Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation

Felix Hörandner; Bernd Prünster

doi:10.5220/0010543301490160

Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation

Felix Hörandner, Bernd Prünster

Institute of Applied Information Processing and Communications (7050)

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Digital twins, i.e., up-to-date digital copies of a physical object maintained in the cloud, make it possible to conveniently review a physical object’s state, indirectly interact with the physical object, or perform computations on the object’s state and history – also in combination with data from other digital twins. The concept of digital twins has seen wide uptake in Internet of Things use cases, e.g., in manufacturing to monitor a product’s lifecycle, or precision medicine to provide personalized treatment. Besides these benefits, challenges arise, especially if the involved data producers, clouds and data consumers are not in the same trusted domain: Who owns and controls the data? Are the parties (e.g., cloud) sufficiently trusted to handle privacy-sensitive data? In this work, we propose ARMOREDTWINS, i.e., a system for digital twins that protects the confidentiality of digital twin data while providing flexible and fine-grained sharing by employing key-policy conditional proxy re-encryption to enable processing on subsets of the data. Alternatively, to support computation on very sensitive data, our system integrates secure multi-party computation, which does not reveal the data items to the individual nodes performing the computation. Benchmarks of our implementation highlight the system’s feasibility and practical performance.

Original language	English
Title of host publication	Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021
Editors	Sabrina De Capitani di Vimercati, Pierangela Samarati
Publisher	SciTePress 2013
Pages	149-160
Number of pages	12
ISBN (Electronic)	9789897585241
DOIs	https://doi.org/10.5220/0010543301490160
Publication status	Published - 2021
Event	18th International Conference on Security and Cryptography, SECRYPT 2021 - Virtual, Online Duration: 6 Jul 2021 → 8 Jul 2021

Publication series

Name	Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021

Conference

Conference	18th International Conference on Security and Cryptography, SECRYPT 2021
City	Virtual, Online
Period	6/07/21 → 8/07/21

Keywords

Digital Twin
Fine-Grained Access Control
Multi-Party Computation
Proxy Re-Encryption
Recovery

ASJC Scopus subject areas

Computer Networks and Communications
Information Systems
Communication

Access to Document

10.5220/0010543301490160

Armored TwinsAccepted author manuscript, 4.43 MB

Cite this

Hörandner, F., & Prünster, B. (2021). Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation. In S. D. C. di Vimercati, & P. Samarati (Eds.), Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021 (pp. 149-160). (Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021). SciTePress 2013. https://doi.org/10.5220/0010543301490160

Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation. / Hörandner, Felix; Prünster, Bernd.
Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021. ed. / Sabrina De Capitani di Vimercati; Pierangela Samarati. SciTePress 2013, 2021. p. 149-160 (Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021).

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Hörandner, F & Prünster, B 2021, Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation. in SDC di Vimercati & P Samarati (eds), Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021. Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021, SciTePress 2013, pp. 149-160, 18th International Conference on Security and Cryptography, SECRYPT 2021, Virtual, Online, 6/07/21. https://doi.org/10.5220/0010543301490160

Hörandner F, Prünster B. Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation. In di Vimercati SDC, Samarati P, editors, Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021. SciTePress 2013. 2021. p. 149-160. (Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021). doi: 10.5220/0010543301490160

Hörandner, Felix ; Prünster, Bernd. / Armored twins : Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation. Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021. editor / Sabrina De Capitani di Vimercati ; Pierangela Samarati. SciTePress 2013, 2021. pp. 149-160 (Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021).

@inproceedings{c7a920067b0f47e38a44fd3f10f8a7d6,

title = "Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation",

abstract = "Digital twins, i.e., up-to-date digital copies of a physical object maintained in the cloud, make it possible to conveniently review a physical object{\textquoteright}s state, indirectly interact with the physical object, or perform computations on the object{\textquoteright}s state and history – also in combination with data from other digital twins. The concept of digital twins has seen wide uptake in Internet of Things use cases, e.g., in manufacturing to monitor a product{\textquoteright}s lifecycle, or precision medicine to provide personalized treatment. Besides these benefits, challenges arise, especially if the involved data producers, clouds and data consumers are not in the same trusted domain: Who owns and controls the data? Are the parties (e.g., cloud) sufficiently trusted to handle privacy-sensitive data? In this work, we propose ARMOREDTWINS, i.e., a system for digital twins that protects the confidentiality of digital twin data while providing flexible and fine-grained sharing by employing key-policy conditional proxy re-encryption to enable processing on subsets of the data. Alternatively, to support computation on very sensitive data, our system integrates secure multi-party computation, which does not reveal the data items to the individual nodes performing the computation. Benchmarks of our implementation highlight the system{\textquoteright}s feasibility and practical performance.",

keywords = "Digital Twin, Fine-Grained Access Control, Multi-Party Computation, Proxy Re-Encryption, Recovery",

author = "Felix H{\"o}randner and Bernd Pr{\"u}nster",

year = "2021",

doi = "10.5220/0010543301490160",

language = "English",

series = "Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021",

publisher = "SciTePress 2013",

pages = "149--160",

editor = "{di Vimercati}, {Sabrina De Capitani} and Pierangela Samarati",

booktitle = "Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021",

note = "18th International Conference on Security and Cryptography, SECRYPT 2021 ; Conference date: 06-07-2021 Through 08-07-2021",

}

TY - GEN

T1 - Armored twins

T2 - 18th International Conference on Security and Cryptography, SECRYPT 2021

AU - Hörandner, Felix

AU - Prünster, Bernd

PY - 2021

Y1 - 2021

N2 - Digital twins, i.e., up-to-date digital copies of a physical object maintained in the cloud, make it possible to conveniently review a physical object’s state, indirectly interact with the physical object, or perform computations on the object’s state and history – also in combination with data from other digital twins. The concept of digital twins has seen wide uptake in Internet of Things use cases, e.g., in manufacturing to monitor a product’s lifecycle, or precision medicine to provide personalized treatment. Besides these benefits, challenges arise, especially if the involved data producers, clouds and data consumers are not in the same trusted domain: Who owns and controls the data? Are the parties (e.g., cloud) sufficiently trusted to handle privacy-sensitive data? In this work, we propose ARMOREDTWINS, i.e., a system for digital twins that protects the confidentiality of digital twin data while providing flexible and fine-grained sharing by employing key-policy conditional proxy re-encryption to enable processing on subsets of the data. Alternatively, to support computation on very sensitive data, our system integrates secure multi-party computation, which does not reveal the data items to the individual nodes performing the computation. Benchmarks of our implementation highlight the system’s feasibility and practical performance.

AB - Digital twins, i.e., up-to-date digital copies of a physical object maintained in the cloud, make it possible to conveniently review a physical object’s state, indirectly interact with the physical object, or perform computations on the object’s state and history – also in combination with data from other digital twins. The concept of digital twins has seen wide uptake in Internet of Things use cases, e.g., in manufacturing to monitor a product’s lifecycle, or precision medicine to provide personalized treatment. Besides these benefits, challenges arise, especially if the involved data producers, clouds and data consumers are not in the same trusted domain: Who owns and controls the data? Are the parties (e.g., cloud) sufficiently trusted to handle privacy-sensitive data? In this work, we propose ARMOREDTWINS, i.e., a system for digital twins that protects the confidentiality of digital twin data while providing flexible and fine-grained sharing by employing key-policy conditional proxy re-encryption to enable processing on subsets of the data. Alternatively, to support computation on very sensitive data, our system integrates secure multi-party computation, which does not reveal the data items to the individual nodes performing the computation. Benchmarks of our implementation highlight the system’s feasibility and practical performance.

KW - Digital Twin

KW - Fine-Grained Access Control

KW - Multi-Party Computation

KW - Proxy Re-Encryption

KW - Recovery

UR - http://www.scopus.com/inward/record.url?scp=85111859175&partnerID=8YFLogxK

U2 - 10.5220/0010543301490160

DO - 10.5220/0010543301490160

M3 - Conference paper

AN - SCOPUS:85111859175

T3 - Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021

SP - 149

EP - 160

BT - Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021

A2 - di Vimercati, Sabrina De Capitani

A2 - Samarati, Pierangela

PB - SciTePress 2013

Y2 - 6 July 2021 through 8 July 2021

ER -

Armored twins: Flexible privacy protection for digital twins through conditional proxy re-encryption and multi-party computation

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

A-SIT - Secure Information Technology Center Austria