• PDF / 823,248 Bytes
• 18 Pages / 439.642 x 666.49 pts Page_size
• 82 Downloads / 227 Views

DOWNLOAD

REPORT

A practical key agreement scheme for videoconferencing ˘ 1 Cengiz Togay Received: 2 October 2019 / Revised: 19 May 2020 / Accepted: 27 May 2020 / © Springer Science+Business Media, LLC, part of Springer Nature 2020

Abstract Recently, videoconferencing is becoming more and more pervasive as a consequence of new concerns about privacy and security. The media should be encrypted through the utilization of actual encryption algorithms and group key agreement schemes. In this study, a new key agreement scheme based on Java smart cards is proposed and applied on Web-based realtime communication (WebRTC)-based videoconferencing. In WebRTC, symmetric keys are generated using pseudorandom number generators and shared by two standard protocols, namely, Source Description RTCP Packet (SDES) and Datagram Transport Layer Security (DTLS), through a signaling server. In both methods, the key exchange is open to cryptanalytic attacks, and the administrator of the signaling server can compromise media. This qualitative study aims to investigate privacy during WebRTC-based videoconferencing with respect to symmetric encryption algorithm, randomness of the encryption key, overall security strength, key agreement scheme, and time required to start a conversation. Herein, a new key agreement scheme based on Java smart cards is proposed. The scheme utilizes AES-256 algorithm in GCM mode for media encryption. By means of this approach, the set-up time of a conference is reduced to 562 ms (compared to 1754 ms for the RSA-based approach) for 367 users, and the security strength is increased to 256-bit (as against 112-bit for RSA 2048-bit). A secure random key generator for smart cards is utilized for a key generation instead of pseudorandom number generators. The proposed approach also includes a safety mechanism for smart card failures. We utilize the AVISPA (The Automated Validation of Internet Security Protocols and Applications) tool to test the safety of the proposed scheme. Keywords WebRTC · Videoconferencing · Key agreement · Media sharing · Java smart card

1 Introduction Improvements in wireless technologies and hardware such as the screen, processor, and battery, directly affect the usage habits of mobile devices. VoIP-based communication is  Cengiz To˘gay

[email protected] 1

Computer Engineering Department, Engineering Faculty, Uludag University, Bursa, Turkey

Multimedia Tools and Applications

becoming more popular because of the platform and device independence [6]. For instance, a user can start a call or send/receive an instant message on any device (a mobile, computer, and/or even smart TV). Hardware-specific problems, such as network delay, packet loss, jitter, battery, and processors, need to be addressed to meet the VoIP quality expectations [29]. Web-based real-time communication (WebRTC), one of the most popular platforms, provides peer-to-peer communication, including audio calls, video chat, videoconferencing, text-based chat, file sharing, screen sharing, gaming, and sensor data feed [1, 3, 6, 24, 29, 32, 3

Recommend Documents

Post-quantum Group Key Agreement Scheme

182 82 55MB

A New Lightweight User Authentication and Key Agreement Scheme for WSN

170 28 2MB

Multiparty Key Agreement for Wireless Networks

172 15 49MB

Secure and Efficient Cloud-based IoT Authenticated Key Agreement scheme for e-Health Wireless Sensor Networks

203 19 2MB

Lightweight and secure PUF-based authenticated key agreement scheme for smart grid

177 57 1MB

Group Key Agreement for Wireless Networks

181 70 49MB

A Design of Key Agreement Scheme Between Lightweight Devices in IoT Environment

144 37 544KB

Security Weakness of a Dynamic ID-Based User Authentication Scheme with Key Agreement

175 92 25MB

Semi-quantum-honest key agreement scheme with three-particle entangled states in cross-realm setting

162 17 764KB

Efficient Key Management Scheme for SCADA System

204 35 29MB

Practical Cryptanalysis of a Public-Key Encryption Scheme Based on New Multivariate Quadratic Assumptions

169 41 330KB

Dynamic Group Key Agreement for Resource-constrained Devices Using Blockchains

159 16 39MB