Bell Canada Chair in Multimedia IPSI:

superfluitysmackoverSécurité

23 févr. 2014 (il y a 3 années et 6 mois)

67 vue(s)

Contact:
D. Hatzinakos, (
dimitris@comm.utoronto.ca
) , K. Plataniotis, (
kostas@comm.utoronto.ca
)

Bell University Labs




(BUL) project:
Object Oriented
Security and Access Control of
Multimedia Content and Services


NSERC
-
CRD project:
Access
Control based on Content Encryption
and Secret Sharing (ACCESS)


The BUL and NSERC
-
CRD projects
provide

matching funds for the
development of efficient access
control architectures in Multimedia
security. The overall objective is to
develop the ACCESS architecture for
secure access control that integrates
biometric authentication, shared
access encoding a
nd content
encryption technologies. The target is
to provide enhanced multilevel
security and access control, either to
multimedia content or to services and
applications while at the same time
provide privacy and confidentiality.
Functional requirement
s, design
constraints, and implementation
challenges are:


1.

Using secret sharing based
authentication for enhanced
security, privacy and flexibility.

2.

Using biometric encryption for
increased security and joint secret
sharing encryption / fingerprinting
fo
r shareholder (user) tracing.

3.

Allowing cost effective
distributed computing and
minimizing the dependence on
centralized control over security
management.

4.

Providing a flexible commercially
attractive architecture that

can be:
a) diversified and provide
s
olutions to a variety of
applications, and b) deployed or
integrated into existing security
infrastructures.


Share 1
S1
Share n
Sn
Generation
of Crypto-
graphic
Key
Controller
key
(e.g.
VISTA-TPC
)
Mixing and share
generation algorithm
Share Distribution or storage
...
PIN -E
PIN -C
Code
book
Content
Encryption
User
k-shares
System
n-k shares
Template
Encryption
Share
collusion
list
User
biometric
PIN-B
system

User interface
for
application X
Security level
(Number of shares > I)
Compare &
Verify
Verify number of shares
Identify user
Template
Encryption
Is Biometric
authentication
required ?
Encrypted
Content 3
User inserts
k shares
PIN-C
Collusion list
User inserts
biometric
PIN-B
PIN-B
Y
N
PIN-E
Access
granted
USER
LOCAL SYSTEM
OR REMOTE SERVER


Access Encoding Module

Access Decoding
Module


Bell Canada Chair in Multimedia

IPSI:

Identity, Privacy and Security initiative @ UofT