and was authored by Marshalling

:::info Authors:

(1) Moritz Jasper, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (moritz.jasperl@barkhauseninstitut.org);

(2) Stefan Kopsell, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (stefan.koepsell@barkhauseninstitut.org).

:::

Abstract and Introduction

Related Work

Description of LCM

Attacker Model and Security Goals

LCMSec: The Proposed Protocol

Implementation and Evaluation

Conclusion

Appendix and References

IV. ATTACKER MODEL AND SECURITY GOALS

We consider active and modifying attackers in the system. Security is provided only against outsiders: we do not consider an attacker who has the permission to send on the multicast group in question (please refer to the discussion on permission management in Section V-B1). The attacker has considerable, but limited resources and cannot break common cryptographic primitives.

\ Since channelnames in LCM are usually domain-specific topics, they should remain confidential. LCMsec aims to provide confidentiality and integrity of not only the messages in transit, but also the channelname associated with them. We also provide a notion of authenticity: messages are guaranteed to have originated from a trusted entity within the LCMDomain, but cannot be attributed to a specific entity.

\ We provide a reduced form of security against an attacker, who has no permission to send on a specific channel, but can send on some other channel within the group. Against this type of attacker, the integrity and accountability guarantees remain unchanged, however, confidentiality is provided only for the contents of messages, not for the channelname (or topic) associated with messages. We elaborate on the reason for this trade-off in Section V-A.

\

:::info This paper is available on arxiv under CC BY 4.0 DEED license.

:::

\


This content originally appeared on HackerNoon and was authored by Marshalling


Print Share Comment Cite Upload Translate Updates
APA

Marshalling | Sciencx (2024-07-10T18:00:14+00:00) Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals. Retrieved from https://www.scien.cx/2024/07/10/secure-and-dynamic-publish-subscribe-lcmsec-attacker-model-and-security-goals/

MLA
" » Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals." Marshalling | Sciencx - Wednesday July 10, 2024, https://www.scien.cx/2024/07/10/secure-and-dynamic-publish-subscribe-lcmsec-attacker-model-and-security-goals/
HARVARD
Marshalling | Sciencx Wednesday July 10, 2024 » Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals., viewed ,<https://www.scien.cx/2024/07/10/secure-and-dynamic-publish-subscribe-lcmsec-attacker-model-and-security-goals/>
VANCOUVER
Marshalling | Sciencx - » Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2024/07/10/secure-and-dynamic-publish-subscribe-lcmsec-attacker-model-and-security-goals/
CHICAGO
" » Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals." Marshalling | Sciencx - Accessed . https://www.scien.cx/2024/07/10/secure-and-dynamic-publish-subscribe-lcmsec-attacker-model-and-security-goals/
IEEE
" » Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals." Marshalling | Sciencx [Online]. Available: https://www.scien.cx/2024/07/10/secure-and-dynamic-publish-subscribe-lcmsec-attacker-model-and-security-goals/. [Accessed: ]
rf:citation
» Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals | Marshalling | Sciencx | https://www.scien.cx/2024/07/10/secure-and-dynamic-publish-subscribe-lcmsec-attacker-model-and-security-goals/ |

Please log in to upload a file.




There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.