Efficient, Compromise Resilient and Append-Only Cryptographic Schemes for Secure Audit Logging

Yavuz, Attila A.; Ning, Peng; Reiter, Michael K.

doi:10.1007/978-3-642-32946-3_12

Cited by 43 publications

(29 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They firstly presented FssAgg authentication technique to achieve it. Later, PKC-based secure logging called Log-FAS [19] achieved both forward-security and append-only properties, and improved log integrity auditing efficiency. CloudProof system [8] designed a reliable log named attestation with both forward-security and append-only properties.…”

Section: Reliable Loggingmentioning

confidence: 99%

A Multi-grained Log Auditing Scheme for Cloud Data Confidentiality

et al. 2019

View full text Add to dashboard Cite

With increasing number of cloud data leakage accidents exposed, outsourced data control becomes a more and more serious concern of their owner. To relieve the concern of these cloud users, reliable logging schemes are widely used to generate proof for data confidentiality auditing. However, high frequency operation and fine operation granularity on cloud data both result in a considerably large volume of operation logs, which burdens communication and computation in log auditing. This paper proposes a multi-grained log auditing scheme to make logs volume smaller and log auditing more efficient. We design a logging mechanism to support multi-grained data access with Merkle Hash Tree structure. Based on multi-grained log, we present a log auditing approach to achieve data confidentiality auditing and leakage investigation by making an Access List. Experiments results indicate that our scheme obtains about 54% log volume and 60% auditing time of fine-grained log auditing scheme in our scenario.

show abstract

Section: Reliable Loggingmentioning

confidence: 99%

A Multi-grained Log Auditing Scheme for Cloud Data Confidentiality

et al. 2019

View full text Add to dashboard Cite

show abstract

“…military and governmental use, where complex hardware and side-channel attacks are reasonable threats. ------Bellare and Yee [3] ------FssAgg [20] ------Logcrypt [13] ------LogFAS [34] ------…”

Section: Requirements Comparisonmentioning

confidence: 99%

EmLog: Tamper-Resistant System Logging for Constrained Devices with TEEs

Shepherd

Akram

Markantonakis

2018

Information Security Theory and Practice

View full text Add to dashboard Cite

Remote mobile and embedded devices are used to deliver increasingly impactful services, such as medical rehabilitation and assistive technologies. Secure system logging is beneficial in these scenarios to aid audit and forensic investigations particularly if devices bring harm to end-users. Logs should be tamper-resistant in storage, during execution, and when retrieved by a trusted remote verifier. In recent years, Trusted Execution Environments (TEEs) have emerged as the go-to root of trust on constrained devices for isolated execution of sensitive applications. Existing TEE-based logging systems, however, focus largely on protecting server-side logs and offer little protection to constrained source devices. In this paper, we introduce EmLog -a tamper-resistant logging system for constrained devices using the GlobalPlatform TEE. EmLog provides protection against complex software adversaries and offers several additional security properties over past schemes. The system is evaluated across three log datasets using an off-the-shelf ARM development board running an open-source, GlobalPlatform-compliant TEE. On average, EmLog runs with low run-time memory overhead (1MB heap and stack), 430-625 logs/second throughput, and five-times persistent storage overhead versus unprotected logs.

show abstract

“…Such data structures have been used to perform O(1) comparisons, such as between dictionaries [8], hash tables [5], or B-Treaps [10]. Similar data structures have also been used to enforce append-only properties on logs [9,22], including the Bitcoin blockchain itself [15]. Unlike SEQHASH, none of these data structures support O(log n) concatenation of sequences in the face of adversaries choosing the input data.…”

Section: Other Data Structuresmentioning

confidence: 99%

VerSum

Hooff

Kaashoek

Zeldovich

2014

Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security

View full text Add to dashboard Cite

VERSUM allows lightweight clients to outsource expensive computations over large and frequently changing data structures, such as the Bitcoin or Namecoin blockchains, or a Certificate Transparency log. VERSUM clients ensure that the output is correct by comparing the outputs from multiple servers. VERSUM assumes that at least one server is honest, and crucially, when servers disagree, VERSUM uses an efficient conflict resolution protocol to determine which server(s) made a mistake and thus obtain the correct output.VERSUM's contribution lies in achieving low server-side overhead for both incremental re-computation and conflict resolution, using three key ideas: (1) representing the computation as a functional program, which allows memoization of previous results; (2) recording the evaluation trace of the functional program in a carefully designed computation history to help clients determine which server made a mistake; and (3) introducing a new authenticated data structure for sequences, called SEQHASH, that makes it efficient for servers to construct summaries of computation histories in the presence of incremental re-computation. Experimental results with an implementation of VERSUM show that VERSUM can be used for a variety of computations, that it can support many clients, and that it can easily keep up with Bitcoin's rate of new blocks with transactions.

show abstract

Efficient, Compromise Resilient and Append-Only Cryptographic Schemes for Secure Audit Logging

Cited by 43 publications

References 26 publications

A Multi-grained Log Auditing Scheme for Cloud Data Confidentiality

A Multi-grained Log Auditing Scheme for Cloud Data Confidentiality

EmLog: Tamper-Resistant System Logging for Constrained Devices with TEEs

VerSum

Contact Info

Product

Resources

About