Reference : From Ephemerizer to Timed-Ephemerizer - Achieve Assured Lifecycle Enforcement for Sen...
Scientific journals : Article
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/17613
From Ephemerizer to Timed-Ephemerizer - Achieve Assured Lifecycle Enforcement for Sensitive Data
English
Tang, Qiang mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
2014
Computer Journal
Oxford University Press
Yes (verified by ORBilu)
International
0010-4620
1460-2067
Oxford
UK
[en] Ephemerizer ; storage privacy ; assured lifecycle
[en] The concept of Ephemerizer, proposed by Perlman, is a cryptographic primitive for assured data deletion. With an Ephemerizer protocol, data in persistent storage devices will always be encrypted simultaneously using an ephemeral public key of the Ephemerizer (an entity that will publish a set of ephemeral public keys and periodically delete the expired ones) and the long-term public key of a user. An Ephemerizer protocol enables the user to securely decrypt the encrypted data without leaking any information to the Ephemerizer. So far, no security model has ever been proposed for this primitive and existing protocols have not been studied formally. Not surprisingly, we show that some existing Ephemerizer protocols possess security vulnerabilities. In this paper, we review the notion of Timed-Ephemerizer, which can be regarded as a hybrid primitive by combining Ephemerizer and timed-release encryption. Compared with an Ephemerizer protocol, a Timed-Ephemerizer protocol further guarantees that data will only be released after a pre-defined disclosure time. Moreover, we revisit a security model for Timed-Ephemerizer and adapt it for Ephemerizer. We also revise a previous Timed-Ephemerizer protocol by Tang and prove its security in the security model.
SnT
Researchers
http://hdl.handle.net/10993/17613
10.1093/comjnl/bxu030
http://comjnl.oxfordjournals.org/content/early/2014/05/02/comjnl.bxu030.abstract

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
timed-ephemerizer.pdfAuthor preprint279.42 kBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.