This paper presents a scheme which allows a storage service composed of several servers to create a group public key in a decentralised manner, and maintain its security even when such compromises take place. By maintaining keys for a long term, we reduce the reliance on public-key certification. The storage servers periodically update the decryption secrets corresponding to a public key, in such a way that secrets gained by an attacker are rendered useless after an update takes place. An attacker would have to compromise all the servers within a short period lying between two updates in order to fully compromise the system.
Category / Keywords: cryptographic protocols / Post compromise security, Proactive security, Self-healing system, Authentication. Original Publication (with major differences): TrustCom 2017 Date: received 29 May 2017 Contact author: j yu research at gmail com Available format(s): PDF | BibTeX Citation Note: This is the full version of a paper published at TrustCom-2017. Version: 20170531:180842 (All versions of this report) Short URL: ia.cr/2017/485 Discussion forum: Show discussion | Start new discussion