Malicious Entities are in Vain: Preserving Privacy in Publish and Subscribe Systems

Shujie Cui, Sana Belguith, Pramodya De Alwis, Muhammad Rizwan Asghar, Giovanni Russello
2018 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)  
M alicio u s e n ti ti e s a r e in v ai n : p r e s e r vi n g p riv a cy in p u blis h a n d s u b s c ri b e sy s t e m s C ui, S, B el g ui t h, S, D e Alwis, P, Asg h ar, M R a n d R u s s ello, G h t t p:// dx. d oi.o r g/ 1 0. 1 1 0 9/T r u s t C o m/BigD a t a S E. 2 0 1 8. 0 0 2 3 8 Ti t l e M alicio u s e n ti ti e s a r e in v ai n : p r e s e r vi n g p riv a cy in p u blis h a n d s u b s c ri b e sy s t e m s A u t h o r s C ui, S, B el g ui t h, S, D e Alwis, P, Asg h ar, M R a n
more » ... d R u s s ello, G Typ e Articl e U RL This ve r sio n is a v ail a bl e a t : h t t p:// u sir.s alfo r d. a c. u k/id/ e p ri n t/ 5 1 3 6 9/ P u b l i s h e d D a t e 2 0 1 8 U SIR is a di git al c oll e c tio n of t h e r e s e a r c h o u t p u t of t h e U niv e r si ty of S alfo r d. W h e r e c o py ri g h t p e r mi t s, full t e x t m a t e ri al h el d in t h e r e p o si to ry is m a d e fr e ely a v ail a bl e o nli n e a n d c a n b e r e a d , d o w nlo a d e d a n d c o pi e d fo r n o nc o m m e r ci al p riv a t e s t u dy o r r e s e a r c h p u r p o s e s . Pl e a s e c h e c k t h e m a n u s c ri p t fo r a n y fu r t h e r c o py ri g h t r e s t ri c tio n s. Fo r m o r e info r m a tio n, in cl u di n g o u r p olicy a n d s u b mi s sio n p r o c e d u r e , pl e a s e c o n t a c t t h e R e p o si to ry Te a m a t: u si r@ s alfo r d. a c. u k . Abstract-Publish and subscribe (pub/sub) system is a decoupled communication paradigm that allows routing of publications. Through a set of dedicated third party servers, referred to as brokers, publications are disseminated without establishing any link between publishers and subscribers. However, the involvement of these brokers raises security and privacy issues as they can harvest sensitive data about subscribers. Furthermore, a malicious broker may collude with malicious subscribers and/or publishers to infer subscribers' interests. Our solution is such that subscribers' interests are not revealed to curious brokers and published data can only be accessed by the authorised subscribers. Moreover, the proposed protocol is secure against the collusion attacks between malicious brokers, publishers, and subscribers.
doi:10.1109/trustcom/bigdatase.2018.00238 dblp:conf/trustcom/CuiBAAR18 fatcat:mrdrym5rsrbcfjccignwuthybe