Search

Your search keyword '"Hoepman, Jaap-Henk"' showing total 439 results
Start Over Author "Hoepman, Jaap-Henk"

Refine your results

more »

more »

more »

more »
439 results on '"Hoepman, Jaap-Henk"'

1. The GDPR's Rules on Data Breaches: Analysing Their Rationales and Effects

Author

Borgesius, Frederik Zuiderveen, Asghari, Hadi, Bangma, Noël, and Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security, Computer Science - Computers and Society
Abstract

The General Data Protection Regulation (GDPR) requires an organisation that suffers a data breach to notify the competent Data Protection Authority. The organisation must also inform the relevant individuals, when a data breach threatens their rights and freedoms. This paper focuses on the following question: given the goals of the GDPR's data breach notification obligation, and we assess the obligation in the light of those goals. We refer to insights from information security and economics, and present them in a reader-friendly way for lawyers. Our main conclusion is that the GDPR's data breach rules are likely to contribute to the goals. For instance, the data breach notification obligation can nudge organisations towards better security; such an obligation enables regulators to perform their duties; and such an obligation improves transparency and accountability. However, the paper also warns that we should not have unrealistic expectations of the possibilities for people to protect their interests after a data breach notice. Likewise, we should not have high expectations of people switching to other service providers after receiving a data breach notification. Lastly, the paper calls for Data Protection Authorities to publish more information about reported data breaches. Such information can help to analyse security threats.

Published
2024

2. Privacy Engineering From Principles to Practice: A Roadmap

Author

Pallas, Frank, Koerner, Katharina, Barberá, Isabel, Hoepman, Jaap-Henk, Jensen, Meiko, Narla, Nandita Rao, Samarin, Nikita, Ulbricht, Max-R., Wagner, Isabel, Wuyts, Kim, and Zimmermann, Christian

Subjects
Computer Science - Cryptography and Security, Computer Science - Computers and Society, Computer Science - Software Engineering, K.5.0, H.1.0, D.2.1, D.2.2
Abstract

Privacy engineering is gaining momentum in industry and academia alike. So far, manifold low-level primitives and higher-level methods and strategies have successfully been established. Still, fostering adoption in real-world information systems calls for additional aspects to be consciously considered in research and practice.

Published
2024
Full Text
View/download PDF

3. Mutual Contact Discovery

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Computers and Society
Abstract

Contact discovery allows new users of a messaging service to find existing contacts that already use that service. Existing users are similarly informed of new users that join. This creates a privacy issue: anyone already on the service that has your number on their contact list gets notified that you joined. Even if you don't know that person, or if it is an ex or former colleague that you long parted with and whose contact details you deleted long ago. To solve this, we propose a mutual contact discovery protocol, that only allow users to discover each other when both are (still) in each other's contact list. Mutual contact discovery has the additional advantage that it can be implemented in a more privacy friendly fashion (e.g. protecting the social graph from the server) than traditional, one-sided contact discovery, without necessarily relying on trusted hardware., Comment: 33 pages (including appendix)

Published
2022

4. A Privacy-Preserving Approach to Vehicle Renting and Driver Accountability in VANETs

Author

Akil, Mahdi, Naskar, Sujash, Martucci, Leonardo A., Hoepman, Jaap-Henk, Rannenberg, Kai, Editor-in-Chief, Soares Barbosa, Luís, Editorial Board Member, Carette, Jacques, Editorial Board Member, Tatnall, Arthur, Editorial Board Member, Neuhold, Erich J., Editorial Board Member, Stiller, Burkhard, Editorial Board Member, Stettner, Lukasz, Editorial Board Member, Pries-Heje, Jan, Editorial Board Member, Kreps, David, Editorial Board Member, Rettberg, Achim, Editorial Board Member, Furnell, Steven, Editorial Board Member, Mercier-Laurent, Eunika, Editorial Board Member, Winckler, Marco, Editorial Board Member, Malaka, Rainer, Editorial Board Member, Bieker, Felix, editor, de Conca, Silvia, editor, Gruschka, Nils, editor, Jensen, Meiko, editor, and Schiering, Ina, editor

Published
2024
Full Text
View/download PDF

6. Privacy Friendly E-Ticketing For Public Transport

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security
Abstract

This paper studies how to implement a privacy friendly form of ticketing for public transport in practice. The protocols described are inspired by current (privacy invasive) public transport ticketing systems used around the world. The first protocol emulates paper based tickets. The second protocol implements a pay-as-you-go approach, with fares determined when users check-in and check-out. Both protocols assume the use of a smart phone as the main user device to store tickets or travel credit. We see this research as a step towards investigating how to design commonly used infrastructure in a privacy friendly manner in practice, paying particular attention to how to deal with failures., Comment: 31 pages, 2 figures

Published
2021

7. Hansel and Gretel and the Virus: Privacy Conscious Contact Tracing

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security
Abstract

Digital contact tracing has been proposed to support the health authorities in fighting the current Covid-19 pandemic. In this paper we propose two centralised protocols for digital contact tracing that, contrary to the common hypothesis that this is an inherent risk, do not allow (retroactive) tracking of the location of a device over time. The first protocol does not rely on synchronised clocks. The second protocol does not require a handshake between two devices, at the expense of relying on real-time communication with a central server. We stress that digital contact tracing is a form of technological solutionism that should be used with care, especially given the inherent mass surveillance nature of such systems., Comment: 29 pages, 3 figures

Published
2021

8. A Critique of the Google Apple Exposure Notification (GAEN) Framework

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Computers and Society
Abstract

As a response to the COVID-19 pandemic digital contact tracing has been proposed as a tool to support the health authorities in their quest to determine who has been in close and sustained contact with a person infected by the coronavirus. In April 2020 Google and Apple released the Google Apple Exposure Notification (GAEN) framework, as a decentralised and more privacy friendly platform for contact tracing. The GAEN framework implements exposure notification mostly at the operating system layer, instead of fully at the app(lication) layer. In this paper we study the consequences of this approach. We argue that this creates a dormant functionality for mass surveillance at the operating system layer. We show how it does not technically prevent the health authorities from implementing a purely centralised form of contact tracing (even though that is the stated aim). We highlight that GAEN allows Google and Apple to dictate how contact tracing is (or rather isn't) implemented in practice by health authorities, and how it introduces the risk of function creep., Comment: 19 pages, 3 figures

Published
2020

9. Privacy-Enhancing Technologies and Anonymisation in Light of GDPR and Machine Learning

Author

Fischer-Hübner, Simone, Hansen, Marit, Hoepman, Jaap-Henk, Jensen, Meiko, Rannenberg, Kai, Editor-in-Chief, Soares Barbosa, Luís, Editorial Board Member, Goedicke, Michael, Editorial Board Member, Tatnall, Arthur, Editorial Board Member, Neuhold, Erich J., Editorial Board Member, Stiller, Burkhard, Editorial Board Member, Stettner, Lukasz, Editorial Board Member, Pries-Heje, Jan, Editorial Board Member, Kreps, David, Editorial Board Member, Rettberg, Achim, Editorial Board Member, Furnell, Steven, Editorial Board Member, Mercier-Laurent, Eunika, Editorial Board Member, Winckler, Marco, Editorial Board Member, Malaka, Rainer, Editorial Board Member, Dillon, Tharam, Series Editor, Murayama, Yuko, Series Editor, Gulliksen, Jan, Series Editor, Whitehouse, Diane, Series Editor, Rauterberg, Matthias, Series Editor, Pras, Aiko, Editorial Board Member, Sakarovitch, Jacques, Editorial Board Member, Furbach, Ulrich, Editorial Board Member, Bieker, Felix, editor, Meyer, Joachim, editor, Pape, Sebastian, editor, Schiering, Ina, editor, and Weich, Andreas, editor

Published
2023
Full Text
View/download PDF

10. Hydra: A Multiple Blockchain Protocol for Improving Transaction Throughput

Author

Gündlach, Rowel, Hoepman, Jaap-Henk, van der Hofstad, Remco, Koens, Tommy, and Meijer, Stijn

Subjects
Computer Science - Distributed, Parallel, and Cluster Computing
Abstract

Improving transaction throughput is one of the main challenges in decentralized payment systems. Attempts to improve transaction throughput in cryptocurrencies are usually a trade-off between throughput and security or introduce a central component. We propose Hydra, a decentralized protocol that improves transaction throughput without the security trade-off and has no central component. Our novel approach distributes blocks over multiple blockchains. Hydra makes a trade-off between transaction throughput and finality, the time it takes to stabilize the record of a transaction in the blockchain. We rigorously analyze the double spend attack in a multiple-blockchain protocol. Our analysis shows that the number of transactions per second can be increased significantly while finality is within acceptable boundaries., Comment: Preprint, 12 pages, 2 figures, short version

Published
2019

13. Privacy and Data Protection by Design - from policy to engineering

Author

Danezis, George, Domingo-Ferrer, Josep, Hansen, Marit, Hoepman, Jaap-Henk, Metayer, Daniel Le, Tirtea, Rodica, and Schiffner, Stefan

Subjects
Computer Science - Cryptography and Security, 94A60, K.4.1, D.4.6, H.2.0
Abstract

Privacy and data protection constitute core values of individuals and of democratic societies. There have been decades of debate on how those values -and legal obligations- can be embedded into systems, preferably from the very beginning of the design process. One important element in this endeavour are technical mechanisms, known as privacy-enhancing technologies (PETs). Their effectiveness has been demonstrated by researchers and in pilot implementations. However, apart from a few exceptions, e.g., encryption became widely used, PETs have not become a standard and widely used component in system design. Furthermore, for unfolding their full benefit for privacy and data protection, PETs need to be rooted in a data governance strategy to be applied in practice. This report contributes to bridging the gap between the legal framework and the available technological implementation measures by providing an inventory of existing approaches, privacy design strategies, and technical building blocks of various degrees of maturity from research and development. Starting from the privacy principles of the legislation, important elements are presented as a first step towards a design process for privacy-friendly systems and services. The report sketches a method to map legal obligations to design strategies, which allow the system designer to select appropriate techniques for implementing the identified privacy requirements. Furthermore, the report reflects limitations of the approach. It concludes with recommendations on how to overcome and mitigate these limits., Comment: 79 pages in European Union Agency for Network and Information Security (ENISA) report, December 2014, ISBN 978-92-9204-108-3

Published
2015
Full Text
View/download PDF

14. Privacy Engineering From Principles to Practice: A Roadmap

Author

Pallas, Frank, primary, Koerner, Katharina, additional, Barberá, Isabel, additional, Hoepman, Jaap-Henk, additional, Jensen, Meiko, additional, Narla, Nandita Rao, additional, Samarin, Nikita, additional, Ulbricht, Max-R., additional, Wagner, Isabel, additional, Wuyts, Kim, additional, and Zimmermann, Christian, additional

Published
2024
Full Text
View/download PDF

15. A Secure and Privacy-Preserving Authentication Scheme with a Zero-Trust Approach to Vehicle Renting in VANETs

Author

Akil, Mahdi, Martucci, Leonardo, Hoepman, Jaap-Henk, Akil, Mahdi, Martucci, Leonardo, and Hoepman, Jaap-Henk

Abstract

Vehicular Ad-hoc Networks (VANETs) enable communications between vehicles and infrastructure and are a key part of future Intelligent Transportation Systems. Significant advancements have been made in ensuring anonymous and secure communication within VANETs; however, integrating privacy-preserving vehicle rentals in VANETS is an unsolved problem. Existing protocols do not address the unique challenges posed by vehicle sharing and rentals, particularly regarding vehicle owners’ and renters’ privacy. This paper proposes a novel rental protocol within VANETs. Our solution is based on delegatable anonymous credentials and NonInteractive Zero-Knowledge (NIZK) proofs. It allows drivers to securely delegate credentials to vehicles. This approach ensures that each vehicle broadcasts authenticated messages, verified through NIZK proofs, while the identity of the actual driver is verifiably escrowed to an inspector that can lift driver privacy in case of abuse. The latter property implements accountability into the system. Our protocol addresses the trust issues inherent in previous systems by providing a robust mechanism for privacy-preserving, accountable vehicle rentals in VANETs, enhancing the overall security and functionality of these networks.

Published
2024

16. Privacy Design Strategies

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Computers and Society, Computer Science - Cryptography and Security
Abstract

In this paper we define the notion of a privacy design strategy. These strategies help IT architects to support privacy by design early in the software development life cycle, during concept development and analysis. Using current data protection legislation as point of departure we derive the following eight privacy design strategies: minimise, hide, separate, aggregate, inform, control, enforce, and demonstrate. The strategies also provide a useful classification of privacy design patterns and the underlying privacy enhancing technologies. We therefore believe that these privacy design strategies are not only useful when designing privacy friendly systems, but also helpful when evaluating the privacy impact of existing IT systems., Comment: 12 pages, 3 figures, 1 table. Presented at the Privacy Law Scholars Conference (PLSC) 2013

Published
2012

18. The Identity Crisis. Security, Privacy and Usability Issues in Identity Management

Author

Alpár, Gergely, Hoepman, Jaap-Henk, and Siljee, Johanneke

Subjects
Computer Science - Cryptography and Security
Abstract

This paper studies the current "identity crisis" caused by the substantial security, privacy and usability shortcomings encountered in existing systems for identity management. Some of these issues are well known, while others are much less understood. This paper brings them together in a single, comprehensive study and proposes recommendations to resolve or to mitigate the problems. Some of these problems cannot be solved without substantial research and development effort., Comment: 15 pages, 3 figures

Published
2011

19. The Privacy Coach: Supporting customer privacy in the Internet of Things

Author

Broenink, Gerben, Hoepman, Jaap-Henk, Hof, Christian van 't, van Kranenburg, Rob, Smits, David, and Wisman, Tijmen

Subjects
Computer Science - Computers and Society
Abstract

The Privacy Coach is an application running on a mobile phone that supports customers in making privacy decisions when confronted with RFID tags. The approach we take to increase customer privacy is a radical departure from the mainstream research efforts that focus on implementing privacy enhancing technologies on the RFID tags themselves. Instead the Privacy Coach functions as a mediator between customer privacy preferences and corporate privacy policies, trying to find a match between the two, and informing the user of the outcome. In this paper we report on the architecture of the Privacy Coach, and show how it enables users to make informed privacy decisions in a user-friendly manner. We also spend considerable time to discuss lessons learnt and to describe future plans to further improve on the Privacy Coach concept., Comment: 10 pages

Published
2010

20. Practical Schemes For Privacy & Security Enhanced RFID

Author

Hoepman, Jaap-Henk and Joosten, Rieks

Subjects
Computer Science - Cryptography and Security
Abstract

Proper privacy protection in RFID systems is important. However, many of the schemes known are impractical, either because they use hash functions instead of the more hardware efficient symmetric encryption schemes as a efficient cryptographic primitive, or because they incur a rather costly key search time penalty at the reader. Moreover, they do not allow for dynamic, fine-grained access control to the tag that cater for more complex usage scenarios. In this paper we investigate such scenarios, and propose a model and corresponding privacy friendly protocols for efficient and fine-grained management of access permissions to tags. In particular we propose an efficient mutual authentication protocol between a tag and a reader that achieves a reasonable level of privacy, using only symmetric key cryptography on the tag, while not requiring a costly key-search algorithm at the reader side. Moreover, our protocol is able to recover from stolen readers., Comment: 18 pages

Published
2009

21. Client-Server Password Recovery (Extended Abstract)

Author

Chmielewski, Łukasz, Hoepman, Jaap-Henk, and van Rossum, Peter

Subjects
Computer Science - Cryptography and Security
Abstract

Human memory is not perfect - people constantly memorize new facts and forget old ones. One example is forgetting a password, a common problem raised at IT help desks. We present several protocols that allow a user to automatically recover a password from a server using partial knowledge of the password. These protocols can be easily adapted to the personal entropy setting, where a user can recover a password only if he can answer a large enough subset of personal questions. We introduce client-server password recovery methods, in which the recovery data are stored at the server, and the recovery procedures are integrated into the login procedures. These methods apply to two of the most common types of password based authentication systems. The security of these solutions is significantly better than the security of presently proposed password recovery schemes. Our protocols are based on a variation of threshold encryption that may be of independent interest.

Published
2009

22. Private Handshakes

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security
Abstract

Private handshaking allows pairs of users to determine which (secret) groups they are both a member of. Group membership is kept secret to everybody else. Private handshaking is a more private form of secret handshaking, because it does not allow the group administrator to trace users. We extend the original definition of a handshaking protocol to allow and test for membership of multiple groups simultaneously. We present simple and efficient protocols for both the single group and multiple group membership case. Private handshaking is a useful tool for mutual authentication, demanded by many pervasive applications (including RFID) for privacy. Our implementations are efficient enough to support such usually resource constrained scenarios.

Published
2008

23. A Practical Attack on the MIFARE Classic

Author

Gans, Gerhard de Koning, Hoepman, Jaap-Henk, and Garcia, Flavio D.

Subjects
Computer Science - Cryptography and Security
Abstract

The MIFARE Classic is the most widely used contactless smart card in the market. Its design and implementation details are kept secret by its manufacturer. This paper studies the architecture of the card and the communication protocol between card and reader. Then it gives a practical, low-cost, attack that recovers secret information from the memory of the card. Due to a weakness in the pseudo-random generator, we are able to recover the keystream generated by the CRYPTO1 stream cipher. We exploit the malleability of the stream cipher to read all memory blocks of the first sector of the card. Moreover, we are able to read any sector of the memory of the card, provided that we know one memory block within this sector. Finally, and perhaps more damaging, the same holds for modifying memory blocks.

Published
2008

24. Distributed Double Spending Prevention

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security
Abstract

We study the problem of preventing double spending in electronic payment schemes in a distributed fashion. This problem occurs, for instance, when the spending of electronic coins needs to be controlled by a large collection of nodes (eg. in a peer-to-peer (P2P) system) instead of one central bank. Contrary to the commonly held belief that this is fundamentally impossible, we propose several solutions that do achieve a reasonable level of double spending prevention, and analyse their efficiency under varying assumptions., Comment: 15th Int. Workshop on Security Protocols, 2007 (to appear)

Published
2008

25. The Ephemeral Pairing Problem

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security
Abstract

In wireless ad-hoc broadcast networks the pairing problem consists of establishing a (long-term) connection between two specific physical nodes in the network that do not yet know each other. We focus on the ephemeral version of this problem. Ephemeral pairings occur, for example, when electronic business cards are exchanged between two people that meet, or when one pays at a check-out using a wireless wallet. This problem can, in more abstract terms, be phrased as an ephemeral key exchange problem: given a low bandwidth authentic (or private) communication channel between two nodes, and a high bandwidth broadcast channel, can we establish a high-entropy shared secret session key between the two nodes without relying on any a priori shared secret information. Apart from introducing this new problem, we present several ephemeral key exchange protocols, both for the case of authentic channels as well as for the case of private channels.

Published
2008

26. Crossing Borders: Security and Privacy Issues of the European e-Passport

Author

Hoepman, Jaap-Henk, Hubbers, Engelbert, Jacobs, Bart, Oostdijk, Martijn, and Schreur, Ronny Wichers

Subjects
Computer Science - Cryptography and Security, Computer Science - Computers and Society
Abstract

The first generation of European e-passports will be issued in 2006. We discuss how borders are crossed regarding the security and privacy erosion of the proposed schemes, and show which borders need to be crossed to improve the security and the privacy protection of the next generation of e-passports. In particular we discuss attacks on Basic Access Control due to the low entropy of the data from which the access keys are derived, we sketch the European proposals for Extended Access Control and the weaknesses in that scheme, and show how fundamentally different design decisions can make e-passports more secure.

Published
2008

27. Increased security through open source

Author

Hoepman, Jaap-Henk and Jacobs, Bart

Subjects
Computer Science - Cryptography and Security, Computer Science - Computers and Society, Computer Science - Software Engineering
Abstract

In this paper we discuss the impact of open source on both the security and transparency of a software system. We focus on the more technical aspects of this issue, combining and extending arguments developed over the years. We stress that our discussion of the problem only applies to software for general purpose computing systems. For embedded systems, where the software usually cannot easily be patched or upgraded, different considerations may apply.

Published
2008

28. Fuzzy Private Matching (Extended Abstract)

Author

Chmielewski, Łukasz and Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security
Abstract

In the private matching problem, a client and a server each hold a set of $n$ input elements. The client wants to privately compute the intersection of these two sets: he learns which elements he has in common with the server (and nothing more), while the server gains no information at all. In certain applications it would be useful to have a private matching protocol that reports a match even if two elements are only similar instead of equal. Such a private matching protocol is called \emph{fuzzy}, and is useful, for instance, when elements may be inaccurate or corrupted by errors. We consider the fuzzy private matching problem, in a semi-honest environment. Elements are similar if they match on $t$ out of $T$ attributes. First we show that the original solution proposed by Freedman et al. is incorrect. Subsequently we present two fuzzy private matching protocols. The first, simple, protocol has bit message complexity $O(n \binom{T}{t} (T \log{|D|}+k))$. The second, improved, protocol has a much better bit message complexity of $O(n T (\log{|D|}+k))$, but here the client incurs a O(n) factor time complexity. Additionally, we present protocols based on the computation of the Hamming distance and on oblivious transfer, that have different, sometimes more efficient, performance characteristics.

Published
2007

29. Simple Distributed Weighted Matchings

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Distributed, Parallel, and Cluster Computing, Computer Science - Discrete Mathematics
Abstract

Wattenhofer [WW04] derive a complicated distributed algorithm to compute a weighted matching of an arbitrary weighted graph, that is at most a factor 5 away from the maximum weighted matching of that graph. We show that a variant of the obvious sequential greedy algorithm [Pre99], that computes a weighted matching at most a factor 2 away from the maximum, is easily distributed. This yields the best known distributed approximation algorithm for this problem so far.

Published
2004

30. Spam filter analysis

Author

Garcia, Flavio D. and Hoepman, Jaap-Henk

Subjects
Computer Science - Cryptography and Security, D.4.6, I.5.1, I.5.4, K.6.5
Abstract

Unsolicited bulk email (aka. spam) is a major problem on the Internet. To counter spam, several techniques, ranging from spam filters to mail protocol extensions like hashcash, have been proposed. In this paper we investigate the effectiveness of several spam filtering techniques and technologies. Our analysis was performed by simulating email traffic under different conditions. We show that genetic algorithm based spam filters perform best at server level and naive Bayesian filters are the most appropriate for filtering at user level., Comment: Submitted to SEC 2004

Published
2004

31. Self-stabilizing mutual exclusion on a ring, even if K=N

Author

Hoepman, Jaap-Henk

Subjects
Computer Science - Distributed, Parallel, and Cluster Computing, D.4.5, D.1.3
Abstract

We show that, contrary to common belief, Dijkstra's self-stabilizing mutual exclusion algorithm on a ring [Dij74,Dij82] also stabilizes when the number of states per node is one less than the number of nodes on the ring., Comment: 2 pages

Published
1999

32. Space-Efficient Routing Tables for Almost All Networks and the Incompressibility Method

Author

Buhrman, Harry, Hoepman, Jaap-Henk, and Vitanyi, Paul

Subjects
Computer Science - Distributed, Parallel, and Cluster Computing, Computer Science - Hardware Architecture, Computer Science - Computational Complexity, Computer Science - Data Structures and Algorithms, Computer Science - Networking and Internet Architecture, C.2, F.2, D.4
Abstract

We use the incompressibility method based on Kolmogorov complexity to determine the total number of bits of routing information for almost all network topologies. In most models for routing, for almost all labeled graphs $\Theta (n^2)$ bits are necessary and sufficient for shortest path routing. By `almost all graphs' we mean the Kolmogorov random graphs which constitute a fraction of $1-1/n^c$ of all graphs on $n$ nodes, where $c > 0$ is an arbitrary fixed constant. There is a model for which the average case lower bound rises to $\Omega(n^2 \log n)$ and another model where the average case upper bound drops to $O(n \log^2 n)$. This clearly exposes the sensitivity of such bounds to the model under consideration. If paths have to be short, but need not be shortest (if the stretch factor may be larger than 1), then much less space is needed on average, even in the more demanding models. Full-information routing requires $\Theta (n^3)$ bits on average. For worst-case static networks we prove a $\Omega(n^2 \log n)$ lower bound for shortest path routing and all stretch factors $<2$ in some networks where free relabeling is not allowed., Comment: 19 pages, Latex, 1 table, 1 figure; SIAM J. Comput., To appear

Published
1999

33. Mutual Search

Author

Buhrman, Harry, Franklin, Matthew, Garay, Juan A., Hoepman, Jaap-Henk, Tromp, John, and Vitanyi, Paul

Subjects
Computer Science - Data Structures and Algorithms, Computer Science - Computational Complexity, Computer Science - Databases, Computer Science - Distributed, Parallel, and Cluster Computing, Computer Science - Discrete Mathematics, Computer Science - Information Retrieval, F.2,C.2,E,1,D.4.4
Abstract

We introduce a search problem called ``mutual search'' where $k$ \agents, arbitrarily distributed over $n$ sites, are required to locate one another by posing queries of the form ``Anybody at site $i$?''. We ask for the least number of queries that is necessary and sufficient. For the case of two \agents using deterministic protocols we obtain the following worst-case results: In an oblivious setting (where all pre-planned queries are executed) there is no savings: $n-1$ queries are required and are sufficient. In a nonoblivious setting we can exploit the paradigm of ``no news is also news'' to obtain significant savings: in the synchronous case $0.586n$ queries suffice and $0.536n$ queries are required; in the asynchronous case $0.896n$ queries suffice and a fortiori 0.536 queries are required; for $o(\sqrt{n})$ \agents using a deterministic protocol less than $n$ queries suffice; there is a simple randomized protocol for two \agents with worst-case expected $0.5n$ queries and all randomized protocols require at least $0.125n$ worst-case expected queries. The graph-theoretic framework we formulate for expressing and analyzing algorithms for this problem may be of independent interest., Comment: 18 pages, Latex, 5 figures, J. Assoc. Comp. Mach., To appear

Published
1999

34. The Self-blindable U-Prove Scheme from FC’14 Is Forgeable (Short Paper)

Author

Verheul, Eric, Ringers, Sietse, Hoepman, Jaap-Henk, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Grossklags, Jens, editor, and Preneel, Bart, editor

Published
2017
Full Text
View/download PDF

35. An Efficient Self-blindable Attribute-Based Credential Scheme

Author

Ringers, Sietse, Verheul, Eric, Hoepman, Jaap-Henk, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, and Kiayias, Aggelos, editor

Published
2017
Full Text
View/download PDF

39. Report on the Workshop on Assessing the Maturity of Privacy Enhancing Technologies

Author

Hansen, Marit, Hoepman, Jaap-Henk, Jensen, Meiko, Schiffner, Stefan, Rannenberg, Kai, Editor-in-chief, Sakarovitch, Jacques, Series editor, Goedicke, Michael, Series editor, Tatnall, Arthur, Series editor, Neuhold, Erich J., Series editor, Pras, Aiko, Series editor, Tröltzsch, Fredi, Series editor, Pries-Heje, Jan, Series editor, Whitehouse, Diane, Series editor, Reis, Ricardo, Series editor, Murayama, Yuko, Series editor, Furbach, Ulrich, Series editor, Gulliksen, Jan, Series editor, Rauterberg, Matthias, Series editor, Aspinall, David, editor, Camenisch, Jan, editor, Hansen, Marit, editor, Fischer-Hübner, Simone, editor, and Raab, Charles, editor

Published
2016
Full Text
View/download PDF

40. Revocable Privacy: Principles, Use Cases, and Technologies

Author

Lueks, Wouter, Everts, Maarten H., Hoepman, Jaap-Henk, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Berendt, Bettina, editor, Engel, Thomas, editor, Ikonomou, Demosthenes, editor, Le Métayer, Daniel, editor, and Schiffner, Stefan, editor

Published
2016
Full Text
View/download PDF

41. Towards Measuring Maturity of Privacy-Enhancing Technologies

Author

Hansen, Marit, Hoepman, Jaap-Henk, Jensen, Meiko, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Berendt, Bettina, editor, Engel, Thomas, editor, Ikonomou, Demosthenes, editor, Le Métayer, Daniel, editor, and Schiffner, Stefan, editor

Published
2016
Full Text
View/download PDF

42. Fast Revocation of Attribute-Based Credentials for Both Users and Verifiers

Author

Lueks, Wouter, Alpár, Gergely, Hoepman, Jaap- Henk, Vullers, Pim, Rannenberg, Kai, Editor-in-chief, Sakarovitch, Jacques, Series editor, Goedicke, Michael, Series editor, Tatnall, Arthur, Series editor, Neuhold, Erich J., Series editor, Pras, Aiko, Series editor, Tröltzsch, Fredi, Series editor, Pries-Heje, Jan, Series editor, Whitehouse, Diane, Series editor, Reis, Ricardo, Series editor, Murayama, Yuko, Series editor, Dillon, Tharam, Series editor, Gulliksen, Jan, Series editor, Rauterberg, Matthias, Series editor, Federrath, Hannes, editor, and Gollmann, Dieter, editor

Published
2015
Full Text
View/download PDF

43. On Linkability and Malleability in Self-blindable Credentials

Author

Hoepman, Jaap-Henk, Lueks, Wouter, Ringers, Sietse, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Akram, Raja Naeem, editor, and Jajodia, Sushil, editor

Published
2015
Full Text
View/download PDF

45. Non-Interactive Privacy-Preserving Sybil-Free Authentication Scheme in VANETs

Author

Akil, Mahdi, Martucci, Leonardo, Hoepman, Jaap-Henk, Akil, Mahdi, Martucci, Leonardo, and Hoepman, Jaap-Henk

Abstract

In vehicular ad hoc networks (VANETs), vehicles exchange messages to improve traffic and passengers’ safety. In VANETs, (passive) adversaries can track vehicles (and their drivers) by analyzing the data exchanged in the network. The use of privacy-enhancing technologies can prevent vehicle tracking but solutions so far proposed either require an intermittent connection to a fixed infrastructure or allow vehicles to generate concurrent pseudonyms which could lead to identity-based (Sybil) attacks. In this paper, we propose an anonymous authentication scheme that does not require a connection to a fixed infrastructure during operation and is not vulnerable to Sybil attacks. Our scheme is built on attribute-based credentials and short lived pseudonyms. In it, vehicles interact with a central authority only once, for registering themselves, and then generate their own pseudonyms without interacting with other devices, or relying on a central authority or a trusted third party. The pseudonyms are periodically refreshed, following system wide epochs.

Published
2023
Full Text
View/download PDF

47. High-Speed Dating Privacy-Preserving Attribute Matching for RFID

Author

Batina, Lejla, Hermans, Jens, Hoepman, Jaap-Henk, Krasnova, Anna, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Saxena, Nitesh, editor, and Sadeghi, Ahmad-Reza, editor

Published
2014
Full Text
View/download PDF

48. Towards a Full-Featured Implementation of Attribute Based Credentials on Smart Cards

Author

de la Piedra, Antonio, Hoepman, Jaap-Henk, Vullers, Pim, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Kobsa, Alfred, Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Gritzalis, Dimitris, editor, Kiayias, Aggelos, editor, and Askoxylakis, Ioannis, editor

Published
2014
Full Text
View/download PDF

49. Forward-Secure Distributed Encryption

Author

Lueks, Wouter, Hoepman, Jaap-Henk, Kursawe, Klaus, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Kobsa, Alfred, Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, De Cristofaro, Emiliano, editor, and Murdoch, Steven J., editor

Published
2014
Full Text
View/download PDF

Catalog

Books, media, physical & digital resources
See catalog results