Steady: A Simple End-to-End Secure Logging System
2018 (English)In: Secure IT Systems. NordSec 2018: Lecture Notes in Computer Science, vol 11252 / [ed] N. Gruschka, Springer, 2018, p. 88-103Conference paper, Published paper (Refereed)
Abstract [en]
We present Steady: an end-to-end secure logging system engineered to be simple in terms of design, implementation, and assumptions for real-world use. Steady gets its name from being based on a steady (heart)beat of events from a forward-secure device sent over an untrusted network through untrusted relays to a trusted collector. Properties include optional encryption and compression (with loss of confidentiality but significant gain in goodput), detection of tampering, relays that can function in unidirectional networks (e.g., as part of a data diode), cost-effective use of cloud services for relays, and publicly verifiable proofs of event authenticity. The design is formalized and security proven in the standard model. Our prototype implementation (2,200 loc) shows reliable goodput of over 1M events/s (160 MiB/s) for a realistic dataset with commodity hardware for a device on a GigE network using 16 MiB of memory connected to a relay running at Amazon EC2.
Place, publisher, year, edition, pages
Springer, 2018. p. 88-103
Series
Lecture Notes in Computer Science, ISSN 0302-9743 ; 11252
Keywords [en]
Applied cryptography, Protocols, Secure logging, Cost effectiveness, Cryptography, Network protocols, Commodity hardware, Prototype implementations, Publicly verifiable, Secure loggings, The standard model, Untrusted network, Untrusted relays, Network security
National Category
Computer and Information Sciences
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kau:diva-70592DOI: 10.1007/978-3-030-03638-6_6ISI: 000509939800006Scopus ID: 2-s2.0-85057425500ISBN: 9783030036379 (print)OAI: oai:DiVA.org:kau-70592DiVA, id: diva2:1273090
Conference
Secure IT Systems. NordSec 2018, 28 November 2018 through 30 November 2018
Projects
HITS, 4707
Funder
Knowledge Foundation2018-12-202018-12-202020-09-01Bibliographically approved