Privacy enhanced authentication using homomorphic encryption
Visualitza/Obre
FerrateAlbert_Thesis.pdf (1,917Mb) (Accés restringit)
Estadístiques de LA Referencia / Recolecta
Inclou dades d'ús des de 2022
Cita com:
hdl:2117/368113
Tipus de documentProjecte Final de Màster Oficial
Data2022-01-31
Condicions d'accésAccés restringit per acord de confidencialitat
(embargat fins 2025-06-08T06:58:19Z)
Tots els drets reservats. Aquesta obra està protegida pels drets de propietat intel·lectual i
industrial corresponents. Sense perjudici de les exempcions legals existents, queda prohibida la seva
reproducció, distribució, comunicació pública o transformació sense l'autorització del titular dels drets
Abstract
With the increasing prevalence of digital technologies in our lives, authentication systems have been rapidly gaining traction as a way to grant access to valuable data only to those users who are allowed to. In order to increase security, some authentication systems require knowledge about a user?s personal information, such as its geolocation. Even though these authentication systems have proven to be remarkably secure and versatile, they can also pose a serious threat to users? privacy. More specifically, in the area of geolocation-based authentication systems, sharing this data can potentially expose the user to targeted marketing and undesired profiling. In this Master thesis, we leverage an emerging encryption technology called homomorphic encryption for enhancing privacy during an authentication process. This type of encryption allows computations over encrypted data without any previous decryption process, which ensures data integrity and privacy by design. This thesis embraces a generic homomorphic encryption scheme and proposes an authentication protocol which obtains information about the user?s geolocation without ever having knowledge of it. The work is accompanied by a rigorous background research, along with a set of tests and experiments that justify the design choices of the project. The evaluation results show that our proposed system is fully-functional and enables the use of encrypted geolocation data to underpin an authentication decision. On the other hand, the system adds a significant temporal overhead when compared to traditional authentication systems, which is the reason why we believe our system, albeit very promising, is not ready for a production environment.
MatèriesComputer security, Data encryption (Computer science), Seguretat informàtica, Xifratge (Informàtica)
TitulacióMÀSTER UNIVERSITARI EN ENGINYERIA DE TELECOMUNICACIÓ (Pla 2013)
Col·leccions
Fitxers | Descripció | Mida | Format | Visualitza |
---|---|---|---|---|
FerrateAlbert_Thesis.pdf | 1,917Mb | Accés restringit |