Improving security and reliability in Merkle tree-based online data authentication with leakage resilience

Dongyoung Koo, Youngjoo Shin, Joobeom Yun, Junbeom Hur

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

With the successful proliferation of data outsourcing services, security and privacy issues have drawn significant attention. Data authentication in particular plays an essential role in the storage of outsourced digital content and keeping it safe from modifications by inside or outside adversaries. In this paper, we focus on online data authentication using a Merkle (hash) tree to guarantee data integrity. By conducting in-depth diagnostics of the side channels of the Merkle tree-based approach, we explore novel solutions to improve the security and reliability of the maintenance of outsourced data. Based on a thorough review of previous solutions, we present a new method of inserting auxiliary random sources into the integrity verification proof on the prover side. This prevents the exposure of partial information within the tree structure and consequently releases restrictions on the number of verification execution, while maintaining desirable security and reliability of authentication for the long run. Based on a rigorous proof, we show that the proposed scheme maintains consistent reliability without being affected by continuous information leakage caused by repetitions of the authentication process. In addition, experimental results comparing with the proposed scheme with other state-of-the-art studies demonstrate its efficiency and practicality.

Original languageEnglish
Article number2532
JournalApplied Sciences (Switzerland)
Volume8
Issue number12
DOIs
Publication statusPublished - 2018 Dec 7

Fingerprint

resilience
Authentication
leakage
integrity
privacy
Outsourcing
maintenance
repetition
constrictions
conduction

Keywords

  • Data loss
  • Data outsourcing
  • Information leakage
  • Integrity
  • Merkle (hash) tree
  • Online authentication
  • Reliability

ASJC Scopus subject areas

  • Materials Science(all)
  • Instrumentation
  • Engineering(all)
  • Process Chemistry and Technology
  • Computer Science Applications
  • Fluid Flow and Transfer Processes

Cite this

Improving security and reliability in Merkle tree-based online data authentication with leakage resilience. / Koo, Dongyoung; Shin, Youngjoo; Yun, Joobeom; Hur, Junbeom.

In: Applied Sciences (Switzerland), Vol. 8, No. 12, 2532, 07.12.2018.

Research output: Contribution to journalArticle

@article{e186a0e818474048ac2e9de61429b1cc,
title = "Improving security and reliability in Merkle tree-based online data authentication with leakage resilience",
abstract = "With the successful proliferation of data outsourcing services, security and privacy issues have drawn significant attention. Data authentication in particular plays an essential role in the storage of outsourced digital content and keeping it safe from modifications by inside or outside adversaries. In this paper, we focus on online data authentication using a Merkle (hash) tree to guarantee data integrity. By conducting in-depth diagnostics of the side channels of the Merkle tree-based approach, we explore novel solutions to improve the security and reliability of the maintenance of outsourced data. Based on a thorough review of previous solutions, we present a new method of inserting auxiliary random sources into the integrity verification proof on the prover side. This prevents the exposure of partial information within the tree structure and consequently releases restrictions on the number of verification execution, while maintaining desirable security and reliability of authentication for the long run. Based on a rigorous proof, we show that the proposed scheme maintains consistent reliability without being affected by continuous information leakage caused by repetitions of the authentication process. In addition, experimental results comparing with the proposed scheme with other state-of-the-art studies demonstrate its efficiency and practicality.",
keywords = "Data loss, Data outsourcing, Information leakage, Integrity, Merkle (hash) tree, Online authentication, Reliability",
author = "Dongyoung Koo and Youngjoo Shin and Joobeom Yun and Junbeom Hur",
year = "2018",
month = "12",
day = "7",
doi = "10.3390/app8122532",
language = "English",
volume = "8",
journal = "Applied Sciences (Switzerland)",
issn = "2076-3417",
publisher = "Multidisciplinary Digital Publishing Institute",
number = "12",

}

TY - JOUR

T1 - Improving security and reliability in Merkle tree-based online data authentication with leakage resilience

AU - Koo, Dongyoung

AU - Shin, Youngjoo

AU - Yun, Joobeom

AU - Hur, Junbeom

PY - 2018/12/7

Y1 - 2018/12/7

N2 - With the successful proliferation of data outsourcing services, security and privacy issues have drawn significant attention. Data authentication in particular plays an essential role in the storage of outsourced digital content and keeping it safe from modifications by inside or outside adversaries. In this paper, we focus on online data authentication using a Merkle (hash) tree to guarantee data integrity. By conducting in-depth diagnostics of the side channels of the Merkle tree-based approach, we explore novel solutions to improve the security and reliability of the maintenance of outsourced data. Based on a thorough review of previous solutions, we present a new method of inserting auxiliary random sources into the integrity verification proof on the prover side. This prevents the exposure of partial information within the tree structure and consequently releases restrictions on the number of verification execution, while maintaining desirable security and reliability of authentication for the long run. Based on a rigorous proof, we show that the proposed scheme maintains consistent reliability without being affected by continuous information leakage caused by repetitions of the authentication process. In addition, experimental results comparing with the proposed scheme with other state-of-the-art studies demonstrate its efficiency and practicality.

AB - With the successful proliferation of data outsourcing services, security and privacy issues have drawn significant attention. Data authentication in particular plays an essential role in the storage of outsourced digital content and keeping it safe from modifications by inside or outside adversaries. In this paper, we focus on online data authentication using a Merkle (hash) tree to guarantee data integrity. By conducting in-depth diagnostics of the side channels of the Merkle tree-based approach, we explore novel solutions to improve the security and reliability of the maintenance of outsourced data. Based on a thorough review of previous solutions, we present a new method of inserting auxiliary random sources into the integrity verification proof on the prover side. This prevents the exposure of partial information within the tree structure and consequently releases restrictions on the number of verification execution, while maintaining desirable security and reliability of authentication for the long run. Based on a rigorous proof, we show that the proposed scheme maintains consistent reliability without being affected by continuous information leakage caused by repetitions of the authentication process. In addition, experimental results comparing with the proposed scheme with other state-of-the-art studies demonstrate its efficiency and practicality.

KW - Data loss

KW - Data outsourcing

KW - Information leakage

KW - Integrity

KW - Merkle (hash) tree

KW - Online authentication

KW - Reliability

UR - http://www.scopus.com/inward/record.url?scp=85058132746&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85058132746&partnerID=8YFLogxK

U2 - 10.3390/app8122532

DO - 10.3390/app8122532

M3 - Article

VL - 8

JO - Applied Sciences (Switzerland)

JF - Applied Sciences (Switzerland)

SN - 2076-3417

IS - 12

M1 - 2532

ER -