Modeling Integrity in Data Exchange

Miklau, Gerome; Suciu, Dan

doi:10.1007/978-3-540-30073-1_4

Gerome Miklau¹⁸ &
Dan Suciu¹⁸

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3178))

Included in the following conference series:

Workshop on Secure Data Management

362 Accesses

Abstract

We provide a formal model of security guarantees offered by digital signature schemes when they are applied to structured data. This model is an important step towards managing the integrity of data that is shared, integrated, transformed, and exchanged on the World Wide Web. We express signature semantics using well-known database constraints, which can help authors decide what to sign, help recipients evaluate the integrity of signed data, and clarify the capabilities of different signature technologies.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic

$34.99 /Month

Get 10 units per month
Download Article/Chapter or eBook
1 Unit = 1 Article or 1 Chapter
Cancel anytime

Buy Now

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Data Authentication with Privacy Protection

Digital Signatures

Formalizing Hash-then-Sign Signatures

References

Abiteboul, S., Hull, R., Vianu, V.: Foundations of Databases. Addison-Wesley, Reading (1995)
MATH Google Scholar
Baxevanis, A.D.: Molecular biology database collection. Nucleic Acids Research (2003), available at http://www3.oup.co.uk/nar/database/
Bertino, E., Mella, G., Correndo, G., Ferrari, E.: An infrastructure for managing secure update operations on xml data. In: Symposium on Access control models and technologies, pp. 110–122. ACM Press, New York (2003)
Google Scholar
Bull, L., Stanski, P., Squire, D.M.: Content extraction signatures using xml digital signatures and custom transforms on-demand. In: Conference on World Wide Web, pp. 170–177. ACM Press, New York (2003)
Google Scholar
Burrows, M., Abadi, M., Needham, R.: A logic of authentication. ACM Trans. Comput. Syst. 8(1), 18–36 (1990)
Article Google Scholar
Devanbu, P., Gertz, M., Kwong, A., Martel, C., Nuckolls, G., Stubblebine, S.G.: Flexible authentication of xml documents. In: Proceedings of the 8th ACM conference on Computer and Communications Security, pp. 136–145. ACM Press, New York (2001)
Chapter Google Scholar
Devanbu, P.T., Gertz, M., Martel, C., Stubblebine, S.G.: Authentic third-party data publication. In: IFIP Workshop on Database Security, pp. 101–112 (2000)
Google Scholar
Halevy, A.: Answering queries using views: A survey. VLDB Journal 10(4), 270–294 (2001)
Article MATH Google Scholar
Johnson, R., Molnar, D., Song, D.X., Wagner, D.: Homomorphic signature schemes. In: RSA Conference on Topics in Cryptology, pp. 244–262. Springer, Heidelberg (2002)
Google Scholar
Merkle, R.C.: Protocols for public key cryptosystems. In: IEEE Symposium on Security and Privacy, pp. 122–134 (1980)
Google Scholar
Merkle, R.C.: A certified digital signature. In: Brassard, G. (ed.) CRYPTO 1989. LNCS, vol. 435, pp. 218–238. Springer, Heidelberg (1990)
Google Scholar
Micali, S., Rivest, R.L.: Transitive signature schemes. In: RSA Conference on Topics in Cryptology, pp. 236–243. Springer, Heidelberg (2002)
Google Scholar
Ostrovsky, R., Rackoff, C., Smith, A.: Efficient consistency proofs on a committed database (2003)
Google Scholar
Buneman, P., Khanna, S., Tan, W.-C.: Data Provenance: Some Basic Issues. In: Foundations of Software Technology and Theoretical Computer Science 2000 (2000)
Google Scholar
Popa, L., Tannen, V.: An equational chase for path-conjunctive queries, constraints, and views. In: Beeri, C., Bruneman, P. (eds.) ICDT 1999. LNCS, vol. 1540, pp. 39–57. Springer, Heidelberg (1998)
Chapter Google Scholar
A question of balance: Private rights and the public interest in scientific and technical databases. National Academy Press, National Research Council (1999)
Google Scholar
Rivest, R.L., Shamir, A., Adleman, L.: A method for obtaining digital signatures and public-key cryptosystems. Commun. ACM 21(2), 120–126 (1978)
Article MATH MathSciNet Google Scholar
Rivest, R.: Two new signature schemes. Presented at Cambridge seminar (March 2001), See http://www.cl.cam.ac.uk/Research/Security/seminars/2000/rivest-tss.pdf
RSA Data Security, Inc. PKCS #1 v2.1: RSA Public Key Cryptography Standard (June 2002)
Google Scholar
Secure hash standard. Federal Information Processing Standards Publication (FIPS PUB), 180(1) (April 1995)
Google Scholar

Download references

Author information

Authors and Affiliations

Department of Computer Science and Engineering, University of Washington, Seattle, WA, USA
Gerome Miklau & Dan Suciu

Authors

Gerome Miklau
View author publications
You can also search for this author in PubMed Google Scholar
Dan Suciu
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Philips Research, The Netherlands
Willem Jonker
Philips Research, Information & System Security, High Tech Campus 37 (WY 71), 5656 AE, Eindhoven, The Netherlands
Milan Petković

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Miklau, G., Suciu, D. (2004). Modeling Integrity in Data Exchange. In: Jonker, W., Petković, M. (eds) Secure Data Management. SDM 2004. Lecture Notes in Computer Science, vol 3178. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30073-1_4

Download citation

DOI: https://doi.org/10.1007/978-3-540-30073-1_4
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-22983-4
Online ISBN: 978-3-540-30073-1
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics