Karim Eldefrawy

Cryptography, Cybersecurity, Privacy

Co-founder and CTO at Confidencial.io
2017-2021: SRI
2011-2016: HRL Laboratories
2006-2010: PhD@UC Irvine

Scientific curiosity

Scientific knowledge map · Paper #10

Leveraging Social Contacts for Message Confidentiality in Delay Tolerant Networks

Karim Eldefrawy, John Solis, and Gene Tsudik

2009 · IEEE Computer Software and Applications Conference (COMPSAC)

  • Theory
  • scheme

What does the paper try to establish?

How can a delay-tolerant-network sender confidentially address a recipient when it shares no key with that recipient, does not know the recipient's public key, and cannot afford an online lookup or multi-round handshake?

What is the proposed answer?

Route independent pseudorandom masking keys through multiple entities socially affiliated with the recipient. Each affiliated entity translates its key material into a form the recipient can recover, and the recipient removes all masks. Gateways extend the construction across regions; when no affiliated entity is known, a weaker split-message method trades interception probability against delay. Simulations and a social-network sample assess feasibility under an honest-but-curious model.

Six dimensions, kept separate

The chart summarizes documented evidence and process. It is not a correctness probability, confidence score, or ranking, and no composite score is calculated.

The visual spider chart requires JavaScript. The complete values and rationales follow in text.

LowMediumHighN/A = not assessed

A smaller value means less documented support for that dimension, not that the paper is false or unimportant.

Epistemic evidence Medium

The schemes are specified and evaluated with DTN simulations and a social-network sample, but the security analysis is explicitly informal and the key/collusion assumptions are not experimentally validated.

Affiliated-entity intra-region scheme Inter-region gateway extension ONE simulation design and interception results Informal security analysis and limitations
Auditability High

A fixed author-hosted full text is checked in with page count and hash, making the constructions, evaluation, and stated limitations directly inspectable.

Author-copy provenance Affiliated-entity intra-region scheme ONE simulation design and interception results Informal security analysis and limitations
Production provenance Medium

Named authorship, author-copy provenance, official metadata, and simulation parameters are documented; roles, revision history, and artifact lineage are not.

ONE simulation design and interception results Author-copy provenance Official publication metadata
External scrutiny Medium

The paper has an official full-conference publication record; no public reviews, formal verification, or independent reproduction was located.

Official publication metadata
Reception Low

No citations were verifiably located in the constrained dated search. Under the author's 0-8 rule this is low, but it is not a claim that the paper has no citations.

Citation search attempted
Contribution significance Medium

The paper offers a concrete way to bootstrap confidentiality from social structure and studies its operational tradeoffs, but collusion and destination-key scalability constrain the supported claim.

Motivation, problem, and contribution Affiliated-entity intra-region scheme ONE simulation design and interception results Informal security analysis and limitations

Assessment: Ai draft author review pending · 2026-07-11 · rubric 0.2. These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.

Hierarchical knowledge map

Collapse a branch for a top-level reading, or follow its source links and child nodes to audit the evidence and boundaries underneath it.

paper

Leveraging Social Contacts for Message Confidentiality in DTNs

A confidential-messaging scheme that substitutes recipient-affiliated intermediaries for unavailable end-to-end key discovery in intermittently connected networks.

Motivation, problem, and contribution Official publication metadata
  1. question

    Research question

    research question

    How can a sender encrypt its first message to a recipient with no shared security context and no dependable online infrastructure?

    Motivation, problem, and contribution
  2. model

    Regional DTN model

    explicitly scoped

    Mobile nodes communicate opportunistically within regions; fixed gateways connect regions. Nodes know keys for selected affiliated entities, and those entities are assumed to know or share a key with the destination.

    Network model and assumptions Affiliated-entity intra-region scheme
  3. scheme

    Intra-region affiliated-entity scheme

    specified

    The sender XOR-masks the message with PRF outputs under independent seeds and encrypts one seed to each AE. AEs re-encrypt their seed for the destination; AE traversal order may vary and replicated paths may collectively visit all AEs.

    Affiliated-entity intra-region scheme
  4. scheme

    Inter-region extension

    specified

    Source- and destination-region gateways translate an additional masking seed between regional trust domains, providing a second layer when only one ordinary AE is available.

    Inter-region gateway extension
  5. fallback

    Poor Man's Approach

    heuristic

    If no AE is known, the sender separates ciphertext and key shares across different routes and delays. Confidentiality is probabilistic: any intermediary that gathers all components recovers the message.

    Fallback split-message approach
  6. threat model

    Honest-but-curious intermediaries

    explicitly scoped

    Nodes follow routing behavior but may retain and correlate messages beyond TTL. Active modification, dropping, and origin authentication are outside the primary model; AE collusion is the central confidentiality threat.

    Informal security analysis and limitations
  7. evidence group Feasibility evidence simulation and observational sample

    ONE simulations model 250 pedestrians on a Helsinki map with epidemic routing, while samples of 870 Orange County and 900 Egypt Facebook users estimate friend/friend-of-friend reach.

    ONE simulation design and interception results Facebook social-reach sample
    1. result

      Delay, path length, and interception

      simulation supported

      For the fallback scheme, longer intra-region separation lowers measured interception but raises latency; in inter-region runs, more hops increase exposure and retained copies weaken the benefit of delay.

      ONE simulation design and interception results
    2. result

      Social reach

      observational sample

      The sampled public profiles suggest that tens to hundreds of direct contacts can expose thousands of friends-of-friends, but closed profiles are omitted and the two convenience samples do not establish a general population distribution.

      Facebook social-reach sample
  8. limitation group

    Security and scalability boundaries

    material

    Security is informal; multiple AEs must not collude, the sender must know their keys, and each AE must know the destination key. The paper itself flags the latter assumption as potentially unscalable and leaves formal analysis for future work.

    Informal security analysis and limitations Conclusion and future work

Source index

Locators state the depth of the current audit. PDF page numbers, where present, are one-based file pages; metadata-, summary-, and abstract-bounded records explicitly identify their limitations.

  1. Motivation, problem, and contribution Abstract and Sections I-II, PDF pages 1-2
  2. Network model and assumptions Section III, PDF pages 2-3
  3. Affiliated-entity intra-region scheme Section IV-A, PDF pages 3-4
  4. Fallback split-message approach Section IV-B, PDF pages 4-5
  5. Inter-region gateway extension Section V, PDF pages 5-6
  6. ONE simulation design and interception results Section VI-A and Tables II-III, PDF pages 6-7
  7. Facebook social-reach sample Section VI-B and Figures 2-3, PDF pages 7-8
  8. Informal security analysis and limitations Section VII, PDF pages 7-8
  9. Conclusion and future work Section IX, PDF page 8
  10. Author-copy provenance Public author-hosted PDF
  11. Official publication metadata DOI 10.1109/COMPSAC.2009.43