IBE Extension for HIP

K. C. Amir; Harri Forsgren; Kaj Grahn; Timo Karvi; Goran Pulkkis

doi:10.5220/0004601700440052

IBE Extension for HIP

K. C. Amir^*, Harri Forsgren, Kaj Grahn, Timo Karvi, Goran Pulkkis

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

Abstract

This article explores the possibilities to replace RSA public key identities and X.509 certificates with any unique identities and identity-based encryption (IBE) in the Base Exchange of the Host Identity Protocol (HIP). We have analysed the technical and trust-related details when applying IBE in HIP. These details include, for example, how to insert the IBE parameters into HIP packets and how to guarantee their correctness. We have extended OpenHIP v0.7 software with capabilities for X.509 certified RSA-based Host Identities, for trusted IBE-based Host Identities, and for IBE signatures in HIP messages. We have also measured HIP message times in the Base Exchange. These measurements show that the basic IBE solution is rather slow compared to RSA solution with certificates. However, if applications are such that it is necessary to check revocation lists often, the IBE solution is feasible.

Original language	English
Title of host publication	WOSIS: PROCEEDINGS OF THE 10TH INTERNATIONAL WORKSHOP ON SECURITY IN INFORMATION SYSTEMS
Editors	DG Rosado, C Blanco, D Mellado, J Jurjens, LES Crespo
Publisher	SciTePress
Pages	44-52
Number of pages	9
ISBN (Print)	978-989-8565-64-8
DOIs	https://doi.org/10.5220/0004601700440052
Publication status	Published - 2013
MoE publication type	A4 Article in a conference publication
Event	International Workshop on Security in Information Systems - Angers, France Duration: 5 Jul 2013 → 5 Jul 2013 Conference number: 10

Workshop

Workshop	International Workshop on Security in Information Systems
Abbreviated title	WOSIS
Country/Territory	France
City	Angers
Period	05/07/2013 → 05/07/2013

Access to Document

10.5220/0004601700440052

SFX availability

Full text

Cite this

@inproceedings{80f5713df44e49ccb6360ab2ee465444,

title = "IBE Extension for HIP",

abstract = "This article explores the possibilities to replace RSA public key identities and X.509 certificates with any unique identities and identity-based encryption (IBE) in the Base Exchange of the Host Identity Protocol (HIP). We have analysed the technical and trust-related details when applying IBE in HIP. These details include, for example, how to insert the IBE parameters into HIP packets and how to guarantee their correctness. We have extended OpenHIP v0.7 software with capabilities for X.509 certified RSA-based Host Identities, for trusted IBE-based Host Identities, and for IBE signatures in HIP messages. We have also measured HIP message times in the Base Exchange. These measurements show that the basic IBE solution is rather slow compared to RSA solution with certificates. However, if applications are such that it is necessary to check revocation lists often, the IBE solution is feasible.",

author = "Amir, {K. C.} and Harri Forsgren and Kaj Grahn and Timo Karvi and Goran Pulkkis",

year = "2013",

doi = "10.5220/0004601700440052",

language = "English",

isbn = "978-989-8565-64-8",

pages = "44--52",

editor = "DG Rosado and C Blanco and D Mellado and J Jurjens and LES Crespo",

booktitle = "WOSIS: PROCEEDINGS OF THE 10TH INTERNATIONAL WORKSHOP ON SECURITY IN INFORMATION SYSTEMS",

publisher = "SciTePress",

note = "International Workshop on Security in Information Systems, WOSIS ; Conference date: 05-07-2013 Through 05-07-2013",

}

Amir, KC, Forsgren, H, Grahn, K, Karvi, T & Pulkkis, G 2013, IBE Extension for HIP. in DG Rosado, C Blanco, D Mellado, J Jurjens & LES Crespo (eds), WOSIS: PROCEEDINGS OF THE 10TH INTERNATIONAL WORKSHOP ON SECURITY IN INFORMATION SYSTEMS. SciTePress, pp. 44-52, International Workshop on Security in Information Systems, Angers, France, 05/07/2013. https://doi.org/10.5220/0004601700440052

IBE Extension for HIP. / Amir, K. C.; Forsgren, Harri; Grahn, Kaj et al.

WOSIS: PROCEEDINGS OF THE 10TH INTERNATIONAL WORKSHOP ON SECURITY IN INFORMATION SYSTEMS. ed. / DG Rosado; C Blanco; D Mellado; J Jurjens; LES Crespo. SciTePress, 2013. p. 44-52.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

TY - GEN

T1 - IBE Extension for HIP

AU - Amir, K. C.

AU - Forsgren, Harri

AU - Grahn, Kaj

AU - Karvi, Timo

AU - Pulkkis, Goran

N1 - Conference code: 10

PY - 2013

Y1 - 2013

N2 - This article explores the possibilities to replace RSA public key identities and X.509 certificates with any unique identities and identity-based encryption (IBE) in the Base Exchange of the Host Identity Protocol (HIP). We have analysed the technical and trust-related details when applying IBE in HIP. These details include, for example, how to insert the IBE parameters into HIP packets and how to guarantee their correctness. We have extended OpenHIP v0.7 software with capabilities for X.509 certified RSA-based Host Identities, for trusted IBE-based Host Identities, and for IBE signatures in HIP messages. We have also measured HIP message times in the Base Exchange. These measurements show that the basic IBE solution is rather slow compared to RSA solution with certificates. However, if applications are such that it is necessary to check revocation lists often, the IBE solution is feasible.

AB - This article explores the possibilities to replace RSA public key identities and X.509 certificates with any unique identities and identity-based encryption (IBE) in the Base Exchange of the Host Identity Protocol (HIP). We have analysed the technical and trust-related details when applying IBE in HIP. These details include, for example, how to insert the IBE parameters into HIP packets and how to guarantee their correctness. We have extended OpenHIP v0.7 software with capabilities for X.509 certified RSA-based Host Identities, for trusted IBE-based Host Identities, and for IBE signatures in HIP messages. We have also measured HIP message times in the Base Exchange. These measurements show that the basic IBE solution is rather slow compared to RSA solution with certificates. However, if applications are such that it is necessary to check revocation lists often, the IBE solution is feasible.

U2 - 10.5220/0004601700440052

DO - 10.5220/0004601700440052

M3 - Conference contribution

SN - 978-989-8565-64-8

SP - 44

EP - 52

BT - WOSIS: PROCEEDINGS OF THE 10TH INTERNATIONAL WORKSHOP ON SECURITY IN INFORMATION SYSTEMS

A2 - Rosado, DG

A2 - Blanco, C

A2 - Mellado, D

A2 - Jurjens, J

A2 - Crespo, LES

PB - SciTePress

T2 - International Workshop on Security in Information Systems

Y2 - 5 July 2013 through 5 July 2013

ER -

IBE Extension for HIP

Abstract

Workshop

Access to Document

SFX availability

Fingerprint

Cite this