PRIDE: A Privacy-Preserving Decentralised Key Management System

David Kester; Tianyu Li; Zekeriya Erkin

doi:10.1109/WIFS55849.2022.9975379

PRIDE: A Privacy-Preserving Decentralised Key Management System

Cyber Security

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

21 Downloads (Pure)

Abstract

There is an increase in interest and necessity for an interoperable and efficient railway network across Europe, creating a key distribution problem between train and trackside entities’ key management centres (KMC). Train and trackside entities establish a secure session using symmetric keys (KMAC) loaded beforehand by their respective KMC using procedures that are not scalable and prone to operational mistakes. A single system would simplify the KMAC distribution between KMCs; nevertheless, it is difficult to place the responsibility for such a system for the whole European area within one central organization. A single system could also expose relationships between KMCs, revealing information, such as plans to use an alternative route or serve a new region, jeopardizing competitive advantage. This paper proposes a scalable and decentralised key management system that allows KMC to share cryptographic keys using transactions while keeping relationships anonymous. Using non-interactive proofs of knowledge and assigning each entity a private and public key, private key owners can issue valid transactions while all system actors can validate them. Our performance analysis shows that the proposed system is scalable when a proof of concept is implemented with settings close to the expected railway landscape in 2030.

Original language	English
Title of host publication	Proceedings of the 2022 IEEE International Workshop on Information Forensics and Security (WIFS)
Publisher	IEEE
Pages	1-6
Number of pages	6
ISBN (Electronic)	979-8-3503-0967-6
ISBN (Print)	979-8-3503-0968-3
DOIs	https://doi.org/10.1109/WIFS55849.2022.9975379
Publication status	Published - 2022
Event	2022 IEEE International Workshop on Information Forensics and Security (WIFS) - Shanghai, China Duration: 12 Dec 2022 → 16 Dec 2022

Workshop

Workshop	2022 IEEE International Workshop on Information Forensics and Security (WIFS)
Country/Territory	China
City	Shanghai
Period	12/12/22 → 16/12/22

Bibliographical note

Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care
Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.

Keywords

blockchain
key management
privacy-preserving
proofs of knowledge
ertms

Access to Document

10.1109/WIFS55849.2022.9975379

PRIDE_A_Privacy-Preserving_Decentralised_Key_Management_SystemFinal published version, 0.99 MB

Cite this

@inproceedings{552e8f6926a04a2fa82c0896127ea735,

title = "PRIDE: A Privacy-Preserving Decentralised Key Management System",

abstract = "There is an increase in interest and necessity for an interoperable and efficient railway network across Europe, creating a key distribution problem between train and trackside entities{\textquoteright} key management centres (KMC). Train and trackside entities establish a secure session using symmetric keys (KMAC) loaded beforehand by their respective KMC using procedures that are not scalable and prone to operational mistakes. A single system would simplify the KMAC distribution between KMCs; nevertheless, it is difficult to place the responsibility for such a system for the whole European area within one central organization. A single system could also expose relationships between KMCs, revealing information, such as plans to use an alternative route or serve a new region, jeopardizing competitive advantage. This paper proposes a scalable and decentralised key management system that allows KMC to share cryptographic keys using transactions while keeping relationships anonymous. Using non-interactive proofs of knowledge and assigning each entity a private and public key, private key owners can issue valid transactions while all system actors can validate them. Our performance analysis shows that the proposed system is scalable when a proof of concept is implemented with settings close to the expected railway landscape in 2030.",

keywords = "blockchain, key management, privacy-preserving, proofs of knowledge, ertms",

author = "David Kester and Tianyu Li and Zekeriya Erkin",

note = "Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.; 2022 IEEE International Workshop on Information Forensics and Security (WIFS) ; Conference date: 12-12-2022 Through 16-12-2022",

year = "2022",

doi = "10.1109/WIFS55849.2022.9975379",

language = "English",

isbn = "979-8-3503-0968-3",

pages = "1--6",

booktitle = "Proceedings of the 2022 IEEE International Workshop on Information Forensics and Security (WIFS)",

publisher = "IEEE",

address = "United States",

}

TY - GEN

T1 - PRIDE

T2 - 2022 IEEE International Workshop on Information Forensics and Security (WIFS)

AU - Kester, David

AU - Li, Tianyu

AU - Erkin, Zekeriya

N1 - Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.

PY - 2022

Y1 - 2022

N2 - There is an increase in interest and necessity for an interoperable and efficient railway network across Europe, creating a key distribution problem between train and trackside entities’ key management centres (KMC). Train and trackside entities establish a secure session using symmetric keys (KMAC) loaded beforehand by their respective KMC using procedures that are not scalable and prone to operational mistakes. A single system would simplify the KMAC distribution between KMCs; nevertheless, it is difficult to place the responsibility for such a system for the whole European area within one central organization. A single system could also expose relationships between KMCs, revealing information, such as plans to use an alternative route or serve a new region, jeopardizing competitive advantage. This paper proposes a scalable and decentralised key management system that allows KMC to share cryptographic keys using transactions while keeping relationships anonymous. Using non-interactive proofs of knowledge and assigning each entity a private and public key, private key owners can issue valid transactions while all system actors can validate them. Our performance analysis shows that the proposed system is scalable when a proof of concept is implemented with settings close to the expected railway landscape in 2030.

AB - There is an increase in interest and necessity for an interoperable and efficient railway network across Europe, creating a key distribution problem between train and trackside entities’ key management centres (KMC). Train and trackside entities establish a secure session using symmetric keys (KMAC) loaded beforehand by their respective KMC using procedures that are not scalable and prone to operational mistakes. A single system would simplify the KMAC distribution between KMCs; nevertheless, it is difficult to place the responsibility for such a system for the whole European area within one central organization. A single system could also expose relationships between KMCs, revealing information, such as plans to use an alternative route or serve a new region, jeopardizing competitive advantage. This paper proposes a scalable and decentralised key management system that allows KMC to share cryptographic keys using transactions while keeping relationships anonymous. Using non-interactive proofs of knowledge and assigning each entity a private and public key, private key owners can issue valid transactions while all system actors can validate them. Our performance analysis shows that the proposed system is scalable when a proof of concept is implemented with settings close to the expected railway landscape in 2030.

KW - blockchain

KW - key management

KW - privacy-preserving

KW - proofs of knowledge

KW - ertms

UR - http://www.scopus.com/inward/record.url?scp=85145658368&partnerID=8YFLogxK

U2 - 10.1109/WIFS55849.2022.9975379

DO - 10.1109/WIFS55849.2022.9975379

M3 - Conference contribution

SN - 979-8-3503-0968-3

SP - 1

EP - 6

BT - Proceedings of the 2022 IEEE International Workshop on Information Forensics and Security (WIFS)

PB - IEEE

Y2 - 12 December 2022 through 16 December 2022

ER -

PRIDE: A Privacy-Preserving Decentralised Key Management System

Abstract

Workshop

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this