Collaboration-Preserving authenticated encryption for operational transformation systems

Authors:
Michael Clear;Karl Reid;Desmond Ennis;Arthur Hughes;Hitesh Tewari
Affiliations:
School of Computer Science and Statistics, Trinity College Dublin, Ireland;School of Computer Science and Statistics, Trinity College Dublin, Ireland;School of Computer Science and Statistics, Trinity College Dublin, Ireland;School of Computer Science and Statistics, Trinity College Dublin, Ireland;School of Computer Science and Statistics, Trinity College Dublin, Ireland
Venue:
ISC'12 Proceedings of the 15th international conference on Information Security
Year:
2012

Citing 10
Cited 0

Wide area traffic: the failure of Poisson modeling

IEEE/ACM Transactions on Networking (TON)
Operational transformation in real-time group editors: issues, algorithms, and achievements

CSCW '98 Proceedings of the 1998 ACM conference on Computer supported cooperative work
Incremental Cryptography: The Case of Hashing and Signing

CRYPTO '94 Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology
Incremental Unforgeable Encryption

FSE '01 Revised Papers from the 8th International Workshop on Fast Software Encryption
Preserving operation effects relation in group editors

CSCW '04 Proceedings of the 2004 ACM conference on Computer supported cooperative work
Multiscale stepping-stone detection: detecting pairs of jittered interactive streams by exploiting maximum tolerable delay

RAID'02 Proceedings of the 5th international conference on Recent advances in intrusion detection
Predicate encryption supporting disjunctions, polynomial equations, and inner products

EUROCRYPT'08 Proceedings of the theory and applications of cryptographic techniques 27th annual international conference on Advances in cryptology
SPORC: group collaboration using untrusted cloud resources

OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
Private Editing Using Untrusted Cloud Services

ICDCSW '11 Proceedings of the 2011 31st International Conference on Distributed Computing Systems Workshops
Fully homomorphic encryption from ring-LWE and security for key dependent messages

CRYPTO'11 Proceedings of the 31st annual conference on Advances in cryptology

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present a flexible approach for achieving user-controlled privacy and integrity of documents that are collaboratively authored within web-based document-editing applications. In this setting, the goal is to provide security without modifying the web application's client-side or server-side components. Instead, communication between both components is transparently intercepted and processed (if necessary) by means of a local proxy or browser plugin. We improve upon existing solutions by securely preserving real-time collaboration for encrypted documents and facilitating self-containment of the metadata (an overhead of encryption) within the same document. An architectural generalization is also presented that permits generic transformations and fine-grained access control. Security is assessed with respect to several threat models, and performance is evaluated alongside other approaches.