mSSL: extending SSL to support data sharing among collaborative clients

Author

Li, Jun ; Kang, Xun

Author_Institution

Dept. of Comput. & Inf. Sci., Oregon Univ.

fYear

2005

fDate

5-9 Dec. 2005

Lastpage

408

Abstract

Client-server applications often do not scale well when a large number of clients access a single server. To solve this, a new trend is to allow a client to download data from other peer clients, in addition to from the server directly. This paradigm, which we call the hybrid peer-to-peer paradigm, is friendly to the server´s scalability, but also faces new security challenges. For example, how can the server authenticate its clients and support data confidentiality? How can a client trust the data downloaded from other clients? What if a client refuses to acknowledge the service it received or overstates the service it offered? In this paper, we present a protocol, called mSSL, that provides a set of security functions to enable secure sharing of the data of a server among its clients. In addition to access control and confidentiality support, mSSL provides an original design on supporting data integrity and proof of service in this new context. Our evaluation further shows that mSSL has a reasonable overhead

Keywords

authorisation; client-server systems; peer-to-peer computing; authentication; client-server applications; collaborative clients; data sharing support; hybrid peer-to-peer paradigm; mSSL protocol; server security; Access control; Application software; Authentication; Collaboration; Context-aware services; Data security; Information science; Peer to peer computing; Protection; Scalability;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Security Applications Conference, 21st Annual

Conference_Location

Tucson, AZ

ISSN

1063-9527

Print_ISBN

0-7695-2461-3

Type

conf

DOI

10.1109/CSAC.2005.40

Filename

1565267