New threat models on authentication: Difference between revisions

no edit summary
m (Marc moved page New threat models to New Threat models on authentication without leaving a redirect)
No edit summary
Line 2: Line 2:




<!-- Intro: brief description of the protocol -->
<!--Tags: use-cases -->
<!--Tags: related pages or category -->


==New Threat models on authentication==
==Introduction==
Authentication is, with encryption, one of the most important tasks to secure network. Without authentication, any participant in a network could impersonate any other. No security could ever be possible in such a context. The impersonation attack, called man-in-the-middle, is very general, and can even be used to break quantum key distribution protocols.
Authentication is, with encryption, one of the most important tasks to secure network. Without authentication, any participant in a network could impersonate any other. No security could ever be possible in such a context. The impersonation attack, called man-in-the-middle, is very general, and can even be used to break quantum key distribution protocols.


Line 11: Line 10:
This solution is based on centralized certificates and lead to heavy processes to emit, update or revoke identity credentials. It can be scaled with intermediate authorities, but this inherent centralization limits its range of application.
This solution is based on centralized certificates and lead to heavy processes to emit, update or revoke identity credentials. It can be scaled with intermediate authorities, but this inherent centralization limits its range of application.


==Authentication in the age of IoT==
Recent evolutions in network topologies are pushing to reconsider the authentication problem. With the increase of Internet of things (IoT), more and more devices are being connected to networks. Beside the visible development of consumer’s devices, IoT is spreading in many industries such as transport, maritime, oil and gas, mining or agriculture. These devices may contain critical information, and their security needs to be carefully assessed.
Recent evolutions in network topologies are pushing to reconsider the authentication problem. With the increase of Internet of things (IoT), more and more devices are being connected to networks. Beside the visible development of consumer’s devices, IoT is spreading in many industries such as transport, maritime, oil and gas, mining or agriculture. These devices may contain critical information, and their security needs to be carefully assessed.


One solution to manage the identity of such devices is to hardcode a master key in them. This key can be used directly, or to derive session keys, but in any case, the security of the device reduces to securing the key stored in the device. While this may be considered a good solution due to the limited computational power of such devices, it does not face well the new threats arising in the world of IoT. Such devices are assumed to be light, and their security should consider situations where their identity credentials get stolen or copied. Handling security in a manner that takes into account this threat model and in such networks is considered a challenge by security experts.  
One solution to manage the identity of such devices is to hardcode a master key in them. This key can be used directly, or to derive session keys, but in any case, the security of the device reduces to securing the key stored in the device. While this may be considered a good solution due to the limited computational power of such devices, it does not face well the new threats arising in the world of IoT. Such devices are assumed to be light, and their security should consider situations where their identity credentials get stolen or copied. Handling security in a manner that takes into account this threat model and in such networks is considered a challenge by security experts.  


==Using quantum networks to address new threat models==
This situation could benefit from the power of quantum networks. The challenge is to create a system to manage identity credentials that cannot be cloned, forged and can be revoked instantaneously by a central authority.  Quantum money protocols seem to offer the desired properties. The various proposals for quantum money protocols are all based on the idea of producing unforgeable tokens. The security of these construction is derived from the unclonability of quantum states, a physical property that ensures the security of many quantum tasks. Moreover, quantum tokens are, like standard money, issued by a central authority which can revoke them easily. One difference, however, is that when quantum tokens are consumed, they are not available anymore while authentication may be performed several times.
This situation could benefit from the power of quantum networks. The challenge is to create a system to manage identity credentials that cannot be cloned, forged and can be revoked instantaneously by a central authority.  Quantum money protocols seem to offer the desired properties. The various proposals for quantum money protocols are all based on the idea of producing unforgeable tokens. The security of these construction is derived from the unclonability of quantum states, a physical property that ensures the security of many quantum tasks. Moreover, quantum tokens are, like standard money, issued by a central authority which can revoke them easily. One difference, however, is that when quantum tokens are consumed, they are not available anymore while authentication may be performed several times.