End-to-End Post-Quantum Cryptography Encryption Protocol for Video Conferencing System Based on Government Public Key Infrastructure-Reference-Cited by-同舟云学术

End-to-End Post-Quantum Cryptography Encryption Protocol for Video Conferencing System Based on Government Public Key Infrastructure

Published:2023-07-14 Issue:4 Volume:6 Page:66
ISSN:2571-5577
Container-title:Applied System Innovation
language:en
Short-container-title:ASI

Author:

Park Yeongjae¹,Yoo Hyeondo¹,Ryu Jieun¹,Choi Young-Rak¹,Kang Ju-Sung²,Yeom Yongjin²

Affiliation:

1. Department of Financial Information Security, Kookmin University, Seoul 02707, Republic of Korea

2. Department of Information Security, Cryptology, and Mathematics, Kookmin University, Seoul 02707, Republic of Korea

Abstract

Owing to the expansion of non-face-to-face activities, security issues in video conferencing systems are becoming more critical. In this paper, we focus on the end-to-end encryption (E2EE) function among the security services of video conferencing systems. First, the E2EE-related protocols of Zoom and Secure Frame (SFrame), which are representative video conferencing systems, are thoroughly investigated, and the two systems are compared and analyzed from the overall viewpoint. Next, the E2EE protocol in a Government Public Key Infrastructure (GPKI)-based video conferencing system, in which the user authentication mechanism is fundamentally different from those used in commercial sector systems such as Zoom and SFrame, is considered. In particular, among E2EE-related protocols, we propose a detailed mechanism in which the post-quantum cryptography (PQC) key encapsulation mechanism (KEM) is applied to the user key exchange process. Since the session key is not disclosed to the central server, even in futuristic quantum computers, the proposed mechanism, which includes the PQC KEM, still satisfies the E2EE security requirements in the quantum environment. Moreover, our GPKI-based mechanism induces the effect of enhancing the security level of the next-generation video conferencing systems up to a quantum-safe level.

Funder

Institute of Information & Communications Technology Planning & Evaluation (IITP) grant funded by the Korean government

Publisher

MDPI AG

Subject

Artificial Intelligence,Applied Mathematics,Industrial and Manufacturing Engineering,Human-Computer Interaction,Information Systems,Control and Systems Engineering

Link

https://www.mdpi.com/2571-5577/6/4/66/pdf

Reference17 articles.

1. End-to-End security: When do we have it?;Menezes;IEEE Secur. Priv.,2021

2. Blum, J., Booth, S., Chen, B., Gal, O., Krohn, M., Len, J., Lyons, K., Marcedone, A., Maxim, M., and Mou, M.E. (2022, November 22). E2E Encryption for Zoom Meetings v3.2. Available online: https://css.csail.mit.edu/6.858/2023/readings/zoom_e2e_v3_2.pdf.

3. Omara, E., Uberti, J., Murillo, S.G., Barnes, R., and Fablet, Y. (2022, September 24). Secure Frame (SFrame): Draft-Ietf-Sframe-enc-00. Available online: https://datatracker.ietf.org/doc/draft-ietf-sframe-enc/00/.

4. Barnes, R., Beurdouche, B., Robert, R., Millican, J., Omara, E., and Cohn-Gordon, K. (2022, December 08). The Messaging Layer Security (MLS) Protocol: Draft-Ietf-Mls-Protocol-16. Available online: https://datatracker.ietf.org/doc/draft-ietf-mls-protocol/16/.

5. Isobe, T., Ito, R., and Minematsu, K. (2021, January 4–8). Security Analysis of SFrame. Proceedings of the ESORICS 2021, Darmstadt, Germany.