Abstract
This article explores the possibilities to replace RSA public key identities and X.509 certificates with any unique identities and identity-based encryption (IBE) in the Base Exchange of the Host Identity Protocol (HIP). We have analysed the technical and trust-related details when applying IBE in HIP. These details include, for example, how to insert the IBE parameters into HIP packets and how to guarantee their correctness. We have extended OpenHIP v0.7 software with capabilities for X.509 certified RSA-based Host Identities, for trusted IBE-based Host Identities, and for IBE signatures in HIP messages. We have also measured HIP message times in the Base Exchange. These measurements show that the basic IBE solution is rather slow compared to RSA solution with certificates. However, if applications are such that it is necessary to check revocation lists often, the IBE solution is feasible.
| Original language | English |
|---|---|
| Title of host publication | WOSIS: PROCEEDINGS OF THE 10TH INTERNATIONAL WORKSHOP ON SECURITY IN INFORMATION SYSTEMS |
| Editors | DG Rosado, C Blanco, D Mellado, J Jurjens, LES Crespo |
| Publisher | SciTePress |
| Pages | 44-52 |
| Number of pages | 9 |
| ISBN (Print) | 978-989-8565-64-8 |
| DOIs | |
| Publication status | Published - 2013 |
| MoE publication type | A4 Article in a conference publication |
| Event | International Workshop on Security in Information Systems - Angers, France Duration: 5 Jul 2013 → 5 Jul 2013 Conference number: 10 |
Workshop
| Workshop | International Workshop on Security in Information Systems |
|---|---|
| Abbreviated title | WOSIS |
| Country | France |
| City | Angers |
| Period | 05/07/2013 → 05/07/2013 |