LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance
Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2017
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Thesis |
| Language: | eng |
| Published: |
Massachusetts Institute of Technology
2017
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/1721.1/112914 |
| _version_ | 1811091192020992000 |
|---|---|
| author | Fromknecht, Conner(Conner M.) |
| author2 | Srini Devadas. |
| author_facet | Srini Devadas. Fromknecht, Conner(Conner M.) |
| author_sort | Fromknecht, Conner(Conner M.) |
| collection | MIT |
| description | Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2017 |
| first_indexed | 2024-09-23T14:58:24Z |
| format | Thesis |
| id | mit-1721.1/112914 |
| institution | Massachusetts Institute of Technology |
| language | eng |
| last_indexed | 2024-09-23T14:58:24Z |
| publishDate | 2017 |
| publisher | Massachusetts Institute of Technology |
| record_format | dspace |
| spelling | mit-1721.1/1129142019-06-21T03:08:44Z LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance Lease-oriented key infrastructure with instant updates and seizure-resistance Fromknecht, Conner(Conner M.) Srini Devadas. Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science. Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science Electrical Engineering and Computer Science. Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2017 Cataloged from PDF version of thesis. Includes bibliographical references (pages 69-70). Most of the secure communication protocols that power the Internet of today rely on a robust and frictionless mechanism for digital identity attestation. Authentication is typically achieved using a Public Key Infrastructure (PKI) that enables users to verify a counterparty's public key binding. Unfortunately, the structure of many existing PKIs present vulnerabilities and usability issues that stem from a lack of consistency, inefficient updates, or a dependence on centralized entities. In this work we present a decentralized marketplace for digital identities that autonomously leases the verification state of a globally-consistent PKI. Users express ownership of an identity through a sequence of leases, which incrementally defines the conditions under which ownership can be renewed and the identity's bindings can be updated. A careful structuring of the lease semantics, economic incentives and architectural design enables a fast update protocol, which permits clients to verify and accept a fresher binding without needing to wait for confirmation from the underlying consensus layer. The task of registration accuracy is extended naturally through the structure of the DNS namespace, after which the state of the system at any particular time acts as the root of trust during authentication. We discuss a novel seizure-resistance mechamism called dormancy, which in turn gives the existing owner of an identity substantial preference during the renewal process. Finally, we show how the system could be used to efficiently and unobtrusively secure today's communication protocols. by Conner Fromknecht. M. Eng. M.Eng. Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science 2017-12-20T18:17:09Z 2017-12-20T18:17:09Z 2017 2017 Thesis http://hdl.handle.net/1721.1/112914 1015247248 eng MIT theses are protected by copyright. They may be viewed, downloaded, or printed from this source but further reproduction or distribution in any format is prohibited without written permission. http://dspace.mit.edu/handle/1721.1/7582 70 pages application/pdf Massachusetts Institute of Technology |
| spellingShingle | Electrical Engineering and Computer Science. Fromknecht, Conner(Conner M.) LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance |
| title | LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance |
| title_full | LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance |
| title_fullStr | LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance |
| title_full_unstemmed | LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance |
| title_short | LOKI : a lease-oriented key infrastructure with instant updates and seizure-resistance |
| title_sort | loki a lease oriented key infrastructure with instant updates and seizure resistance |
| topic | Electrical Engineering and Computer Science. |
| url | http://hdl.handle.net/1721.1/112914 |
| work_keys_str_mv | AT fromknechtconnerconnerm lokialeaseorientedkeyinfrastructurewithinstantupdatesandseizureresistance AT fromknechtconnerconnerm leaseorientedkeyinfrastructurewithinstantupdatesandseizureresistance |