Self-Organizing High-Assurance Privacy

Sammanfattning: When using a network, devices might have to securely communicate with oneanother. Issues arise when the devices are unaware of others in the network, orwhen the devices have to be manually updated with the information about thedevices they wish to communicate with. This presents an issue with bootstrappingover networks. Therefore, the question of how to make these devices find therelevant peers becomes a pressing one. In addition, the devices have to securelyexchange keys. In this paper, a solution is presented using a rendezvous point thatacts as a gateway between a key distribution server and the clients. Thearchitecture of the system consists of one rendezvous point, one key distributionserver, and multiple clients. The clients have to go through the rendezvous point inorder to reach the key distribution server. Two different protocols, RSA andpassword-authenticated key exchange, are studied in order to understand whichone of them is superior in key exchange security. The result of the study is that theRSA protocol is faster than the password-authenticated key exchange protocolwhen applied to this solution. However, password-authenticated key exchange isseen as safer, as it applies security measures that RSA lacks.In this project, the system manages to have the clients routed from the rendezvouspoint to the key distribution center, and the key distribution server manages tosend out information to the clients about their peers. In addition, the rendezvousmanages to shield the key distribution center from some denial-of-service attackon the hardware. However, this solution is highly theoretical, and requires furtherresearch to be regarded as completely functional.