Privacy enhancements for hardware-based security modules

Vijayakrishnan Pasupathinathan*, Josef Pieprzyk, Huaxiong Wang

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingChapterpeer-review

Abstract

The increasing growth in the use of Hardware Security Modules (HSMs) towards identification and authentication of a security endpoint have raised numerous privacy and security concerns. HSMs have the ability to tie a system or an object, along with its users to the physical world. However, this enables tracking of the user and/or an object associated with the HSM. Current systems do not adequately address the privacy needs and as such are susceptible to various attacks. In this work, we analyse various security and privacy concerns that arise when deploying such hardware security modules and propose a system that allow users to create pseudonyms from a trusted master public-secret key pair. The proposed system is based on the intractability of factoring and finding square roots of a quadratic residue modulo a composite number, where the composite number is a product of two large primes. Along with the standard notion of protecting privacy of an user, the proposed system offers colligation between seemingly independent pseudonyms. This new property when combined with HSMs that store the master secret key is extremely beneficial to a user, as it offers a convenient way to generate a large number of pseudonyms using relatively small storage requirements.

Original languageEnglish
Title of host publicatione-Business and Telecommunications
Subtitle of host publication6th International Joint Conference, ICETE 2009, Milan, Italy, July 7-10, 2009. Revised Selected Papers
EditorsMohammad S. Obaidat, Joaquim Filipe
Place of PublicationHeidelberg
PublisherSpringer, Springer Nature
Pages224-236
Number of pages13
ISBN (Electronic)9783642200779
ISBN (Print)9783642200762
DOIs
Publication statusPublished - 2011
Event6th International Joint Conference on e-Business and Telecommunications, ICETE 2009 - Milan, Italy
Duration: 7 Jul 200910 Jul 2009

Publication series

NameCommunications in Computer and Information Science
PublisherSpringer Berlin Heidelberg
Volume130
ISSN (Print)1865-0929

Other

Other6th International Joint Conference on e-Business and Telecommunications, ICETE 2009
CountryItaly
CityMilan
Period7/07/0910/07/09

Fingerprint Dive into the research topics of 'Privacy enhancements for hardware-based security modules'. Together they form a unique fingerprint.

Cite this