|
|
More Info
The Secure Document
Systems area at the Xerox Palo Alto Research Center (PARC) is contributing
to the advancement of digital security in several key ways. These include:
- Fostering and participating in the growing movement towards abundant and pervasive use of cryptography
- Making key contributions in the areas of cryptosystem performance and usability
- Conceptualizing services, protocols and businesses that will be made possible by abundant cryptography
The Quicksilver project
is an umbrella that encompasses a number of research areas. Some of these
areas are themes that we pick up from time to time while others are day-to-day
projects. The work may cross more than one research area or it can be
independent. We also do research in non-cryptographic infrastructures
to enhance network security.
Fostering and participating in the growing movement towards abundant and pervasive use of cryptography
Life in a Future
of Cryptographic Abundance
In June, 2000, in order to launch the meme of abundant cryptography, we
organized an public symposium called Life in a Future of Cryptographic
Abundance. The thesis of the symposium is explained in this PDF
of Tom Berson's slides. The announcement and links to the slides of most
other symposium speakers are here.
Second PARC Workshop
on Life in a Future of Cryptographic Abundance
In October, 2001 we organized an research workshop called Second PARC
Workshop on Life in a Future of Cryptographic Abundance. The announcement
is here.
Cryptography Everywhere
A general description of the Quicksilver project is part of Tom Berson’s
IACR Distinguished Lecture, "Cryptography
Everywhere," which he delivered at Asiacrypt 2000 in Kyoto, Japan.
Abundant Cryptography
The January-February 2002 issue of Technology Review includes Tom Berson's
essay, "Abundant Cryptography," which argues that abundant cryptography
is necessary even after the tragic events of September 11.
Making key contributions in the areas of cryptosystem performance and usability
Infrastructure for
Secure Networks
With cryptography
becoming cheaper and cheaper, what kind of infrastructure can we provide
to enable secure networks? Work in this area includes offering fast cryptography
as a network service and building systems for fast and secure group communication.
ParKI is our project to specify and develop public key infrastructures
at PARC.
In particular, we
have built a high-performance cryptography server able to deliver 1024-bit
RSA operations at a cost of less than $0.000001 cents each over the Internet.
Such a device has many possible applications including terminating SSL
connections, micropayments, and any other use of the RSA algorithm.
In the near future,
there may be many fast cryptoservers on the network. There are several
scenarios under which it is natural for a group of cryptoservers to compete.
We identify a number of mechanisms that will help make competition among
cryptoservers more effective: variable pricing, recommendation systems,
and auditing. There are special advantages to implementing these mechanisms
for cryptoservers as opposed to any other (generic) commoditized service.
An Algebraic
Approach to IP Traceback. Drew Dean, Matt Franklin, Adam Stubblefield.
In Proceedings of 2001 Network and Distributed Systems Security Symposium
(San Diego, CA). February 2001. PDF
PS
Cryptography
as a Network Service. Tom Berson, Drew Dean, Matt Franklin, Diana
Smetters, Michael Spreitzer. In Proceedings of 2001 Network and Distributed
Systems Security Symposium (San Diego, CA). February 2001. PDF
PS
Intrusion Detection
via Static Analysis. David Wagner, Drew Dean. In Proceedings of
2001 IEEE Symposium on Security and Privacy (Oakland, CA). May 2001.
PDF
PS
Distributed Access
Control
In this area, we
have investigated
mechanisms for access control in distributed systems, performed formal analysis
of different approaches, and implemented them securely and efficiently.
A Security
Infrastructure for Distributed Java Applications. Dirk Balfanz,
Drew Dean, Mike Spreitzer. In Proceedings of 2000 IEEE Symposium on
Security and Privacy (Oakland, CA). May 2000. PDF
PS
Conceptualizing services, protocols and businesses that will be made possible by abundant cryptography
Wireless Security
We envision a future
in which wireless home-area or even personal-area networks will be abundant.
(Imagine your cell phone talking wirelessly to your PDA and your ear piece.)
We are investigating how these networks can be secure while, at the same
time, permitting ease-of-use and intuitive security management.
Security Analysis
Analyzing the security
of existing systems and pointing out vulnerabilities allows us to both
educate the public about security threats and to investigate good and
bad security practices.
Cryptographic Protocols
When cryptography
becomes ubiquitous, opportunities arise for new kinds of interactions
in the virtual world. We study new cryptographic primitives and protocols
that provide solutions for problems we encounter in our other areas of
research, and contribute to the field of cryptographic research.
One of our current
areas of focus is protocols that enable secure group communication. For
more on this project see: http://www.parc.xerox.com/csl/projects/dc/
Our protocol design efforts outside of this project are well-represented
by the following publication list.
Lower Bounds
for Multicast Message Authentication. Dan Boneh, Glen Durfee,
Matt Franklin. In Proceedings of Advances in Cryptology - EUROCRYPT'2001
(Innsbruck, Austria). May 2001. PDF
PS
Commital Deniable
Proofs and Electronic Campaign Finance. Matt Franklin, Tomas Sander.
In Proceedings of Advances in Cryptology - ASIACRYPT'2000 (Kyoto,
Japan). December 2000. PDF
PS
Distribution
Chain Security. Glen Durfee, Matt Franklin. In Proceedings of
the 7th ACM Conference on Computer and Communications Security (Athens,
Greece). November 2000. PDF
PS
Enhancing Privacy
and Trust in Electronic Communities. Bernado Huberman, Matt Franklin,
Tad Hogg. In Proceedings of First ACM Conference on Electronic Commerce
(Denver, CO). November 1999. PDF
PS
Anonymous Authentication
With Subset Queries. Dan Boneh, Matt Franklin. In Proceedings
of 5th ACM Conference on Computer and Communications Security (Singapore).
November 1999. PDF
PS
An Efficient
Public Key Traitor Tracing Scheme. Dan Boneh, Matt Franklin. In
Proceedings of Advances in Cryptology - CRYPTO'99 (Santa Barbara,
CA). August 1999. PDF
PS
Per-Tree Pricing for
Forest-Hiding Cryptographic Services
There are a number
of security protocols for which the degree of privacy scales nearly linearly
with the computational burden. We propose a new business model for secure
services where a protocol participant pays for computations in a privacy-scaling
manner. We can think of this as hiding the participant's true intentions
or true identity among a forest of alternatives, and charging the participant
"per tree."
State-Based Encryption
for Modal Protection of Data
There are many applications
where one desires data to only be available in a useable form after some
sequence of actions has occurred. In a workflow application, we might
only give the purchasing agent access to the purchase requisition after
the appropriate digital signatures have been applied. Modern computer
simulations (e.g., games) come with a simulated, but rich environment.
Particularly for multi-player games, the producer of the environment might
wish to ensure that a participant (player) has only seen the subset of
the environment that corresponds to states they have legitimately entered
(i.e., parts of the game that they have played). Military maps could benefit
from a similar scheme. Encryption allows the data to be distributed (e.g.,
via DVD-ROM) to users, to allow for low latency access, while maintaining
the secrecy of the data.
Travel Stickers, or
Methods and Uses for Associating Route-Tracing Information with Packets
in Networks
It is impossible at
present to determine where a network packet originated or what path it
took through a network. Route-tracing information associated with packets
would facilitate many improvements in data communication including billing
for network service, routing based on policy, verification of quality-of-service
guarantees, and prevention and investigation of security problems. We
envision several methods to associate routing information with packets.
One of our ideas, the pile-on authenticator, has the advantages of being
a fixed size no matter how many hops the packet takes and of requiring
no storage at network routers. This approach is cryptographically heavy
but becomes practical given the steep drop in the cost of public-key cryptographic
operations expected over the next several years.
back
to the Quicksilver Manifesto
|
|
