Cryptology ePrint Archive: Report 2014/552

Efficient Record-Level Keyless Signatures for Audit Logs

Ahto Buldas and Ahto Truu and Risto Laanoja and Rainer Gerhards

Abstract: We propose a log signing scheme that enables (a) verification of the integrity of the whole log, and (b) presentation of any record, along with a compact proof that the record has not been altered since the log was signed, without leaking any information about the contents of other records in the log. We give a formal proof of the security of the proposed scheme, discuss practical considerations, and provide an implementation case study.

Category / Keywords: applications / applied security, secure logging, keyless signatures, cryptographic time-stamps, syslog, rsyslog

Original Publication (with minor differences): Nordsec 2014

Date: received 15 Jul 2014

Contact author: ahto truu at guardtime com

Available format(s): PDF | BibTeX Citation

Version: 20140718:122633 (All versions of this report)

Short URL: ia.cr/2014/552

Discussion forum: Show discussion | Start new discussion