tim@ut:~$ sudo -u employee apt-get install phd
[sudo] 👤 employee ⚿ tim@ut: 
(Reading database ... 100%)
0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.

Research

During my PhD research, I was working for the CRIPTIM project at the University of Twente in the Netherlands.

Critical infrastructure protection (CIP) mechanisms are commonly based on complex models of interdependencies between the many operators in our critical infrastructure. Particularly due to the rapid emergence of new cyber threats, the sharing of incident information is indispensable for the functioning of such mechanisms. However, the high sensitivity of this information prevents operators from sharing it.

CRIPTIM introduces the new paradigm of cryptographic incident management for CIP that ensures data confidentiality with cryptographic guarantees, thereby reducing the operators' fears of information leakage. The underlying idea is to monitor and analyze incident data in the encrypted domain, while an alarm is set off only when a certain failure or alarm state is detected. The subsequent alarm resolution is facilitated through novel access control mechanisms for the selective disclosure of alarm-related information. CRIPTIM realizes this paradigm by developing novel custom-tailored cryptographic techniques in secure multi-party computation (MPC), homomorphic encryption (HE), and functional encryption (FE), as well as oblivious RAM (ORAM). The intended technology will, for the first time, allow external parties to feed threat-related confidential information into the monitoring system which may be the missing piece for the early detection of potentially major disasters.

CRIPTIM sets the foundations for this innovative approach to CIP and contributes to an effective and confidential incident management that leads to a more secure and reliable critical infrastructure.

The CRIPTIM project is funded by Nederlandse Organisatie voor Wetenschappelijk Onderzoek (NWO).

Publications

[Kam20]: T. R. van de Kamp. “Multi-client Functional Encryption for Controlled Data Sharing.” PhD thesis. University of Twente, Feb. 21, 2020. 150 pp. ISBN: 978-90-365-4958-5. DOI: 10.3990/1.9789036549585.; [PDF] [Biblatex] [BibTeX]
[KPJ19]: T. R. van de Kamp, A. Peter, and W. Jonker. “A Multi-authority Approach to Various Predicate Encryption Types.” In: Designs, Codes and Cryptography (DESI) 88.2 (Oct, 2019), pp. 363–390. ISSN: 0925-1022. DOI: 10.1007/s10623-019-00686-x.; [PDF] [Biblatex] [BibTeX]
[KSJ⁺19]: T. R. van de Kamp, D. Stritzl, W. Jonker, and A. Peter. “Two-Client and Multi-client Functional Encryption for Set Intersection.” In: ACISP ’19. (Christchurch, New Zealand, Jul. 3–5, 2019). Cham, Switzerland: Springer, 2019, pp. 97–115. ISBN: 978-3-030-21547-7. DOI: 10.1007/978-3-030-21548-4_6.; [PDF] [presentation] [Biblatex] [BibTeX]
[KPE⁺17]: T. R. van de Kamp, A. Peter, M. H. Everts, and W. Jonker. “Multi-client Predicate-Only Encryption for Conjunctive Equality Tests.” In: CANS ’17. (Hong Kong, China, Nov. 30–Dec. 2, 2017). Cham, Switzerland: Springer, 2018, pp. 135–157. ISBN: 978-3-030-02641-7. DOI: 10.1007/978-3-030-02641-7_7.; [PDF] [presentation] [Biblatex] [BibTeX]
[KPE⁺16]: T. R. van de Kamp, A. Peter, M. H. Everts, and W. Jonker. “Private Sharing of IOCs and Sightings.” In: WISCS ’16. (Vienna, Austria, Oct. 24, 2016). New York, NY, USA: ACM, 2016, pp. 35–38. ISBN: 978-1-4503-4565-1. DOI: 10.1145/2994539.2994544.; [PDF] [presentation] [Biblatex] [BibTeX]