IBE Extension for HIP

K. C. Amir*, Harri Forsgren, Kaj Grahn, Timo Karvi, Goran Pulkkis

*Corresponding author for this work

    Research output: Chapter in Book/Report/Conference proceedingConference contributionScientificpeer-review

    Abstract

    This article explores the possibilities to replace RSA public key identities and X.509 certificates with any unique identities and identity-based encryption (IBE) in the Base Exchange of the Host Identity Protocol (HIP). We have analysed the technical and trust-related details when applying IBE in HIP. These details include, for example, how to insert the IBE parameters into HIP packets and how to guarantee their correctness. We have extended OpenHIP v0.7 software with capabilities for X.509 certified RSA-based Host Identities, for trusted IBE-based Host Identities, and for IBE signatures in HIP messages. We have also measured HIP message times in the Base Exchange. These measurements show that the basic IBE solution is rather slow compared to RSA solution with certificates. However, if applications are such that it is necessary to check revocation lists often, the IBE solution is feasible.

    Original languageEnglish
    Title of host publicationWOSIS: PROCEEDINGS OF THE 10TH INTERNATIONAL WORKSHOP ON SECURITY IN INFORMATION SYSTEMS
    EditorsDG Rosado, C Blanco, D Mellado, J Jurjens, LES Crespo
    PublisherSciTePress
    Pages44-52
    Number of pages9
    ISBN (Print)978-989-8565-64-8
    DOIs
    Publication statusPublished - 2013
    MoE publication typeA4 Article in a conference publication
    EventInternational Workshop on Security in Information Systems - Angers, France
    Duration: 5 Jul 20135 Jul 2013
    Conference number: 10

    Workshop

    WorkshopInternational Workshop on Security in Information Systems
    Abbreviated titleWOSIS
    CountryFrance
    CityAngers
    Period05/07/201305/07/2013

    Cite this