Skip to content

Fantoni0/ara2

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
data
data
 
 
imgs
imgs
 
 
src
src
 
 
.env
.env
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
plot.py
plot.py
 
 

Repository files navigation

How to Grant Anonymous Access

Javascript implementation of an anonymous distributed access protocol. The code is framed within research of different protocols for anonymous registration and access. See Citation section at the bottom of the page.

The access to a service can be roughly summarized as three phases:

  • Identification as the process by which a verifier certifies that the credentials suffice to guarantee the identity of a claimant, and, therefore, entitles the access to the resource.
  • Registration as an intermediate step where the claimant is provided with the access-keys (credentials).
  • Access as the final service through the provided access-keys.

In this work, we focus on anonymous and distributed registration and access. We provide a proof of concept implementation that shows how the secure access can be granted and the associated costs of the implementation. The system consists on a set of parties collaborating to grant and obtain access:

  • Users: As the parties interested on getting access.
  • Dealers: The parties that know partial secrets and are in charge of creating access-keys.
  • Guards: The parties in charge of validating access-keys and granting access.
  • Proxy: The entity that serves as interface to users to abstract the service.

The PoC implements three modes of operation:

  • TRA2: Trusted Registration, Anonymous Access. Where a single centralized Dealer is in charge of the identification and registration.
  • TDRA2: Trusted Distributed Registration, Anonymous Access. A set of decentralized parties substitute the role of the centralized Dealer.
  • ARA2: Anonymous Registration, Anonymous Access. By using homomorphic cryptography, the access-key of the user cannot be traced by either Dealers or Guards.

ARA2 has been tested with 512, 1024 and 2048 bits keys.

⚠️ This is a repository for research purposes. The code has not been audited. Cryptography is a pretty sensible issue and only reputed and tested sources should be used in a production environment. Use at your own risk!

ℹ️ The presented results were obtained using a Ryzen 7 3700X (16 cores) processor on Linux 🐧. Times might change in different environments.

Installation

Assuming that you have node installed:

git clone https://github.com/Fantoni0/ara2
cd ara2
npm install

Usage

An example of how to use the library:

This snippet will launch a simulation that performs 10 requests, with 1 dealer, 7 guards under the mode TRA2.

./src/Simulation.js -d 1 -g 7 -b 512 -r 10 -m TRA2

This second snippet will launch a simulation that performs 10 requests, with 3 dealer, 5 guards under the mode ARA2. It will save the results in CSV format.

./src/Simulation.js -d 3 -g 5 -b 1024 -r 10 -m ARA2 -s

Future Improvements

  • Add check to ensure the setup finalized properly and all parties are operating correctly.
  • Change patterns so that every conversation has a unique socket.
  • Replace ZMQ sockets with websockets.
  • Encrypt communications.

Citation

This repository is also related to a Spanish Patent (P202130890). If you use this code, please cite:

@article{larriba2022grant,
title={How to Grant Anonymous Access},
author={Larriba, Antonio M and L{\'o}pez, Dami{\'a}n},
journal={IEEE Transactions on Information Forensics and Security},
volume={18},
pages={613--625},
year={2022},
publisher={IEEE}
}

About

Anonymous Registration, Anonymous Access

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages