Privacy-supporting cloud computing by in-browser key translation

Authors:
Myrto Arapinis;Sergiu Bursuc;Mark Ryan
Affiliations:
School of Computer Science, University of Birmingham, Birmingham, UK. E-mails: {m.d.arapinis, s.bursuc, m.d.ryan}@cs.bham.ac.uk;School of Computer Science, University of Birmingham, Birmingham, UK. E-mails: {m.d.arapinis, s.bursuc, m.d.ryan}@cs.bham.ac.uk;School of Computer Science, University of Birmingham, Birmingham, UK. E-mails: {m.d.arapinis, s.bursuc, m.d.ryan}@cs.bham.ac.uk
Venue:
Journal of Computer Security - Security and Trust Principles
Year:
2013

Citing 31
Cited 0

An attack on the Needham-Schroeder public-key authentication protocol

Information Processing Letters
Mobile values, new names, and secure communication

POPL '01 Proceedings of the 28th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Practical multi-candidate election system

Proceedings of the twentieth annual ACM symposium on Principles of distributed computing
CSP and Anonymity

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
Making Mix Nets Robust for Electronic Voting by Randomized Partial Checking

Proceedings of the 11th USENIX Security Symposium
An Efficient Cryptographic Protocol Verifier Based on Prolog Rules

CSFW '01 Proceedings of the 14th IEEE workshop on Computer Security Foundations
Coercion-resistant electronic elections

Proceedings of the 2005 ACM workshop on Privacy in the electronic society
Privacy enhancing identity management: protection against re-identification and profiling

Proceedings of the 2005 workshop on Digital identity management
Ciphertext-Policy Attribute-Based Encryption

SP '07 Proceedings of the 2007 IEEE Symposium on Security and Privacy
Breaking and fixing public-key Kerberos

Information and Computation
NOYB: privacy in online social networks

Proceedings of the first workshop on Online social networks
Helios: web-based open-audit voting

SS'08 Proceedings of the 17th conference on Security symposium
Cloud computing and emerging IT platforms: Vision, hype, and reality for delivering computing as the 5th utility

Future Generation Computer Systems
Fully homomorphic encryption using ideal lattices

Proceedings of the forty-first annual ACM symposium on Theory of computing
Verifying privacy-type properties of electronic voting protocols

Journal of Computer Security
Persona: an online social network with user-defined privacy

Proceedings of the ACM SIGCOMM 2009 conference on Data communication
A Privacy Manager for Cloud Computing

CloudCom '09 Proceedings of the 1st International Conference on Cloud Computing
Security against covert adversaries: efficient protocols for realistic adversaries

TCC'07 Proceedings of the 4th conference on Theory of cryptography
On the security of a popular web submission and review software (WSaR) for cryptology conferences

WISA'07 Proceedings of the 8th international conference on Information security applications
Electing a university president using open-audit voting: analysis of real-world use of Helios

EVT/WOTE'09 Proceedings of the 2009 conference on Electronic voting technology/workshop on trustworthy elections
Attacking and fixing PKCS#11 security tokens

Proceedings of the 17th ACM conference on Computer and communications security
Cloud computing privacy concerns on our doorstep

Communications of the ACM
Token-based cloud computing: secure outsourcing of data and arbitrary computations with lower latency

TRUST'10 Proceedings of the 3rd international conference on Trust and trustworthy computing
Modelling dynamic access control policies for web-based collaborative systems

DBSec'10 Proceedings of the 24th annual IFIP WG 11.3 working conference on Data and applications security and privacy
Election verifiability in electronic voting protocols

ESORICS'10 Proceedings of the 15th European conference on Research in computer security
Private Editing Using Untrusted Cloud Services

ICDCSW '11 Proceedings of the 2011 31st International Conference on Distributed Computing Systems Workshops
Collusion resistant broadcast encryption with short ciphertexts and private keys

CRYPTO'05 Proceedings of the 25th annual international conference on Advances in Cryptology
A traceability attack against e-passports

FC'10 Proceedings of the 14th international conference on Financial Cryptography and Data Security
Privacy supporting cloud computing: confichair, a case study

POST'12 Proceedings of the First international conference on Principles of Security and Trust
Trivitas: voters directly verifying votes

VoteID'11 Proceedings of the Third international conference on E-Voting and Identity
Caveat Coercitor: Coercion-Evidence in Electronic Voting

SP '13 Proceedings of the 2013 IEEE Symposium on Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Cloud computing means entrusting data to information systems that are managed by external parties on remote servers, in the “cloud”, raising new privacy and confidentiality concerns. We propose a general technique for designing cloud services that allows the cloud to see only encrypted data, while still facilitating some data-dependent computations. The technique is based on key translations and mixes in web browsers.We focus on a particular kind of software-as-a-service, namely, services that support applications, evaluations and decisions. Such services include job application management, public tender management e.g., for civil construction, and conference management. We identify the specific security and privacy risks that existing systems pose. We propose a protocol that addresses them, and forms the basis of a system that offers strong security and privacy guarantees.We express the protocol and its properties in the language of ProVerif, and prove that it does provide the intended properties. We describe an implementation of a particular instance of the protocol called ConfiChair, which is geared to the evaluation of papers submitted to conferences.