1,721,183 research outputs found
Security and Trust Management : 11th International Workshop, STM 2015, Vienna, Austria, September 21-22, 2015, Proceedings
No full text
Selective Owner-Side Encryption in Digital Data Markets: Strategies for Key Derivation
Full text linkThe combined adoption of selective encryption and smart contracts deployed on blockchains allows data owners to maintain control over their data when traded on digital data market platforms. Selective encryption, combined with key derivation techniques, guarantees that only customers who are entitled to access a resource can read its content. The adoption of smart contracts deployed on a blockchain permits to regulate the interplay among parties, the possible economic incentives to be paid to the owners, and the exchange of the information necessary for resource decryption (i.e., updates to the key derivation structure) upon payment. However, operations on blockchains have a cost. In this paper, we propose two approaches for updating the key derivation structure to enable customers to access resources, while limiting access times to resources and the cost of write operations on the blockchain to enforce purchases
Computer Security – ESORICS 2012 : 17th European symposium on research in computer security : Pisa, Italy, september 10-12, 2012 : proceedings
No full textPreserving privacy in data outsourcing
Full text linkPrivacy requirements have an increasing impact on the realization of modern
applications. Commercial and legal regulations demand that privacy guarantees
be provided whenever sensitive information is stored, processed, or
communicated to external parties. Current approaches encrypt sensitive data,
thus reducing query execution efficiency and preventing selective information
release. In this thesis, we present a comprehensive approach for protecting
highly sensitive information when it is stored on systems that are not under
the data owner's control. Our approach combines access control and encryption,
enforcing access control via structured encryption. Our solution, coupled with
efficient algorithms for key derivation and distribution, provides efficient
and secure authorization management on outsourced data allowing the data owner
to outsource not only the data but the security policy itself. To reduce the
amount of data to be encrypted we also investigate data fragmentation as a
possible way to protect privacy of data associations and provide fragmentation
as a complementary means for protecting privacy: associations broken by
fragmentation will be visible only to users authorized (by knowing the proper
key) to join fragments. We finally investigate the problem of executing queries
over possible data distributed at different servers and which must be
controlled to ensure sensitive information and sensitive associations be
visible only to parties authorized for that
- …
