Keeping data secret under full compromise using porter devices

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn , Issue , 2010, Pages 241-250

  Pöpper, Christina ^a   Basin, David ^a   Čapkun, Srdjan ^a   Cremers, Cas ^a  

^a ETH ZURICH   (Switzerland)

Author keywords

full compromise; security protocol; system security

Indexed keywords

AUTOMATIC VERIFICATION TOOLS; CONFIDENTIAL DATA; FORWARD SECRET; FULL COMPROMIZE; KEY STORAGE; NEW SOLUTIONS; SECURITY PROTOCOLS; SYSTEM SECURITY;

DIGITAL STORAGE;

EID: 78751506483     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1920261.1920297     Document Type: Conference Paper

References (36)

1. Privat Server HSM (Hardware Security Module). http://www.arx.com/ products/hsm.php.
2. Scyther protocol models for keeping data secret under full compromise using porter devices. http://people.inf.ethz.ch/cremersc/scyther/DataDeletion, Oct 2010.
3. Chris Alexander and Ian Goldberg. Improved user authentication in off-the-record messaging. In Proceedings of the ACM Workshop on Privacy in the Electronic Society (WPES), pages 41-47, New York, 2007. ACM.
4. Bouncy Castle Crypto APIs. http://www.bouncycastle.org.
5. Charu Arora and Mathieu Turuani. Validating integrity for the Ephemerizer's protocol with CL-Atse. In Formal to Practical Security: Papers Issued from the 2005-2008 French-Japanese Collaboration, pages 21-32. Berlin, 2009.
6. David Basin and Cas Cremers. Degrees of security: Protocol guarantees in the face of compromising adversaries. In Proceedings of the 24th International Workshop on Computer Science Logic (CSL), pages 1-18. Springer, 2010.
7. David Basin and Cas Cremers. Modeling and analyzing security in the presence of compromising adversaries. In Proceedings of the European Symposium on Research in Computer Security (ESORICS), pages 340-356. Springer, 2010.
8. Mihir Bellare and Sara K. Miner. A forward-secure digital signature scheme. In Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology (CRYPTO), pages 431-448, London, 1999.
9. Bluecove. Java library for Bluetooth (JSR-82 implementation). http://bluecove.org.
10. Bluetooth SIG, Inc. Bluetooth specification version 3.0 + HS, 2009.
11. Nikita Borisov, Ian Goldberg, and Eric Brewer. Off-the-record communication, or, why not to use PGP. In Proceedings of the ACM Workshop on Privacy in the Electronic Society (WPES), pages 77-84, New York, 2004. ACM.
12. Colin Boyd and Anish Mathuria. Protocols for Authentication and Key Establishment. Springer, 2003.
13. Ran Canetti, Shai Halevi, and Jonathan Katz. A forward-secure public-key encryption scheme. In Proceedings of the Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT), pages 255-271. Springer, 2003.
14. IBM Corporation. IBM PCI Cryptographic Coprocessor. General Information Manual. http://www-03.ibm.com/security/cryptocards.
15. Cas Cremers. Scyther. A tool for the automatic verification of security protocols. http://people.inf.ethz.ch/cremersc/scyther.
16. Cas Cremers. Scyther - Semantics and Verification of Security Protocols. PhD thesis, Eindhoven University of Technology, 2006.
17. Yvo Desmedt and Yair Frankel. Threshold cryptosystems. In Proceedings on Advances in Cryptology (CRYPTO), pages 307-315, New York, 1989. Springer.
18. Whitfield Diffie, Paul C. van Oorschot, and Michael J. Wiener. Authentication and authenticated key exchanges. Designs, Codes and Cryptography, 2(2):107-125, 1992.
19. Danny Dolev and Andrew C. Yao. On the security of public key protocols. IEEE Transactions on Information Theory, 29(2):198-208, 1983.
20. Drop. Simple real-time sharing, collaboration, presentation. http://drop.io.
21. Roxana Geambasu, Tadayoshi Kohno, Amit Levy, and Henry M. Levy. Vanish: Increasing data privacy with self-destructing data. In Proceedings of the 18th USENIX Security Symposium, pages 299-315. USENIX Association, 2009.
22. Christoph G. Günther. An identity-based key-exchange protocol. In Proceedings of the Workshop on the Theory and Application of Cryptographic Techniques on Advances in Cryptology (EUROCRYPT), pages 29-37, New York, 1990. Springer.
23. Prateek Gupta and Vitaly Shmatikov. Key confirmation and adaptive corruptions in the protocol security logic. In Proceedings of the Joint Workshop on Foundations of Computer Security and Automated Reasoning for Security Protocol Analysis (FCS-ARSPA), 2006.
24. Peter Gutmann. Secure deletion of data from magnetic and solid-state memory. In Proceedings of the 6th USENIX Security Symposium (SSYM), Focusing on Applications of Cryptography, pages 77-90, Berkeley, California, 1996. USENIX Association.
25. Disappearing Inc. http://www.disappearing-inc.com.
26. Jaeheung Lee, Junyoung Heo, Yookun Cho, Jiman Hong, and Sung Y. Shin. Secure deletion for NAND flash file system. In Proceedings of the ACM Symposium on Applied Computing (SAC), pages 1710-1714, 2008.
27. Alfred J. Menezes, Paul C. van Oorschot, and Scott A. Vanstone. Handbook of Applied Cryptography. CRC Press, 1997.
28. Radia Perlman. The Ephemerizer: Making data disappear. Journal of Information System Security, 1:51-68, 2005.
29. Radia Perlman. File system design with assured delete. In Proceedings of the Network and Distributed System Security Symposium (NDSS). ISOC, 2007.
30. Zachary N. J. Peterson, Randal Burns, Joe Herring, Adam Stubblefield, and Aviel D. Rubin. Secure deletion for a versioning file system. In Proceedings of the 4th USENIX Conference on File and Storage Technologies (FAST), pages 143-154, Berkeley, California, 2005. USENIX Association.
31. Adi Shamir. How to share a secret. Commununications of the ACM, 22(11):612-613, 1979.
32. Victor Shoup. On formal models for secure key exchange. Research Report RZ 3120, IBM Research, 1999.
33. Muthian Sivathanu, Lakshmi N. Bairavasundaram, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. Life or death at block-level. In Proceedings of the 6th Symposium on Operating Systems Design and Implementation (OSDI), pages 379-394, Berkeley, California, 2004. USENIX Association.
34. Sergei Skorobogatov. Data remanence in flash memory devices. In Proceedings of the Cryptographic Hardware and Embedded Systems Workshop (CHES), pages 339-353, 2005.
35. NexusOne Smartphone. http://www.htc.com.
36. Scott Wolchok, Owen S. Hofmann, Nadia Heninger, Edward W. Felten, J. Alex Halderman, Christopher J. Rossbach, Brent Waters, and Emmett Witchel. Defeating Vanish with low-cost Sybil attacks against large DHTs. In Proceedings of the 17th Network and Distributed System Security Symposium (NDSS). ISOC, 2010.