Collaborative Research: SaTC: TTP: Medium: Intrusion-Tolerant Outsourced Storage for Cyber-Infrastructure

协作研究:SaTC:TTP:中:网络基础设施的耐入侵外包存储

基本信息

项目摘要

This project addresses the general problem of protecting a user's private, potentially sensitive data, such as confidential documents, images, files and folders, in the event of the compromise of an online outsourced storage service on which the data is stored. Today, users typically authenticate to such services using a password and the service stores a one-way hash of this password. Given the weaknesses of passwords, storing password hashes allows for an offline password dictionary attack once the storage service is compromised, which exposes user's password and consequently also all her private data. To improve the secrecy of the outsourced private data, the project's main novelty lies in designing and developing an Intrusion-Tolerant Outsourced Storage (ITOS) system, which enables the user to distribute her data, and/or the cryptographic tokens which protect this data, among a set of trustees so that the password and private data remain protected even when a certain subset of the trustees have been compromised.Building upon our previous foundational work, this project investigates: (1) the design of provably secure and highly efficient protocols for ITOS, and (2) implementation, pilot deployment, evaluation and technology transfer of an ITOS system which builds upon these protocols, in line with its “transitioning to practice” theme. The proposed system can be transparently integrated with different storage systems including popular services like Google Drive, OneDrive or Dropbox. Moreover, ITOS can improve the authentication security for general web services. The resilient storage system architecture will offer an improved level of protection and accessibility to the data belonging to research scientists, students and staff at Universities as well as everyday computer users employing commercial storage services. The open-source library developed as part of the project will be of immense value in future research on building fault-tolerant systems. Further, the project’s research activities will be integrated with educational activities in the form of advanced curriculum development and student mentoring in the broad domains of Trustworthy Storage Systems, Secure Data Architectures and Data Assurance. Proactive involvement of high school and K-12 students and minority populations will help broaden the reach of the project. Regarding general application of strengthening web authentication security, the project team is also pursuing standardization activities by closely collaborating with Internet Research Task Force (IRTF) stakeholders with interest in these protocols.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.
该项目解决的一般性问题是,在存储数据的在线外包存储服务受到损害的情况下,保护用户的私人、潜在敏感数据,如机密文件、图像、文件和文件夹。如今,用户通常使用密码向此类服务进行身份验证,并且服务存储该密码的单向散列。鉴于密码的弱点,一旦存储服务受到损害,存储密码散列允许离线密码字典攻击,这会暴露用户的密码,因此也暴露了她的所有私人数据。为了提高外包私人数据的保密性,该项目的主要新奇在于设计和开发一个入侵容忍外包存储(ITOS)系统,该系统使用户能够分发她的数据,和/或保护这些数据的加密令牌,在一组受讬人之间,以便即使受讬人的某个子集已被泄露,密码和私人数据也会受到保护。本项目在以往基础工作的基础上,研究:(1)设计可证明安全和高效的ITOS协议,(2)按照其“过渡到实践”的主题,在这些协议的基础上建立ITOS系统的实施、试验部署、评估和技术转让。该系统可以透明地与不同的存储系统集成,包括Google Drive,OneDrive或Dropbox等流行服务。此外,ITOS可以提高一般Web服务的认证安全性。弹性存储系统架构将为大学的研究科学家、学生和工作人员以及使用商业存储服务的日常计算机用户提供更高级别的保护和访问能力。作为该项目一部分开发的开源库将在未来构建容错系统的研究中具有巨大价值。此外,该项目的研究活动将与教育活动相结合,其形式是在可信赖的存储系统、安全数据架构和数据保障等广泛领域开展高级课程开发和学生辅导。高中和K-12学生以及少数民族的积极参与将有助于扩大该项目的范围。关于加强网络认证安全的一般应用,项目组还与对这些协议感兴趣的互联网研究任务组(IRTF)利益相关者密切合作,开展标准化活动。该奖项反映了NSF的法定使命,通过使用基金会的知识价值和更广泛的影响审查标准进行评估,被认为值得支持。

项目成果

期刊论文数量(1)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
SoK: A Comprehensive Evaluation of 2FA-based Schemes in the Face of Active Concurrent Attacks from User Terminal
{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Nitesh Saxena其他文献

PASSAT: Single Password Authenticated Secret-Shared Intrusion-Tolerant Storage with Server Transparency
PASSAT:具有服务器透明性的单密码验证秘密共享入侵容忍存储
  • DOI:
  • 发表时间:
    2021
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Kiavash Satvat;Maliheh Shirvanian;Nitesh Saxena
  • 通讯作者:
    Nitesh Saxena
Public Key Cryptography Sans Certificates in Ad Hoc Networks
Ad Hoc 网络中的公钥加密无证书
Gene Regulation and Species-Specific Evolution of Free Flight Odor Tracking in Drosophila
果蝇自由飞行气味追踪的基因调控和物种特异性进化
  • DOI:
    10.1093/molbev/msx241
  • 发表时间:
    2018
  • 期刊:
  • 影响因子:
    10.7
  • 作者:
    B. Houot;Laurie Cazalé;S. Fraichard;C. Everaerts;Nitesh Saxena;S. Sane;J. Ferveur
  • 通讯作者:
    J. Ferveur
Robust self-keying mobile ad hoc networks
强大的自键控移动自组织网络
  • DOI:
    10.1016/j.comnet.2006.07.009
  • 发表时间:
    2007
  • 期刊:
  • 影响因子:
    0
  • 作者:
    C. Castelluccia;Nitesh Saxena;J. Yi
  • 通讯作者:
    J. Yi
Towards Sensing-Enabled RFID Security and Privacy
迈向传感型 RFID 安全和隐私

Nitesh Saxena的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

{{ truncateString('Nitesh Saxena', 18)}}的其他基金

Collaborative Research: SaTC: CORE: Medium: Bubble Aid: Assistive AI to Improve the Robustness and Security of Reading Hand-Marked Ballots
合作研究:SaTC:核心:媒介:Bubble Aid:辅助人工智能提高阅读手写选票的稳健性和安全性
  • 批准号:
    2154507
  • 财政年份:
    2022
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
CICI: UCSS: Towards Secure and Usable Push Notification Authentication for Collaborative Scientific Infrastructures
CICI:UCSS:为协作科学基础设施实现安全可用的推送通知身份验证
  • 批准号:
    2115107
  • 财政年份:
    2021
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
CICI: UCSS: Towards Secure and Usable Push Notification Authentication for Collaborative Scientific Infrastructures
CICI:UCSS:为协作科学基础设施实现安全可用的推送通知身份验证
  • 批准号:
    2139358
  • 财政年份:
    2021
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
SaTC: TTP: Small: SPHINX: A Password Store that Perfectly Hides Passwords from Itself
SaTC:TTP:小型:SPHINX:完美隐藏密码的密码存储
  • 批准号:
    2152669
  • 财政年份:
    2021
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: TTP: Medium: Intrusion-Tolerant Outsourced Storage for Cyber-Infrastructure
协作研究:SaTC:TTP:中:网络基础设施的耐入侵外包存储
  • 批准号:
    2030501
  • 财政年份:
    2020
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
SaTC: TTP: Small: SPHINX: A Password Store that Perfectly Hides Passwords from Itself
SaTC:TTP:小型:SPHINX:完美隐藏密码的密码存储
  • 批准号:
    1714807
  • 财政年份:
    2017
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
CICI: Secure Data Architecture: Improving the Security and Usability of Two-Factor Authentication for Cyberinfrastructure
CICI:安全数据架构:提高网络基础设施双因素身份验证的安全性和可用性
  • 批准号:
    1547350
  • 财政年份:
    2016
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
TWC: Small: Collaborative: Spoof-Resistant Smartphone Authentication using Cooperating Wearables
TWC:小型:协作:使用协作可穿戴设备进行防欺骗智能手机身份验证
  • 批准号:
    1526524
  • 财政年份:
    2015
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
CT-ISG: User-Aided Secure Association of Wireless Devices
CT-ISG:用户辅助的无线设备安全关联
  • 批准号:
    1228236
  • 财政年份:
    2012
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
EAGER: Establishing Secure Wireless Connections via Playful User Engagement
EAGER:通过有趣的用户参与建立安全的无线连接
  • 批准号:
    1255919
  • 财政年份:
    2012
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant

相似国自然基金

Research on Quantum Field Theory without a Lagrangian Description
  • 批准号:
    24ZR1403900
  • 批准年份:
    2024
  • 资助金额:
    0.0 万元
  • 项目类别:
    省市级项目
Cell Research
  • 批准号:
    31224802
  • 批准年份:
    2012
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Cell Research
  • 批准号:
    31024804
  • 批准年份:
    2010
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Cell Research (细胞研究)
  • 批准号:
    30824808
  • 批准年份:
    2008
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Research on the Rapid Growth Mechanism of KDP Crystal
  • 批准号:
    10774081
  • 批准年份:
    2007
  • 资助金额:
    45.0 万元
  • 项目类别:
    面上项目

相似海外基金

Collaborative Research: SaTC: CORE: Medium: Using Intelligent Conversational Agents to Empower Adolescents to be Resilient Against Cybergrooming
合作研究:SaTC:核心:中:使用智能会话代理使青少年能够抵御网络诱骗
  • 批准号:
    2330940
  • 财政年份:
    2024
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Differentially Private SQL with flexible privacy modeling, machine-checked system design, and accuracy optimization
协作研究:SaTC:核心:中:具有灵活隐私建模、机器检查系统设计和准确性优化的差异化私有 SQL
  • 批准号:
    2317232
  • 财政年份:
    2024
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338301
  • 财政年份:
    2024
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Differentially Private SQL with flexible privacy modeling, machine-checked system design, and accuracy optimization
协作研究:SaTC:核心:中:具有灵活隐私建模、机器检查系统设计和准确性优化的差异化私有 SQL
  • 批准号:
    2317233
  • 财政年份:
    2024
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338302
  • 财政年份:
    2024
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Using Intelligent Conversational Agents to Empower Adolescents to be Resilient Against Cybergrooming
合作研究:SaTC:核心:中:使用智能会话代理使青少年能够抵御网络诱骗
  • 批准号:
    2330941
  • 财政年份:
    2024
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Small: Towards Secure and Trustworthy Tree Models
协作研究:SaTC:核心:小型:迈向安全可信的树模型
  • 批准号:
    2413046
  • 财政年份:
    2024
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: EDU: RoCCeM: Bringing Robotics, Cybersecurity and Computer Science to the Middled School Classroom
合作研究:SaTC:EDU:RoCCeM:将机器人、网络安全和计算机科学带入中学课堂
  • 批准号:
    2312057
  • 财政年份:
    2023
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: CORE: Small: Investigation of Naming Space Hijacking Threat and Its Defense
协作研究:SaTC:核心:小型:命名空间劫持威胁及其防御的调查
  • 批准号:
    2317830
  • 财政年份:
    2023
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Small: Towards a Privacy-Preserving Framework for Research on Private, Encrypted Social Networks
协作研究:SaTC:核心:小型:针对私有加密社交网络研究的隐私保护框架
  • 批准号:
    2318843
  • 财政年份:
    2023
  • 资助金额:
    $ 58.5万
  • 项目类别:
    Continuing Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了