Long-term archival of signed documents presents specific challenges that do not need to be considered in short-term storage systems. In this paper we present a Secure Long-Term Archival System (SLTAS) that protects, in a verifiable way, the validity of today's digital signatures in a distant future. Moreover, our protocol is the first proposal that provides a proof of when a signature was created, without the possibility of backdating. We include a description of our scheme and an evaluation of its performance in terms of computing time and storage space. Finally, we discuss how to extend our system to achieve additional security properties. This paper does not focus on the long-term availability of archived information. nor on format migration problems.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	C. Adams , P. Cain , D. Pinkas , R. Zuccherato, Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP), RFC Editor, 2001
	2	R. Anderson. The eternity service. In J. Pribyl, editor, Proceedings of Pragocrypt '96, pages 242--252, Prague, 1996. Czech Technical University Publishing House.
	3	Giuseppe Ateniese , Randal Burns , Reza Curtmola , Joseph Herring , Lea Kissner , Zachary Peterson , Dawn Song, Provable data possession at untrusted stores, Proceedings of the 14th ACM conference on Computer and communications security, October 28-31, 2007, Alexandria, Virginia, USA  [doi>10.1145/1315245.1315318]
	4	M. Baker, K. Leaton, and S. Martin. Why traditional storage systems don't help us save stuff forever. In Proceedings of the IEEE/IFIP International Conference on Dependable Systems and Networks, 1st Workshop on Hot Topics in System Dependability (HotDep--05), Yokohama, Japan, June 2005. IEEE Computer Society Press.
	5	Mary Baker , Mehul Shah , David S. H. Rosenthal , Mema Roussopoulos , Petros Maniatis , TJ Giuli , Prashanth Bungale, A fresh look at the reliability of long-term digital storage, ACM SIGOPS Operating Systems Review, v.40 n.4, October 2006
	6	Aleksej Jerman Blazic, Long Term Trusted Archive Services, Proceedings of the First International Conference on the Digital Society, p.29, January 02-06, 2007  [doi>10.1109/ICDS.2007.26]
	7	A. Jerman Blazic and B. Dzonova-Jerman-Blazic. Implementing trustworthy internet based long term electronic preservation service - the eKeeper project. In M. H. Hamza, editor, IASTED International Conference on Communications, Internet, and Information Technology, pages 291--296, 2004.
	8	A. Jerman Blazic and P. Sylvester. Provision of long-term archiving service for digitally signed documents using an archive interaction protocol. In D. W. Chadwick and G. Zhao, editors, EuroPKI, pages 240--254, 2005.
	9	R. Brandner, U. Pordesch, and T. Gondrom. RFC 4998: Evidence record syntax (ERS). RFC 4998, Internet Engineering Task Force, August 2007.
	10	R. Brinkman, J. Doumen, and W. Jonker. Using secret sharing for searching in encrypted data. In W. Jonker and M. Petkovic, editors, Secure Data Management, volume 3178 of Lecture Notes in Computer Science, pages 18--27. Springer, 2004.
	11	Jan Camenisch , Anna Lysyanskaya, An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation, Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology, p.93-118, May 06-10, 2001
	12	C. Casten. The power of XAM. SNIA Data Management Forum.
	13	David Chaum, Security without identification: transaction systems to make big brother obsolete, Communications of the ACM, v.28 n.10, p.1030-1044, Oct. 1985  [doi>10.1145/4372.4373]
	14	S. Chokhani and C. Wallace. Trusted archiving. In Proceedings of the 3rd Annual PKI R& D Workshop. NIST, April 2004.
	15	G. Danezis and C. Diaz. Space-efficient private search. In R. Dhamija and S. Dietrich, editors, Proceedings of Financial Cryptography (FC2007), volume 4886 of Lecture Notes in Computer Science, pages 148--162, Tobago, 2007. Springer-Verlag.
	16	Michael Factor , Dalit Naor , Simona Rabinovici-Cohen , Leeat Ramati , Petra Reshef , Julian Satran, The need for preservation aware storage: a position paper, ACM SIGOPS Operating Systems Review, v.41 n.1, January 2007  [doi>10.1145/1228291.1228298]
	17	Michael Factor , Dalit Naor , Simona Rabinovici-Cohen , Leeat Ramati , Petra Reshef , Julian Satran , David L. Giaretta, Preservation DataStores: Architecture for Preservation Aware Storage, Proceedings of the 24th IEEE Conference on Mass Storage Systems and Technologies, p.3-15, September 24-27, 2007  [doi>10.1109/MSST.2007.27]
	18	D. G. Filho and P. Barreto. Demonstrating data possession and uncheatable data transfer. Technical report, 2006. http://eprint.iacr.org/.
	19	International Comitee for Information Technology. ANSI/INCITS 400--2004 SCSI Object--based Storage Device Commands (OSD), 2004.
	20	International Organization for Standarization. ISO standard 14721:2003 space data and information transfer systems-a reference model for an open archival information system (OAIS), 2003.
	21	G. R. Ganger, P. K. Khosla, M. Bakkaloglu, M. W. Bigrigg, G. R. Goodson, S. Oguz, V. Pandurangan, C. A. N. Soules, J. D. Strunk, and J. J. Wylie. Survivable storage systems. In Proceedings of the DARPA Information Survivability Conference & Exposition (DISCEX), pages 184--195, Anaheim, CA, USA, June 2001. IEEE CS Press.
	22	S. Haber and P. Kamat. A content integrity service for long-term digital archives. In IS&T Archiving Conference (Archiving 2006), volume 3, pages 159--164. The Society for Imaging Science and Technology, May 2006.
	23	R. Housley , W. Polk , W. Ford , D. Solo, Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, RFC Editor, 2002
	24	European Telecommunication Standard Institute. ETSI TS 101 903 - XML advanced electronic signatures (XAdES), 2002.
	25	ITU. ITU-T rec. X.509|ISO/IEC 9594--8: The directory: Authentication framework, 2000.
	26	Ari Juels , Burton S. Kaliski, Jr., Pors: proofs of retrievability for large files, Proceedings of the 14th ACM conference on Computer and communications security, October 28-31, 2007, Alexandria, Virginia, USA  [doi>10.1145/1315245.1315317]
	27	Neal Koblitz, Hyperelliptic cryptosystems, Journal of Cryptology, v.1 n.3, p.139-150, 1989  [doi>10.1007/BF02252872]
	28	Ramakrishna Kotla , Lorenzo Alvisi , Mike Dahlin, SafeStore: a durable and practical storage system, 2007 USENIX Annual Technical Conference on Proceedings of the USENIX Annual Technical Conference, p.1-14, June 17-22, 2007, Santa Clara, CA
	29	RSA Laboratories. PKCS#1v2.1: RSA cryptography standard, June 2002.
	30	A. Lenstra. Key lengths. Handbook of Information Security, Volume II: Information Warfare; Social, Legal and International Issues; and Security Foundations, Volume II: Information Warfare; Social, Legal and International Issues; and Security Foundations: 617--635, 2006.
	31	Petros Maniatis , Mary Baker, Enabling the Archival Storage of Signed Documents, Proceedings of the Conference on File and Storage Technologies, p.31-45, January 28-30, 2002
	32	Petros Maniatis , Mary Baker, Secure History Preservation Through Timeline Entanglement, Proceedings of the 11th USENIX Security Symposium, p.297-312, August 05-09, 2002
	33	Petros Maniatis , Mema Roussopoulos , T. J. Giuli , David S. H. Rosenthal , Mary Baker, The LOCKSS peer-to-peer digital preservation system, ACM Transactions on Computer Systems (TOCS), v.23 n.1, p.2-50, February 2005  [doi>10.1145/1047915.1047917]
	34	J. McAdams. 27 billion gigabytes to be archived by 2010. Computerworld, December 2007.
	35	Alfred J. Menezes , Scott A. Vanstone , Paul C. Van Oorschot, Handbook of Applied Cryptography, CRC Press, Inc., Boca Raton, FL, 1996
	36	G. E. Moore. Cramming more components onto integrated circuits. Proceedings of the IEEE, 86(1):82--85, 1998.
	37	M. Myers , R. Ankney , A. Malpani , S. Galperin , C. Adams, X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP, RFC Editor, 1999
	38	R. Ostrovsky and W. E. Skeith III. A survey of single-database private information retrieval: Techniques and applications. In T. Okamoto and X. Wang, editors, Public Key Cryptography, volume 4450 of Lecture Notes in Computer Science, pages 393--411. Springer-Verlag, 2007.
	39	R. L. Rivest , A. Shamir , L. Adleman, A method for obtaining digital signatures and public-key cryptosystems, Communications of the ACM, v.21 n.2, p.120-126, Feb. 1978  [doi>10.1145/359340.359342]
	40	Adi Shamir, How to share a secret, Communications of the ACM, v.22 n.11, p.612-613, Nov. 1979  [doi>10.1145/359168.359176]
	41	Mark W. Storer , Kevin M. Greenan , Ethan L. Miller , Kaladhar Voruganti, POTSHARDS: secure long-term storage without encryption, 2007 USENIX Annual Technical Conference on Proceedings of the USENIX Annual Technical Conference, p.1-14, June 17-22, 2007, Santa Clara, CA
	42	C. Wallace, R. Brandner, and U. Pordesch. Long-term archive service requirements. RFC 4810, Internet Engineering Task Force, March 2007.
	43	C. Walter. Kryder's law. Scientific American, page 2, 2005.
	44	Andrew Waugh , Ross Wilkinson , Brendan Hills , Jon Dell'oro, Preserving digital information forever, Proceedings of the fifth ACM conference on Digital libraries, p.175-184, June 02-07, 2000, San Antonio, Texas, United States  [doi>10.1145/336597.336659]