From 1998658baf6d200f18c79de131cc7ab183856f93 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?V=C3=A2nia=20Gon=C3=A7alves?= <87486632+vgonc@users.noreply.github.com> Date: Thu, 19 Oct 2023 15:05:39 +0100 Subject: [PATCH] Vgonc patch 2 (#109) * Adding participation in RWC symposium. * Rename Georghegan2022.md to Geoghegan2022.md --------- Co-authored-by: armfazh --- projects/future-networks/geokm.md | 1 + publications/CeliRWC2021.md | 16 ++++++++++++++++ publications/Geoghegan2022.md | 16 ++++++++++++++++ publications/LaddRWC2023.md | 15 +++++++++++++++ publications/Policharla2023.md | 1 + publications/Sullivan2018.md | 14 ++++++++++++++ 6 files changed, 63 insertions(+) create mode 100644 publications/CeliRWC2021.md create mode 100644 publications/Geoghegan2022.md create mode 100644 publications/LaddRWC2023.md create mode 100644 publications/Sullivan2018.md diff --git a/projects/future-networks/geokm.md b/projects/future-networks/geokm.md index ca74e1a..d99fae3 100644 --- a/projects/future-networks/geokm.md +++ b/projects/future-networks/geokm.md @@ -4,6 +4,7 @@ related_profiles: - nick-sullivan - tanya-verma related_publications: + - Sullivan2018 - Stebila2015 #related_areas: # - cryptography diff --git a/publications/CeliRWC2021.md b/publications/CeliRWC2021.md new file mode 100644 index 0000000..748de83 --- /dev/null +++ b/publications/CeliRWC2021.md @@ -0,0 +1,16 @@ +--- +title: Post-quantum TLS without handshake signatures +year: 2021 +location: Real World Crypto Symposium 2021. Virtual. January 2021. +authors: + - SofĂ­a Celi + - armando-faz + - Peter Schwabe + - Douglas Stebila + - Thom Wiggers +url: https://iacr.org/submit/files/slides/2021/rwc/rwc2021/68/slides.pdf +related_interests: + - cryptography +--- + +We present KEMTLS, an alternative to the TLS 1.3 handshake that uses key-encapsulation mechanisms (KEMs) instead of signatures for server authentication. Among existing post-quantum candidates, signature schemes generally have larger public key/signature sizes compared to the public key/ciphertext sizes of KEMs: by using an IND-CCA-secure KEM for server authentication in post-quantum TLS, we obtain multiple benefits. A size-optimized post-quantum instantiation of KEMTLS requires less than half the bandwidth of a size-optimized post-quantum instantiation of TLS 1.3. In a speed-optimized instantiation, KEMTLS reduces the amount of server CPU cycles by almost 90% compared to TLS 1.3, while at the same time reducing communication size, reducing the time until the client can start sending encrypted application data, and eliminating code for signatures from the server's trusted code base. diff --git a/publications/Geoghegan2022.md b/publications/Geoghegan2022.md new file mode 100644 index 0000000..d1a059c --- /dev/null +++ b/publications/Geoghegan2022.md @@ -0,0 +1,16 @@ +--- +title: "Standardizing MPC for Privacy Preserving Measurement" +year: 2022 +location: Real World Crypto Symposium 2022. Amsterdam, Netherlands. April 2022. +authors: + - Tim Geoghegan + - christopher-patton + - Eric Rescorla + - christopher-wood +url: https://iacr.org/submit/files/slides/2022/rwc/rwc2022/78/slides.pdf +related_interests: + - privacy + - cryptography +--- + +Operating a large, complex, Internet-based application usually requires measuring the behavior of the application's users. Often the purpose of these measurements is not to build profiles about individual users, but to shed light on overall trends that might point to performance bottlenecks, user-experience issues, bugs, or attack vectors. Recent advances in cryptography, e.g., Prio (NSDI 2017), have made it possible to compute these aggregates without revealing individual measurements to the service provider. This talk will describe the IETF's initial effort to standardize some of these techniques. diff --git a/publications/LaddRWC2023.md b/publications/LaddRWC2023.md new file mode 100644 index 0000000..0b8ddfa --- /dev/null +++ b/publications/LaddRWC2023.md @@ -0,0 +1,15 @@ +--- +title: "Portunus: Re-imagining access control in distributed systems using attribute-based encryption" +year: 2023 +location: Real World Crypto Symposium 2023. Tokyo, Japan. March 2023. +authors: + - Watson Ladd + - Marloes Venema + - tanya-verma +url: https://iacr.org/submit/files/slides/2023/rwc/rwc2023/83/slides.pptx +related_interests: + - distributed_systems + - cryptography +--- + +This talk presents Portunus, a global system used by Cloudflare to restrict where in the world a customer's TLS private keys can be accessed based on some policy. It is an RBAC system built using ciphertext-policy attribute-based encryption, a variant of public-key cryptography introduced in 2005, that enables access control to be enforced with minimal dependence on a central authority. Using Portunus as an example, we discuss the benefits of employing attribute-based encryption (ABE) to construct access control systems for distributed settings. Portunus evolved from an earlier system, Geo Key Manager, previously presented at RWC 2018. Prompted by a question from the audience, we attacked the inflexible policies and vulnerability to collusion by replacing a home-grown simulation of an ABE-like scheme using Identity Based Encryption and Broadcast Encryption, with an established ABE scheme by TKN. This shortcoming was validated when customers demanded richer data restriction policies to reflect the increasing balkanization of the Internet in response to regulations such as GDPR. However, it is not enough to drop in a new scheme: real-world systems have to deal with attribute changes, key rotation, performance needs, and high loads. It also needs to address the needs of real users. This talk will discuss the translation of a ciphertext-policy ABE scheme from theory to practice and the hurdles along the way, as well as show how successful application of an imperfect cryptographic solution paved the way for adoption of a theoretically more satisfying and more capable solution. diff --git a/publications/Policharla2023.md b/publications/Policharla2023.md index 4d03bf4..537a8b4 100644 --- a/publications/Policharla2023.md +++ b/publications/Policharla2023.md @@ -1,5 +1,6 @@ --- title: "Post-Quantum Privacy Pass via Post-Quantum Anonymous Credentials" +location: Real World Crypto Symposium 2023. Tokyo, Japan. March 2023. year: 2023 authors: - Guru-Vamsi Policharla diff --git a/publications/Sullivan2018.md b/publications/Sullivan2018.md new file mode 100644 index 0000000..38574ad --- /dev/null +++ b/publications/Sullivan2018.md @@ -0,0 +1,14 @@ +--- +title: "Geo Key Manager" +location: Real World Crypto Symposium 2018. Zurich, Switzerland. January 2018. +year: 2018 +authors: + - nick-sullivan + - Brendan McMillion +url: https://rwc.iacr.org/2018/Slides/Sullivan.pdf +related_interests: + - cryptography + - protocols +--- + +Geo Key Manager is a feature that gives customers unprecedented control over where their private keys are stored when uploaded to Cloudflare, limiting the exposure of their private keys to certain locations.