Yissum - Research Development Company of the Hebrew University

Cyber Security for Group Messaging via Out-of-Band Authentication

Posted by Yissum - Research Development Company of the Hebrew UniversityResponsive · Innovative Products and Technologies · Israel

Summary of the technology

Cluster4
Cluster6
Project ID : 10-2018-4574

Yissum - Research Development Company of the Hebrew University
Yissum - Research Development Company of the Hebrew University

Description of the technology

Keywords

Group messaging, out-of-band authentication,
end-to-end encryption, man-in-the-middle attacks

Current development stage

TRL4 Technology validated in lab

Background

  • While actively communicating at multiple messaging platforms, users are unable to authenticate their incoming messages given the ad-hoc nature of such interaction.Messaging platforms rely on “out-of-band” authentication for identifying man-in-the-middle attacks while securing end-to-end channels.
  • Users are asked to compare with each other a value that is displayed by their devices. This value is derived, for example, from the cryptographic keys of the users, or more generally from the transcript of any key-exchange protocol that the users execute for setting up a secure end-to-end channel.
  • In the user-to-user setting, where two users would like to establish a secure end-to-end channel, practical and secure out-of-band authentication protocols are deployed by the existing platforms, supported by an in-depth theoretical understanding of their security. For example, WhatsApp users are asked to compare 240 bits, and Telegram users are asked to compare 288 bits.
  • In group chat setting, current protocols, each user independently execute a user-to-user out-of-band authentication protocol with the rest group members. The protocols are inefficient and complicated. For example, 32 WhatsApp\Telegram users will execute 31 user-to-user protocols, and thus, use their own voice, to compare 7,440\8,928 bits…

Our Innovation

  • Practical and optimized out-of-band authentication in the group setting: A new protocol, based on fast symmetric cryptographic primitives, that provably provides the best-possible tradeoff between the number of users and the level security on one hand, and the numbers of bits that the users are asked to compare on the other hand.
  • The practicality and security of the protocol are based on a complete theoretical characterization of out-of-band authentication in the group setting.

Highlights

  • Using the new protocol, 32 users will have to compare only 85 bits overall, as opposed to 7,440\8,928 bits using the existing protocols. Consequently, 1024 users will have to compare only 90 bits overall, as opposed to 245,520\294,624 bits using the existing protocols.
  • The protocol relies on a realistic and practical level of cooperation from the side of the users (who are asked compare only a small number of bits or characters), and thus finally realizes the premise of out-of-band authentication in the group setting.

Opportunity

All messaging platforms, and more generally all communication platforms, offering end-to-end encryption.

Project manager

Aviv Shoher
SVP BUSINESS DEVELOPMENT

Project researchers

Gil Segev
HUJI, School of Computer Science and Engineering
Computer Science

Lior ROTEM
HUJI, School of Computer Science and Engineering

Related keywords

  • Information Processing, Information System, Workflow Management
  • IT and Telematics Applications
  • Multimedia
  • Computers
  • Computer Graphics Related
  • Specialised Turnkey Systems
  • Scanning Related
  • Peripherals
  • Computer Services
  • Computer Software Market
  • Other Computer Related
  • Computer Science & Engineering
  • algorithms

About Yissum - Research Development Company of the Hebrew University

Technology Transfer Office from Israel

Yissum Research Development Company of the Hebrew University of Jerusalem Ltd. Founded in 1964 to protect and commercialize the Hebrew University’s intellectual property. Ranked among the top technology transfer companies, Yissum has registered over 8,900 patents covering 2,500 inventions; has licensed out 800 technologies and has spun-off 90 companies. Products that are based on Hebrew University technologies and were commercialized by Yissum generate today over $2 Billion in annual sales.

Send your request

By clicking "Send your request" you are signing up and accepting our Terms of Service and Privacy policy

Technology Offers on Innoget are directly posted and managed by its members as well as evaluation of requests for information. Innoget is the trusted open innovation and science network aimed at directly connect industry needs with professionals online.