Paper 2014/552

Efficient Record-Level Keyless Signatures for Audit Logs

Ahto Buldas, Ahto Truu, Risto Laanoja, and Rainer Gerhards

Abstract

We propose a log signing scheme that enables (a) verification of the integrity of the whole log, and (b) presentation of any record, along with a compact proof that the record has not been altered since the log was signed, without leaking any information about the contents of other records in the log. We give a formal proof of the security of the proposed scheme, discuss practical considerations, and provide an implementation case study.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Published elsewhere. Minor revision. Nordsec 2014
Keywords
applied securitysecure loggingkeyless signaturescryptographic time-stampssyslogrsyslog
Contact author(s)
ahto truu @ guardtime com
History
2014-07-18: received
Short URL
https://ia.cr/2014/552
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2014/552,
      author = {Ahto Buldas and Ahto Truu and Risto Laanoja and Rainer Gerhards},
      title = {Efficient Record-Level Keyless Signatures for Audit Logs},
      howpublished = {Cryptology ePrint Archive, Paper 2014/552},
      year = {2014},
      note = {\url{https://eprint.iacr.org/2014/552}},
      url = {https://eprint.iacr.org/2014/552}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.