Open synctext opened 1 year ago
btw please register today at: https://mare.ewi.tudelft.nl/ "decentralised learning" as the draft thesis project title. Me as advisor please. (just a tentative commitment, gives me teaching credits)
Status: Survey started, looked at the code of wallet and read provided papers.
Read the following (10) papers and started on a draft survey paper:
PB-PKI: a privacy-aware blockchain-based PKI - ORA - Oxford University Research Archive
An overview of PKI trust models
A blockchain-based PKI management framework
Ten risks of PKI: What you're not being told about public key infrastructure
J-PAKE: authenticated key exchange without PKI
Implementing SSL/TLS using cryptography and PKI
Efficient Certificateless One-Pass Key Agreement Protocols
Design, analysis, and implementation of ARPKI: an attack-resilient public-key infrastructure
The plan is to survey several PKI designs, some alternatives to classic PK I such as the blockchain-based one, and then some alternatives which claim they'd make PKI redundant (such as the PAKE protocol). I'm planning to compare them in a table as above on several factors (such as security guarantees, ease of setting up in practice etc). I hope to be able to even implement one of these for the purpose of the survey.
I have started writing a draft literature survey paper and I'm looking for validation of the overall direction and storyline.
panoramic view of the academic, technological, and practical landscape surrounding public key cryptography and its integration into digital infrastructure
Solid idea :rocket: Blaise de Vigen`ere created a more complex polyalphabetic cipher
Please remove all analogue technology. Focus on digital era only, feel free to replace with citation to historical books.update eIDAS 2.0 EU PKI for its 448 million citizens and pushback, Article 45 protest
Progress after 3 weeks of reading/researching. And 1 week of writing
The gold standard for securing our digital content – the password – is being phased out in favor of more secure "passwordless" authentication forms.
, https://www.statista.com/topics/10883/passkeys/Try | fail |
---|---|
![]() |
![]() |
Talk about the passkey storage war? Who controls the users password?
Update December 12th
Progress: 90% done Survey_on_PKC_ATitu (1).pdf
Still needs to happen:
Think of more advanced taxonomy table please Table 1: Solution evaluation table.
Ready for grading next meeting ??? :monocle_face:
Lacks an analysis: why are we failing for 53 years? Brainstorm
Please investigate if you agree with my analysis:
2.5 Required Infrastructure
does not mention any profit motive. Big Tech seeks out durable monopolies to extract profit? See courtcase outcome today of Google versus Epic games :monocle_face: {discussed thesis options, beside 100% contract; 1 course left}
9th January: Survey_on_PKC_ATitu (1)-1.pdf
From 12Dec - 9Jan not much progress was made. Only few lines added. Hopefully you can make more progress next sprint. (brainstorm) Making storyline more complex and wrap-up. Authenticate to your friends, e-commerce website, government, or the company you work for.
54 years of evolution survey.pdf
Final version of literature survey - ready for grading.
3.5.1 Passwordless and FIDO Alliance
All the user needs to do is to provide their fingerprint (or any form of biometric authentication the device supports) or device password, when prompted for it.
Survey plus thesis placeholder. Still exploring directions for research. starting survey today :joy_cat: Due to permanent job msc time is limited to 4 hours/workday. (part-time not allowed US culture)
Committed of doing Survey in this Q4 quarter. For Sep 2023 still 2 master courses left.
More on passport-level digital identity. Warning given :smile_cat: "this is complex stuff". identity is the foundation of trust in the old analog world. Please make a reading list about SSI, EBSI, EBP and eIDAS2
please note the survey @ Tribler lab methodology: https://github.com/Tribler/tribler/wiki/MasterThesis#10-ects-literature-survey-at-tribler-lab (e.g. try out all known open source wallets for suvey and grade them with stong/weak analysis in a table with screenshots { https://walt.id/ebsi ; https://github.com/walt-id })
update: government approved an EBSI intership