DocumentCode
2866496
Title
VPSS: a verifiable proactive secret sharing scheme in distributed systems
Author
Pramanik, Suranjan ; Upadhaya, S.
Author_Institution
Dept. of Comput. Sci. & Eng., State Univ. of New York, USA
Volume
2
fYear
2003
fDate
13-16 Oct. 2003
Firstpage
826
Abstract
With the increase in the Internet usage and the load on the servers, replication is used as a standard approach for improving availability of an online service. However, replication of a secret increases vulnerability, so replication must be used in a strategic way if both security and dependability need to be addressed simultaneously. In this paper we propose a verifiable and proactive secret sharing framework in which the secret of the distributed system is sampled and the samples, called shares are scattered in the cluster and refreshed proactively in a periodic manner. In this approach, the secret is never transferred over the network and is never reconstructed at a replicated site. Our scheme increases the number of servers the adversary has to compromise in order to discover the secret, thereby hardening security. We present various algorithms to distribute, refresh, recover and reconstruct the secret in an asynchronous environment. As a proof of concept the framework has been simulated using Opnet and preliminary results are reported.
Keywords
Internet; cryptography; information services; Internet; cluster; distributed systems; online service; opnet; replication; threshold cryptographic schemes; verifiable proactive secret sharing scheme; Availability; Computer science; Information systems; Network servers; Protection; Protocols; Public key cryptography; Scattering; Web and internet services; Web server;
fLanguage
English
Publisher
ieee
Conference_Titel
Military Communications Conference, 2003. MILCOM '03. 2003 IEEE
Print_ISBN
0-7803-8140-8
Type
conf
DOI
10.1109/MILCOM.2003.1290219
Filename
1290219
Link To Document