%0 Report %1 Tang10-FEt %A Tang, Q. %C Enschede %D 2010 %K Privacy assured_lifecycle cloud_computing cryptography ephemerizer information_lifecycle_management masterarbeit storage %N TR-CTIT-10-01 %T From Ephemerizer to Timed-Ephemerizer: Achieve Assured Lifecycle Enforcement for Sensitive Data %U http://eprints.eemcs.utwente.nl/17095/ %X The concept of Ephemerizer, proposed by Perlman, is a cryptographic primitive for assured data deletion. With an Ephemerizer protocol, data in persistent storage devices will always be encrypted simultaneously using an ephemeral public key of the Ephemerizer (an entity which will publish a set of ephemeral public keys and periodically delete the expired ones) and the long-term public key of a user. An Ephemerizer protocol enables the user to securely decrypt the encrypted data without leaking any information to the Ephemerizer. So far, no security model has ever been proposed for this primitive and existing protocols have not been studied formally. Not surprisingly, we show that some existing Ephemerizer protocols possess security vulnerabilities. In this paper, we introduce the notion of Timed-Ephemerizer, which can be regarded as a hybrid primitive by combining Ephemerizer and Timed-Release Encryption. Compared with an Ephemerizer protocol, a Timed-Ephemerizer protocol further guarantees that data will only be released after a pre-defined disclosure time. Moreover, we propose a security model for Timed-Ephemerizer and formalize relevant security properties. We also propose a new Timed-Ephemerizer protocol and prove its security in the security model.

@techreport{Tang10-FEt, abstract = {The concept of Ephemerizer, proposed by Perlman, is a cryptographic primitive for assured data deletion. With an Ephemerizer protocol, data in persistent storage devices will always be encrypted simultaneously using an ephemeral public key of the Ephemerizer (an entity which will publish a set of ephemeral public keys and periodically delete the expired ones) and the long-term public key of a user. An Ephemerizer protocol enables the user to securely decrypt the encrypted data without leaking any information to the Ephemerizer. So far, no security model has ever been proposed for this primitive and existing protocols have not been studied formally. Not surprisingly, we show that some existing Ephemerizer protocols possess security vulnerabilities. In this paper, we introduce the notion of {Timed-Ephemerizer,} which can be regarded as a hybrid primitive by combining Ephemerizer and {Timed-Release} Encryption. Compared with an Ephemerizer protocol, a {Timed-Ephemerizer} protocol further guarantees that data will only be released after a pre-defined disclosure time. Moreover, we propose a security model for {Timed-Ephemerizer} and formalize relevant security properties. We also propose a new {Timed-Ephemerizer} protocol and prove its security in the security model.}, added-at = {2010-06-13T21:13:32.000+0200}, address = {Enschede}, author = {Tang, Q.}, biburl = {https://www.bibsonomy.org/bibtex/2df45f3d462a179259d5a102dd5d2518d/pilpul}, description = {Masterarbeit}, institution = {Centre for Telematics and Information Technology, University of Twente}, interhash = {56aaa730d77aeb34ec388e83a2b95272}, intrahash = {df45f3d462a179259d5a102dd5d2518d}, keywords = {Privacy assured_lifecycle cloud_computing cryptography ephemerizer information_lifecycle_management masterarbeit storage}, month = jan, number = {{TR-CTIT-10-01}}, timestamp = {2010-06-13T21:13:36.000+0200}, title = {{From Ephemerizer to {Timed-Ephemerizer:} Achieve Assured Lifecycle Enforcement for Sensitive Data}}, type = {Technical Report}, url = {http://eprints.eemcs.utwente.nl/17095/}, year = 2010 }