Skip to main content
SpringerLink
Log in

Secured Communication for Business Process Outsourcing Using Optimized Arithmetic Cryptography Protocol Based on Virtual Parties

  • Conference paper
Contemporary Computing (IC3 2009)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 40))

Included in the following conference series:

Abstract

Within a span of over a decade, India has become one of the most favored destinations across the world for Business Process Outsourcing (BPO) operations. India has rapidly achieved the status of being the most preferred destination for BPO for companies located in the US and Europe. Security and privacy are the two major issues needed to be addressed by the Indian software industry to have an increased and long-term outsourcing contract from the US. Another important issue is about sharing employee’s information to ensure that data and vital information of an outsourcing company is secured and protected. To ensure that the confidentiality of a client’s information is maintained, BPOs need to implement some data security measures. In this paper, we propose a new protocol for specifically for BPO Secure Multi-Party Computation (SMC). As there are many computations and surveys which involve confidential data from many parties or organizations and the concerned data is property of the organization, preservation and security of this data is of prime importance for such type of computations. Although the computation requires data from all the parties, but none of the associated parties would want to reveal their data to the other parties. We have proposed a new efficient and scalable protocol to perform computation on encrypted information. The information is encrypted in a manner that it does not affect the result of the computation. It uses modifier tokens which are distributed among virtual parties, and finally used in the computation. The computation function uses the acquired data and modifier tokens to compute right result from the encrypted data. Thus without revealing the data, right result can be computed and privacy of the parties is maintained. We have given a probabilistic security analysis of hacking the protocol and shown how zero hacking security can be achieved. Also we have analyzed the specific case of Indian BPO.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. A Report on Information Security and Data Privacy in the Indian BPO Industry. MphasiS, Wipro Spectramind, HSBC Electronic Data Processing India Pvt. Ltd., HCL Infosystems Ltd., Hifn, IBM, Infinity eSearch, International Association of Outsourcing Professionals (IAOP), National Association of Software and Service Companies (NASSCOM), Call Centre Association of India (CCAI) (2007), http://www.icmrindia.org/casestudies/catalogue/Business%20Reports/BREP035.htm

  2. Security and privacy key issues in US-India BPO relations. The Financial Express (2004), http://www.financialexpress.com/news/security-and-privacy-key-issues-in-usindia-bpo-relations/120451/

  3. Security: HR outsourcing deal-maker or deal-killer?. Human Resources Outsourcing Association, http://www.hrmreport.com/article/Issue-1/HR-BPO/Security-HR-outsourcing-deal-maker-or-deal-killer/

  4. Security concerns hit BPO firms in India (May 2005), http://www.rediff.com/money/2005/may/25bpo.htm

  5. Yao, A.C.: Protocols for secure computations. In: Proc. of 23rd Annual Symposium Foundations of Computer Science, pp. 160–164

    Google Scholar 

  6. Atallah, M., Bykova, M., Li, J., Frikken, K., Topkara, M.: Private collaborative forecasting and benchmarking. In: Proc. of the 2004 ACM workshop on Privacy in the Electronic Society (2004)

    Google Scholar 

  7. Atallah, M., Bykova, M., Li, J., Frikken, K., Topkara, M.: Private collaborative forecasting and benchmarking. In: Proc. of the 2004 ACM workshop on Privacy in the electronic society, pp. 103–114 (2004)

    Google Scholar 

  8. Du, W., Zhan, Z.: A practical approach to solve secure multi-party computation problems. In: Proc. of the New Security Paradigms Workshop (2002)

    Google Scholar 

  9. Pathak, R., Joshi, S.: Secure Multi-party Computation Using Virtual Parties for Computation on Encrypted Data. In: Proc. of The First International Workshop on Mobile & Wireless Networks (MoWiN 2009) in Conjunction with The Third International Conference on Information Security and Assurance (ISA 2009). LNCS. Springer, Heidelberg (2009)

    Google Scholar 

  10. Du, W., Atallah, M.J.: Privacy-preserving cooperative scientific computations. In: Proc. 14th IEEE Computer Security Foundations Workshop, June 2001, pp. 273–282 (2001)

    Google Scholar 

  11. Canetti, R., Feige, U., Goldreich, O., Naor, M.: Adaptively secure multi-party computation. In: Proc. The 28th annual ACM symposium on Theory of computing

    Google Scholar 

  12. Atallah, M.J.: Secure and Private Sequence Comparisons. In: Proc. The 2003 ACM workshop on Privacy in the electronic society (2003)

    Google Scholar 

  13. Atallah, M.J., Elmongui, H.G., Deshpande, V., Schwarz, L.B.: Secure supply-chain protocols. In: Proc. IEEE International Conference, E-Commerce (2003)

    Google Scholar 

  14. Maurer, U.: The role of cryptography in database security. In: Proc. The 2004 ACM SIGMOD international conference on Management of data (2004)

    Google Scholar 

  15. Agrawal, R., Srikant, R.: Privacy-Preserving Data Mining. In: Proc. The ACM SIGMOD Conference on Management of Data (2000)

    Google Scholar 

  16. Mishra, D.K., Chandwani, M.: Extended protocol for secure multi-party computation using ambiguous identity. WSEAS Transactions on Computer Research 2(2), 227–233 (2007)

    Google Scholar 

  17. Mishra, D.K., Chandwani, M.: Arithmetic cryptography protocol for secure multi-party computation. In: Proceeding of IEEE SoutheastCon 2007: The International Conference on Engineering – Linking future with past, Richmond, Virginia, USA, March 2007, pp. 22–24 (2007)

    Google Scholar 

  18. Mishra, D.K., Chandwani, M.: Anonymity enabled secure multi-party computation for Indian BPO. In: Proceeding of the IEEE Tencon 2007: International conference on Intelligent Information Communication Technologies for Better Human Life, Taipei, Taiwan, October-November 2007, pp. 52–56 (2007)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Acropolis Institute of Technology & Research, India

    Rohit Pathak

  2. Shri Vaishnav Institute of Technology & Science, Indore, Madhya Pradesh, India

    Satyadhar Joshi

Authors
  1. Rohit Pathak
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Satyadhar Joshi
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Dept. of Computer Sciences, University of Florida, Gainesville, FL, 32611, USA

    Sanjay Ranka

  2. Laurence H. Baker Center for Bioinformatics and Biological Statistics, Iowa State University, USA

    Srinivas Aluru

  3. Grid Computing and Distributed Systems Laboratory and, NICTA Victoria Laboratory, Department of Computer Science and Software Engineering, The University of Melbourne, Australia

    Rajkumar Buyya

  4. Department of Computer Science, National Tsing Hua University, Taiwan

    Yeh-Ching Chung

  5. Computer Science, College of Engineering and Science, Louisiana Tech University, Ruston, LA, 71272, USA

    Sumeet Dua  & Vir V. Phoha  & 

  6. Department of Computer Sciences, Purdue University, W. Lafayette, IN, 47907, USA

    Ananth Grama

  7. Arizona State University, Tempe, AZ, 85281, USA

    Sandeep K. S. Gupta

  8. Computer Science and Engineering Department, Indian Institute of Technology Kharagpur, 721 302, WB, India

    Rajeev Kumar

Rights and permissions

Reprints and permissions

Copyright information

© 2009 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Pathak, R., Joshi, S. (2009). Secured Communication for Business Process Outsourcing Using Optimized Arithmetic Cryptography Protocol Based on Virtual Parties. In: Ranka, S., et al. Contemporary Computing. IC3 2009. Communications in Computer and Information Science, vol 40. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-03547-0_20

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-03547-0_20

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-03546-3

  • Online ISBN: 978-3-642-03547-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation