Integrated security infrastructures for law enforcement agencies Articles uri icon

authors

  • STOIANOV, NIKOLAI
  • NIEMIEC, MARCIN
  • MACHNIK, PETR
  • MAESTRO, GEMA

publication date

  • June 2013

start page

  • 4453

end page

  • 4468

issue

  • 12

volume

  • 74

International Standard Serial Number (ISSN)

  • 1380-7501

Electronic International Standard Serial Number (EISSN)

  • 1573-7721

abstract

  • This paper provides an overview of the security architecture for Law Enforcement Agencies (LEAs) designed by the INDECT project, and in particular the security infrastructures that have been deployed so far. These security infrastructures can be organized in the following main areas: Public Key Infrastructure (PKI) and user management, communications security, and new cryptographic algorithms. This paper presents the new ideas, architectures and deployed testbeds for these areas. In particular, it explains the inner structure of the INDECT PKI employed for federated identity management, the different technologies employed in the VPN testbed, the INDECT Block Cipher (IBC) &- a novel cryptographic algorithm that has being integrated into OpenSSL library, and how IBC-enabled TLS/SSL sessions and X.509 certificates are employed to protect INDECT applications. All proposed mechanisms have been designed to work in an integrated fashion as the security foundation of all systems being developed by the INDECT project for LEAs.

keywords

  • Law enforcement agency
    Public key infrastructure
    Virtual private network
    INDECT block cipher
    X.509 certificates
    Smart card
    Federated identity management
    Transport layer security