Maintaining Integrity and Non-Repudiation in Secure Offline Documents

Shatnawi, Ahmed S.; Munson, Ethan V.; Thao, Cheng

doi:10.1145/3103010.3121038

Cited by 6 publications

(2 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Revisions of the document content are stored as a separate copy (snapshot) in a sub-directory inside the document. Shatnawi et al [24,25] proposed a secure framework for XML documents that improves security for XML documents and their provenance and provides persistent integrity, detects tampering, and provides tools for performing forensics by utilizing version-aware XML document technology. Their approach provides an extensive document history with author signatures at each step, which also enhances the performance when applying security policies applied to documents.…”

Section: Version-control System (Vcs)mentioning

confidence: 99%

Ransomware-Resilient Self-Healing XML Documents

et al. 2022

View full text Add to dashboard Cite

In recent years, various platforms have witnessed an unprecedented increase in the number of ransomware attacks targeting hospitals, governments, enterprises, and end-users. The purpose of this is to maliciously encrypt documents and files on infected machines, depriving victims of access to their data, whereupon attackers would seek some sort of a ransom in return for restoring access to the legitimate owners; hence the name. This cybersecurity threat would inherently cause substantial financial losses and time wastage for affected organizations and users. A great deal of research has taken place across academia and around the industry to combat this threat and mitigate its danger. These ongoing endeavors have resulted in several detection and prevention schemas. Nonetheless, these approaches do not cover all possible risks of losing data. In this paper, we address this facet and provide an efficient solution that would ensure an efficient recovery of XML documents from ransomware attacks. This paper proposes a self-healing version-aware ransomware recovery (SH-VARR) framework for XML documents. The proposed framework is based on the novel idea of using the link concept to maintain file versions in a distributed manner while applying access-control mechanisms to protect these versions from being encrypted or deleted. The proposed SH-VARR framework is experimentally evaluated in terms of storage overhead, time requirement, CPU utilization, and memory usage. Results show that the snapshot size increases proportionately with the original size; the time required is less than 120 ms for files that are less than 1 MB in size; and the highest CPU utilization occurs when using the bzip2. Moreover, when the zip and gzip are used, the memory usage is almost fixed (around 6.8 KBs). In contrast, it increases to around 28 KBs when the bzip2 is used.

show abstract

Section: Version-control System (Vcs)mentioning

confidence: 99%

Ransomware-Resilient Self-Healing XML Documents

et al. 2022

View full text Add to dashboard Cite

show abstract

“…It was implemented on a prototype of system based on authorization methods through REST interfaces. Shatnawi et al [50] described an approach for maintaining integrity and non-290 repudiation of collaborative Microsoft Word documents (XML documents). This mechanism maintains logs of modifications, forensics information, and users' digital certificates of offline documents, which can be later shared (email, personal storage 295 devices, local storage, cloud storage).…”

mentioning

confidence: 99%