ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
The HP time vault service: exploiting IBE for timed release of confidential information
Full text PdfPdf (861 KB)
Source International World Wide Web Conference archive
Proceedings of the 12th international conference on World Wide Web table of contents
Budapest, Hungary
SESSION: Data integrity table of contents
Pages: 160 - 169  
Year of Publication: 2003
ISBN:1-58113-680-3
Authors
Marco Casassa Mont  Hewlett-Packard Laboratories, Bristol, UK
Keith Harrison  Hewlett-Packard Laboratories, Bristol, UK
Martin Sadler  Hewlett-Packard Laboratories, Bristol, UK
Sponsor
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): n/a,   Downloads (12 Months): n/a,   Citation Count: 4
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/775152.775175
What is a DOI?

ABSTRACT

Digital information is increasingly more and more important to enable interactions and transactions on the Internet. On the other hand, leakages of sensitive information can have harmful effects for people, enterprises and governments.This paper focuses on the problems of dealing with timed release of confidential information and simplifying its access once public: it is a common issue in the industry, government and day-to-day life.We introduce the "HP Time Vault Service", based on the emerging Identifier-based Encryption (IBE) cryptography schema. IBE (public) encryption keys specify the disclosure time. These keys are used to encrypt confidential information. An independent time server generates and publishes IBE decryption keys correspondent to the current time, at predefined intervals.We discuss the advantages of this approach against current approaches based on traditional cryptography. A web-service based prototype is described, as a proof of concept.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Dan Boneh , Matthew K. Franklin, Identity-Based Encryption from the Weil Pairing, Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology, p.213-229, August 19-23, 2001
 
2
L. Chen , Keith Harrison , A. Moss , David Soldera , Nigel P. Smart, Certification of Public Keys within an Identity Based System, Proceedings of the 5th International Conference on Information Security, p.322-333, September 30-October 02, 2002
 
3
Clark, D. D. and Wilson, D. R. A Comparison of Commercial and Military Computer Security Policies. In IEEE Symposium on Computer Security and Privacy, April 1987.
 
4
Clifford Cocks, An Identity Based Encryption Scheme Based on Quadratic Residues, Proceedings of the 8th IMA International Conference on Cryptography and Coding, p.360-363, December 17-19, 2001
 
5
Diffie, W. and Hellman, M. E. New Directions in Cryptography, 1976.
 
6
David F. Ferraiolo , D. Richard Kuhn , Ramaswamy Chandramouli, Role-Based Access Control, Artech House, Inc., Norwood, MA, 2003
 
7
Frey, G. and Muller, M. and Ruck, H-G. The Tate Pairing and the Discrete Logarithm Applied to Elliptic Curve Cryptosystems. IEM Preprint No. 23, 1998.
 
8
Frederick Gallegos , Sandra Senft , Daniel P. Manson, Ph. D. , Carol Gonzales, Information Technology Control and Audit, Second Edition, Auerbach Publications, Boston, MA, 2004
 
9
Garay, J. and Jakobsson, M. Timed Release of Standard Digital Signatures. Financial Crypto, 2002.
 
10
May, T. C. Timed-release crypto, February 1993.
 
11
Microsoft. Microsoft .NET framework. http://www.microsoft.com/net, 2002
 
12
National Physical Laboratory. The time signal: PIPS service. http://www.npl.co.uk, UK, 2002.
 
13
R. L. Rivest , A. Shamir , D. A. Wagner, Time-lock Puzzles and Timed-release Crypto, Massachusetts Institute of Technology, Cambridge, MA, 1996
 
14
RSA Laboratories. PKCS# 7: Cryptographic Message Syntax Standard. Version 1.5, 1993.
 
15
Sandhu, R. S. and Samarati, P. Access Control: Principles and Practice, IEEE Communications Magazine. pp. 40--48, September 1994.

CITED BY  4
Jung Hee Cheon , Nicholas Hopper , Yongdae Kim , Ivan Osipkov, Provably Secure Timed-Release Public Key Encryption, ACM Transactions on Information and System Security (TISSEC), v.11 n.2, p.1-44, March 2008
Jason Crampton , Hoon Wei Lim , Kenneth G. Paterson, What can identity-based cryptography offer to web services?, Proceedings of the 2007 ACM workshop on Secure web services, November 02-02, 2007, Fairfax, Virginia, USA
Mikhail J. Atallah , Greg N. Frederickson , Ashish Kundu, A tree-covering problem arising in integrity of tree-structured data, Information Processing Letters, v.109 n.1, p.79-82, December, 2008
Rong Du , Ernest Foo , Colin Boyd, Designing a secure e-tender submission protocol, Electronic Commerce Research, v.8 n.3, p.115-142, September 2008

INDEX TERMS

Primary Classification:
  E. Data
  E.3 DATA ENCRYPTION
      Subjects: Public key cryptosystems

Additional Classification:
  K. Computing Milieux
  K.4 COMPUTERS AND SOCIETY
      K.4.4 Electronic Commerce
          Subjects: Security
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.5 Security and Protection (D.4.6, K.4.2)
          Subjects: Unauthorized access (e.g., hacking, phreaking)


General Terms:
Algorithms, Design, Experimentation, Management, Security


Keywords:
disclosure policies, identifier-based encryption, privacy, security, timed-release, web service

Collaborative Colleagues:
Marco Casassa Mont: colleagues
Keith Harrison: colleagues
Martin Sadler: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player