首页> 外文会议>Annual IFIP WG 11.3 conference on data and applications security and privacy >Practical Immutable Signature Bouquets (PISB) for Authentication and Integrity in Outsourced Databases
【24h】

Practical Immutable Signature Bouquets (PISB) for Authentication and Integrity in Outsourced Databases

机译:实用的不可变签名花束(PISB),用于外包数据库中的身份验证和完整性

获取原文

摘要

Database outsourcing is a prominent trend that enables organizations to offload their data management overhead (e.g., query handling) to the external service providers. Immutable signatures are ideal tools to provide authentication and integrity for such applications with an important property called immutability. Signature immutability ensures that, no attacker can derive a valid signature for unposed queries from previous queries and their corresponding signatures. This prevents an attacker from creating his own de-facto services via such derived signatures. Unfortunately, existing immutable signatures are very computation and communication costly (e.g., highly interactive), which make them impractical for task-intensive and heterogeneous applications. In this paper, we developed two new schemes that we call Practical and Immutable Signature Bouquets (PISB), which achieve efficient immutability for outsourced database systems. Both PISB schemes are very simple, non-interactive, and computation/communication efficient. Our generic scheme can be constructed from any aggregate signature coupled with a standard signature. Hence, it can flexibly provide performance trade-offs for various types of applications. Our specific scheme is constructed from Condensed-RSA and Sequential Aggregate RSA. It has a very low verifier computational overhead and end-to-end delay with a small signature size. We showed that PISB schemes are secure and also much more efficient than previous alternatives.
机译:数据库外包是一个显着的趋势,它使组织能够将其数据管理开销(例如查询处理)转移给外部服务提供商。不变签名是为此类应用程序提供身份验证和完整性的理想工具,具有重要的特性,即不变性。签名不变性确保没有攻击者可以从先前的查询及其对应的签名中为未提出的查询得出有效的签名。这样可以防止攻击者通过此类派生签名创建自己的实际服务。不幸的是,现有的不可变签名在计算和通信上非常昂贵(例如,高度交互),这使得它们对于任务密集型和异构应用是不切实际的。在本文中,我们开发了两个新的方案,称为实用和不可变签名花束(PISB),它们可以实现外包数据库系统的有效不可变性。两种PISB方案都非常简单,互不干扰,并且计算/通信效率高。我们的通用方案可以由任何带有标准签名的聚合签名构成。因此,它可以灵活地为各种类型的应用程序提供性能折衷。我们的特定方案是从Condensed-RSA和Sequential Aggregate RSA构建的。它具有非常低的验证程序计算开销和较小的签名大小的端到端延迟。我们证明了PISB方案是安全的,并且比以前的替代方案更有效。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有
  • 客服微信

  • 服务号