|Bibliography||Tariq, Muhammad Adnan; Koldehofe, Boris; Altaweel, Ala; Rothermel, Kurt: Providing basic security mechanisms in broker-less publish/subscribe systems. |
In: Proceedings of the 4th International Conference on Distributed Event-Based Systems (DEBS'10), 2010.
University of Stuttgart, Faculty of Computer Science, Electrical Engineering, and Information Technology.
pp. 38-49, english.
ACM, July 2010.
Article in Proceedings (Conference Paper).
|Corporation||Distributed Event-Based Systems|
|CR-Schema||C.2.4 (Distributed Systems)|
|Keywords||Content-based; P2P; Broker-less; Security; Identity-based encryption; IBE; Attribute-based encryption; Clustering|
The provisioning of basic security mechanisms such as authentication and confidentiality is highly challenging in a content-based publish/subscribe system. Authentication of publishers and subscribers is difficult to achieve due to the loose coupling of publishers and subscribers. Similarly, confidentiality of events and subscriptions conflicts with contentbased routing. In particular, content-based approaches in broker-less environments do not address confidentiality at all. This paper presents a novel approach to provide confidentiality and authentication in a broker-less content-based publish-subscribe system. By adapting the pairing-based cryptography mechanisms to the needs of publish/subscribe authentication of publisher and subscriber as well as confidentiality of events is ensured. Furthermore, an algorithm to cluster subscribers according to their subscriptions preserves a weak notion of subscription confidentiality. Our approach provides fine grained key management and the cost for encryption, decryption and routing is in the order of subscribed attributes. Moreover, the simulation results verify that supporting security is affordable with respect to the cost for overlay construction and event dissemination latencies, thus preserving scalability of the system.
|Full text and|
|PDF (305848 Bytes)|
|Copyright||© ACM, 2010. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in proceedings of 4th Internation Conference on Distributed Event based Systems (DEBS'2010), pages 38-49, Cambridge, United Kingdom, July 2010. http://doi.acm.org/10.1145/1827418.1827425 |
|Department(s)||University of Stuttgart, Institute of Parallel and Distributed Systems, Distributed Systems|
|Entry date||May 3, 2010|