research-article

Towards ensuring client-side computational integrity

Authors:

George Danezis,

Benjamin LivshitsAuthors Info & Claims

CCSW '11: Proceedings of the 3rd ACM workshop on Cloud computing security workshop

Pages 125 - 130

https://doi.org/10.1145/2046660.2046683

Published: 21 October 2011 Publication History

Abstract

Privacy is considered one of the key challenges when moving services to the Cloud. Solution like access control are brittle, while fully homomorphic encryption that is hailed as the silver bullet for this problem is far from practical. But would fully homomorphic encryption really be such an effective solution to the privacy problem? And can we already deploy architectures with similar security properties? We propose one such architecture that provides privacy, integrity and leverages the Cloud for availability while only using cryptographic building blocks available today.

References

[1]

J. Balasch, A. Rial, C. Troncoso, B. Preneel, I. Verbauwhede, and C. Geuens. Pretp: Privacy-preserving electronic toll pricing. In USENIX Security Symposium, pages 63--78, 2010.

Digital Library

[2]

S. Brands. Rapid demonstration of linear relations connected by boolean operators. In EUROCRYPT, pages 318--333, 1997.

Digital Library

[3]

J. Camenisch, R. Chaabouni, and A. Shelat. Efficient protocols for set membership and range proofs. In J. Pieprzyk, editor, ASIACRYPT, volume 5350 of Lecture Notes in Computer Science, pages 234--252. Springer, 2008.

Digital Library

[4]

J. Camenisch and J. Groth. Group signatures: Better efficiency and new theoretical aspects. In C. Blundo and S. Cimato, editors, SCN, volume 3352 of LNCS, pages 120--133. Springer, 2004.

Digital Library

[5]

J. Camenisch and M. Michels. Proving in zero-knowledge that a number is the product of two safe primes. In EUROCRYPT, pages 107--122, 1999.

Digital Library

[6]

D. Chaum and T. Pedersen. Wallet databases with observers. In CRYPTO '92, volume 740 of LNCS, pages 89--105, 1993.

Digital Library

[7]

Y. Chen and R. Sion. On securing untrusted clouds with cryptography. In E. Al-Shaer and K. B. Frikken, editors, WPES, pages 109--114. ACM, 2010.

Digital Library

[8]

M. Dworkin. Cryptographic protocols of the identity mixer library, v. 2.3.0. IBM research report RZ3730, IBM Research, 2010. http://domino.research.ibm.com/library/cyberdig.nsf/index.html.

[9]

C. Gentry. Computing arbitrary functions of encrypted data. Commun. ACM, 53(3):97--105, 2010.

Digital Library

[10]

C. Gentry and S. Halevi. Implementing gentry's fully-homomorphic encryption scheme. In K. G. Paterson, editor, EUROCRYPT, volume 6632 of Lecture Notes in Computer Science, pages 129--148, 2011.

Digital Library

[11]

S. Kamara and K. Lauter. Cryptographic cloud storage. In R. Sion, R. Curtmola, S. Dietrich, A. Kiayias, J. M. Miret, K. Sako, and F. Sebé, editors, Financial Cryptography Workshops, volume 6054 of Lecture Notes in Computer Science, pages 136--149, 2010.

Digital Library

[12]

A. Rial and G. Danezis. Privacy-preserving smart metering. Technical Report MSR-TR-2010-150, Microsoft Research, November 2010.

[13]

C.-P. Schnorr. Efficient signature generation by smart cards. J. Cryptology, 4(3):161--174, 1991.

Digital Library

[14]

N. P. Smart and F. Vercauteren. Fully homomorphic encryption with relatively small key and ciphertext sizes. In P. Q. Nguyen and D. Pointcheval, editors, Public Key Cryptography, volume 6056 of Lecture Notes in Computer Science, pages 420--443, 2010.

Digital Library

[15]

C. Troncoso, G. Danezis, E. Kosta, and B. Preneel. PriPAYD: privacy friendly pay-as-you-drive insurance. In P. Ning and T. Yu, editors, Proceedings of the 2007 ACM Workshop on Privacy in the Electronic Society, WPES 2007, pages 99--107. ACM, 2007.

Digital Library

[16]

M. van Dijk, C. Gentry, S. Halevi, and V. Vaikuntanathan. Fully homomorphic encryption over the integers. In H. Gilbert, editor, EUROCRYPT, volume 6110 of Lecture Notes in Computer Science, pages 24--43, 2010.

Digital Library

[17]

Wired Magazine. Living by numbers. Wired Magazine, July 2011.

Cited By

Bagchi SAbdelzaher TGovindan RShenoy PAtrey AGhosh PXu R(2020)New Frontiers in IoT: Networking, Systems, Reliability, and Security ChallengesIEEE Internet of Things Journal10.1109/JIOT.2020.3007690(1-1)Online publication date: 2020
https://doi.org/10.1109/JIOT.2020.3007690
Derler DRamacher SSlamanig D(2017)Homomorphic Proxy Re-Authenticators and Applications to Verifiable Multi-User Data AggregationFinancial Cryptography and Data Security10.1007/978-3-319-70972-7_7(124-142)Online publication date: 23-Dec-2017
https://doi.org/10.1007/978-3-319-70972-7_7
Shukla PAhirwar M(2016)Improving Privacy and Security in Multicloud ArchitecturesWeb-Based Services10.4018/978-1-4666-9466-8.ch025(585-609)Online publication date: 2016
https://doi.org/10.4018/978-1-4666-9466-8.ch025
Show More Cited By

Index Terms

Towards ensuring client-side computational integrity
1. Security and privacy
  1. Systems security
    1. Information flow control
    2. Operating systems security

Recommendations

Integrity analysis of authenticated encryption based on stream ciphers

We study the security of authenticated encryption based on a stream cipher and a universal hash function. We consider ChaCha20-Poly1305 and generic constructions proposed by Sarkar, where the generic constructions include 14 AEAD (authenticated ...
A novel approach to secure cloud data storage and dynamic data auditing in a cloud
ICC '17: Proceedings of the Second International Conference on Internet of things, Data and Cloud Computing

Cloud computing is a new emerging computing paradigm in which any individual or organization can remotely store the information and it also reduces the burden of the cost of its storage and maintenance. Even though the cloud provides tangible merits to ...
SIBSC: Separable Identity-Based Signcryption for Resource-Constrained Devices

To provide better overall performance, identity (ID)-based signcryption (IBSC) has been constructed by combining ID-based signature (IBS) and ID-based encryption (IBE) in a secure manner. Undoubtedly, the IBSC fulfills the authentication and the ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

CCSW '11: Proceedings of the 3rd ACM workshop on Cloud computing security workshop

October 2011

138 pages

ISBN:9781450310048

DOI:10.1145/2046660

Program Chairs:
Christian Cachin
IBM Research - Zurich, Switzerland
,
Thomas Ristenpart
University of Wisconsin-Madison, USA

Copyright © 2011 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 21 October 2011

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

CCS'11

Sponsor:

SIGSAC

CCS'11: the ACM Conference on Computer and Communications Security

October 21, 2011

Illinois, Chicago, USA

Acceptance Rates

Overall Acceptance Rate 37 of 108 submissions, 34%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

15
Total Citations
View Citations
512
Total Downloads

Downloads (Last 12 months)1
Downloads (Last 6 weeks)0

Reflects downloads up to 08 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Bagchi SAbdelzaher TGovindan RShenoy PAtrey AGhosh PXu R(2020)New Frontiers in IoT: Networking, Systems, Reliability, and Security ChallengesIEEE Internet of Things Journal10.1109/JIOT.2020.3007690(1-1)Online publication date: 2020
https://doi.org/10.1109/JIOT.2020.3007690
Derler DRamacher SSlamanig D(2017)Homomorphic Proxy Re-Authenticators and Applications to Verifiable Multi-User Data AggregationFinancial Cryptography and Data Security10.1007/978-3-319-70972-7_7(124-142)Online publication date: 23-Dec-2017
https://doi.org/10.1007/978-3-319-70972-7_7
Shukla PAhirwar M(2016)Improving Privacy and Security in Multicloud ArchitecturesWeb-Based Services10.4018/978-1-4666-9466-8.ch025(585-609)Online publication date: 2016
https://doi.org/10.4018/978-1-4666-9466-8.ch025
Shukla PAhirwar M(2015)Improving Privacy and Security in Multicloud ArchitecturesHandbook of Research on Security Considerations in Cloud Computing10.4018/978-1-4666-8387-7.ch011(232-257)Online publication date: 2015
https://doi.org/10.4018/978-1-4666-8387-7.ch011
Rizvi SRazaque ACover K(2015)Cloud Data Integrity Using a Designated Public VerifierProceedings of the 2015 IEEE 17th International Conference on High Performance Computing and Communications, 2015 IEEE 7th International Symposium on Cyberspace Safety and Security, and 2015 IEEE 12th International Conf on Embedded Software and Systems10.1109/HPCC-CSS-ICESS.2015.277(1361-1366)Online publication date: 24-Aug-2015
https://dl.acm.org/doi/10.1109/HPCC-CSS-ICESS.2015.277
Yuhong Liu Jungwoo Ryoo Rizvi S(2014)Ensuring data confidentiality in cloud computing: an encryption and trust-based solution2014 23rd Wireless and Optical Communication Conference (WOCC)10.1109/WOCC.2014.7155633(1-6)Online publication date: May-2014
https://doi.org/10.1109/WOCC.2014.7155633
Henze MHummen RMatzutt RWehrle K(2014)A Trust Point-based Security Architecture for Sensor Data in the CloudTrusted Cloud Computing10.1007/978-3-319-12718-7_6(77-106)Online publication date: 16-Nov-2014
https://doi.org/10.1007/978-3-319-12718-7_6
Henze MHummen RMatzutt RCatrein DWehrle K(2013)Maintaining User Control While Storing and Processing Sensor Data in the CloudInternational Journal of Grid and High Performance Computing10.4018/ijghpc.20131001075:4(97-112)Online publication date: Oct-2013
https://doi.org/10.4018/ijghpc.2013100107
Danezis GFournet CKohlweiss MZanella-Béguelin SDefend BKursawe K(2013)Smart meter aggregation via secret-sharingProceedings of the first ACM workshop on Smart energy grid security10.1145/2516930.2516944(75-80)Online publication date: 8-Nov-2013
https://dl.acm.org/doi/10.1145/2516930.2516944
Lin HShao JZhang CFang Y(2013)CAMIEEE Transactions on Information Forensics and Security10.1109/TIFS.2013.22555938:6(985-997)Online publication date: 1-Jun-2013
https://dl.acm.org/doi/10.1109/TIFS.2013.2255593
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents