Ecole d'ingénieur et centre de recherche en Sciences du numérique

A P2P based usage control enforcement scheme resilient to re-injection attacks

Leontiadis, Iraklis; Molva, Refik; Önen, Melek

WOWMOM 2014, IEEE International Symposium on a World of Wireless, Mobile and Multimedia Networks, 16-19 June 2014, Sydney, Australia

Existing privacy controls based on access control techniques do not prevent massive dissemination of private data by unauthorized users. We suggest a usage control enforcement scheme that allows users to gain control over their data during its entire lifetime. The scheme is based on a peer-to-peer architecture whereby a different set of peers is randomly selected for data assignment. Usage control is achieved based on the assumption that at least t out of any set of n peers will not behave maliciously. Such a system would still suffer from re-injection attacks whereby attackers can gain ownership of data and the usage policy thereof by simply re-storing data after slight modification of the content. In order to cope with re-injection attacks the scheme relies on a similarity detection mechanism. The robustness of the scheme has been evaluated in an experimental setting using a variety of re-injection attacks.

Document Doi Bibtex

Titre:A P2P based usage control enforcement scheme resilient to re-injection attacks
Département:Sécurité numérique
Eurecom ref:4259
Copyright: © 2014 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
Bibtex: @inproceedings{EURECOM+4259, doi = {}, year = {2014}, title = {{A} {P}2{P} based usage control enforcement scheme resilient to re-injection attacks}, author = {{L}eontiadis, {I}raklis and {M}olva, {R}efik and {\"{O}}nen, {M}elek}, booktitle = {{WOWMOM} 2014, {IEEE} {I}nternational {S}ymposium on a {W}orld of {W}ireless, {M}obile and {M}ultimedia {N}etworks, 16-19 {J}une 2014, {S}ydney, {A}ustralia }, address = {{S}ydney, {AUSTRALIE}}, month = {06}, url = {} }
Voir aussi: