Security and Privacy in Communication Networks. 6th Iternational ICST Conference, SecureComm 2010, Singapore, September 7-9, 2010. Proceedings

Research Article

Supporting Publication and Subscription Confidentiality in Pub/Sub Networks

Download153 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-16161-2_16,
        author={Mihaela Ion and Giovanni Russello and Bruno Crispo},
        title={Supporting Publication and Subscription Confidentiality in Pub/Sub Networks},
        proceedings={Security and Privacy in Communication Networks. 6th Iternational ICST Conference, SecureComm 2010, Singapore, September 7-9, 2010. Proceedings},
        proceedings_a={SECURECOMM},
        year={2012},
        month={5},
        keywords={},
        doi={10.1007/978-3-642-16161-2_16}
    }
    
  • Mihaela Ion
    Giovanni Russello
    Bruno Crispo
    Year: 2012
    Supporting Publication and Subscription Confidentiality in Pub/Sub Networks
    SECURECOMM
    Springer
    DOI: 10.1007/978-3-642-16161-2_16
Mihaela Ion1,*, Giovanni Russello1,*, Bruno Crispo2,*
  • 1: CREATE-NET International Research Center
  • 2: University of Trento
*Contact email: mihaela.ion@create-net.org, giovanni.russello@create-net.org, crispo@disi.unitn.it

Abstract

The publish/subscribe model offers a loosely-coupled communication paradigm where applications interact indirectly and asynchronously. Publisher applications generate events that are sent to interested applications through a network of brokers. Subscriber applications express their interest by specifying filters that brokers can use for routing the events. Supporting confidentiality of messages being exchanged is still challenging. First of all, it is desirable that any scheme used for protecting the confidentiality of both the events and filters should not require the publishers and subscribers to share secret keys. In fact, such a restriction is against the loose-coupling of the model. Moreover, such a scheme should not restrict the expressiveness of filters and should allow the broker to perform event filtering to route the events to the interested parties. Existing solutions do not fully address those issues. In this paper, we provide a novel scheme that supports (i) confidentiality for events and filters; (ii) filters can express very complex constraints on events even if brokers are not able to access any information on both events and filters; (iii) and finally it does not require publishers and subscribers to share keys.