research-article

MoPS: A Modular Protection Scheme for Long-Term Storage

Authors:

Johannes BuchmannAuthors Info & Claims

ASIA CCS '17: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security

Pages 436 - 448

https://doi.org/10.1145/3052973.3053025

Published: 02 April 2017 Publication History

Get Access

Abstract

Current trends in technology, such as cloud computing, allow outsourcing the storage, backup, and archiving of data. This provides efficiency and flexibility, but also poses new risks for data security. It in particular became crucial to develop protection schemes that ensure security even in the long-term, i.e. beyond the lifetime of keys, certificates, and cryptographic primitives. However, all current solutions fail to provide optimal performance for different application scenarios. Thus, in this work, we present MoPS, a modular protection scheme to ensure authenticity and integrity for data stored over long periods of time. MoPS does not come with any requirements regarding the storage architecture and can therefore be used together with existing archiving or storage systems. It supports a set of techniques which can be plugged together, combined, and migrated in order to create customized solutions that fulfill the requirements of different application scenarios in the best possible way. As a proof of concept we implemented MoPS and provide performance measurements. Furthermore, our implementation provides additional features, such as guidance for non-expert users and export functionalities for external verifiers.

References

[1]

D. Bayer, S. Haber, and W. S. Stornetta. Improving the Efficiency and Reliability of Digital Time-Stamping. In Sequences II: Methods in Communication, Security and Computer Science, pages 329--334, 1993.

Google Scholar

[2]

A. J. Blazic, S. Saljic, and T. Gondrom. Extensible Markup Language Evidence Record Syntax (XMLERS), 2011.

Google Scholar

[3]

ETSI. XML Advanced Electronic Signatures (XAdES). Number TS 101 903. 1.4.1 edition, 2009.

Google Scholar

[4]

T. Gondrom, R. Brandner, and U. Pordesch. Evidence Record Syntax (ERS), 2007.

Google Scholar

[5]

S. Haber and P. Kamat. A Content Integrity Service for Long-Term Digital Archives. In Archiving Conference, pages 159--164. Society for Imaging Science and Technology, 2006.

Google Scholar

[6]

D. Lekkas and D. Gritzalis. Cumulative Notarization for Long-term Preservation of Digital Signatures. Computers & Security, 23:413--424, 2004.

Digital Library

Google Scholar

[7]

A. K. Lenstra. Key lengths. In The Handbook of Information Security, volume 2, pages 617--635. 2006.

Google Scholar

[8]

P. Maniatis and M. Baker. Secure History Preservation Through Timeline Entanglement. In USENIX Security '02, pages 297--312, 2002.

Digital Library

Google Scholar

[9]

R. C. Merkle. A certified digital signature. In CRYPTO '89, pages 218--238.

Digital Library

Google Scholar

[10]

M. Vigil, J. Buchmann, D. Cabarcas, C. Weinert, and A. Wiesmaier. Integrity, authenticity, non-repudiation, and proof of existence for long-term archiving: A survey. Computers & Security, 50(0):16--32, 2015.

Digital Library

Google Scholar

[11]

M. Vigil, D. Cabarcas, J. Buchmann, and J. Huang. Assessing Trust in the Long-Term Protection of Documents. In ISCC 2013, pages 185--191, 2013.

Google Scholar

[12]

M. Vigil, C. Weinert, K. Braden, D. Demirel, and J. Buchmann. A Performance Analysis of Long-Term Archiving Techniques. In HPCC 2014, pages 878--889, 2014.

Digital Library

Google Scholar

[13]

M. Vigil, C. Weinert, D. Demirel, and J. Buchmann. An Efficient Time-Stamping Solution for Long-Term Digital Archiving. In IPCCC 2014, 2014.

Google Scholar

Cited By

View all

Rehash Rushmi Pavitra ADaniel Lawrence ISarojini Premalatha JKalaiselvi PJena Catherine Bel DEsther CZionna Sen GGomathy G(2023)Novel Cutting‐Edge Security Tools for Medical and Genomic Data With Privacy Preservation TechniquesPrivacy Preservation of Genomic and Medical Data10.1002/9781394213726.ch5(113-129)Online publication date: 17-Nov-2023
https://doi.org/10.1002/9781394213726.ch5
Muth PGeihs MArul TBuchmann JKatzenbeisser S(2020)ELSA: efficient long-term secure storage of large datasets (full version) ∗EURASIP Journal on Information Security10.1186/s13635-020-00108-92020:1Online publication date: 27-May-2020
https://doi.org/10.1186/s13635-020-00108-9
Buchmann JGeihs MHamacher KKatzenbeisser SStammler S(2019)Long-term integrity protection of genomic dataEURASIP Journal on Information Security10.1186/s13635-019-0099-x2019:1Online publication date: 29-Oct-2019
https://doi.org/10.1186/s13635-019-0099-x
Show More Cited By

Index Terms

MoPS: A Modular Protection Scheme for Long-Term Storage
1. Security and privacy
  1. Cryptography
    1. Public key (asymmetric) techniques
      1. Digital signatures

Recommendations

Leakage-free redactable signatures
CODASPY '12: Proceedings of the second ACM conference on Data and Application Security and Privacy

Redactable signatures for linear-structured data such as strings have already been studied in the literature. In this paper, we propose a formal security model for leakage-free redactable signatures (LFRS) that is general enough to address ...
PROPYLA: Privacy Preserving Long-Term Secure Storage
SCC '18: Proceedings of the 6th International Workshop on Security in Cloud Computing

The amount of electronically stored information increases rapidly. Sensitive information requires integrity and confidentiality protection, sometimes for decades or even centuries (e.g., health records or governmental documents). Commonly used ...
Self-certified threshold proxy signature schemes with message recovery, nonrepudiation, and traceability

In this paper, we propose a new (t,n) threshold proxy signature scheme, in which at least t out of n proxy signers delegated by the original signer can sign messages on behalf of the original signer. The proposed scheme has the following main properties:...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

ASIA CCS '17: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security

April 2017

952 pages

ISBN:9781450349444

DOI:10.1145/3052973

General Chairs:
Ramesh Karri
New York University, New York, USA
,
Ozgur Sinanoglu
New York University Abu Dhabi, UAE
,
Program Chairs:
Ahmad-Reza Sadeghi
Technische Universität Darmstadt, Germany
,
Xun Yi
RMIT University, Australia

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 02 April 2017

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

ASIA CCS '17

Sponsor:

SIGSAC

ASIA CCS '17: ACM Asia Conference on Computer and Communications Security

April 2 - 6, 2017

Abu Dhabi, United Arab Emirates

Acceptance Rates

ASIA CCS '17 Paper Acceptance Rate 67 of 359 submissions, 19%;

Overall Acceptance Rate 418 of 2,322 submissions, 18%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
142
Total Downloads

Downloads (Last 12 months)4
Downloads (Last 6 weeks)2

Reflects downloads up to 01 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Rehash Rushmi Pavitra ADaniel Lawrence ISarojini Premalatha JKalaiselvi PJena Catherine Bel DEsther CZionna Sen GGomathy G(2023)Novel Cutting‐Edge Security Tools for Medical and Genomic Data With Privacy Preservation TechniquesPrivacy Preservation of Genomic and Medical Data10.1002/9781394213726.ch5(113-129)Online publication date: 17-Nov-2023
https://doi.org/10.1002/9781394213726.ch5
Muth PGeihs MArul TBuchmann JKatzenbeisser S(2020)ELSA: efficient long-term secure storage of large datasets (full version) ∗EURASIP Journal on Information Security10.1186/s13635-020-00108-92020:1Online publication date: 27-May-2020
https://doi.org/10.1186/s13635-020-00108-9
Buchmann JGeihs MHamacher KKatzenbeisser SStammler S(2019)Long-term integrity protection of genomic dataEURASIP Journal on Information Security10.1186/s13635-019-0099-x2019:1Online publication date: 29-Oct-2019
https://doi.org/10.1186/s13635-019-0099-x
Geihs MBuchmann J(2019)$$\mathsf {ELSA}$$: Efficient Long-Term Secure Storage of Large DatasetsInformation Security and Cryptology – ICISC 201810.1007/978-3-030-12146-4_17(269-286)Online publication date: 23-Jan-2019
https://doi.org/10.1007/978-3-030-12146-4_17
Krüger SNadi SReif MAli KMezini MBodden EGöpfert FGünther FWeinert CDemmler DKamath RRosu GDi Penta MNguyen T(2017)CogniCrypt: supporting developers in using cryptographyProceedings of the 32nd IEEE/ACM International Conference on Automated Software Engineering10.5555/3155562.3155681(931-936)Online publication date: 30-Oct-2017
https://dl.acm.org/doi/10.5555/3155562.3155681
Kruger SNadi SReif MAli KMezini MBodden EGopfert FGunther FWeinert CDemmler DKamath R(2017)CogniCrypt: Supporting developers in using cryptography2017 32nd IEEE/ACM International Conference on Automated Software Engineering (ASE)10.1109/ASE.2017.8115707(931-936)Online publication date: Oct-2017
https://doi.org/10.1109/ASE.2017.8115707

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Leakage-free redactable signatures

PROPYLA: Privacy Preserving Long-Term Secure Storage

Self-certified threshold proxy signature schemes with message recovery, nonrepudiation, and traceability