Skip to main content
Springer Nature Link
Log in

Direct Anonymous Attestation: Enhancing Cloud Service User Privacy

  • Conference paper
On the Move to Meaningful Internet Systems: OTM 2011 (OTM 2011)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 7045))

  • 761 Accesses

Abstract

We introduce a privacy enhancing cloud service architecture based on the Direct Anonymous Attestation (DAA) scheme. In order to protect user data, the architecture provides cloud users with the abilities of controlling the extent of data sharing among their service accounts. A user is then enabled to link Cloud Service applications in such a way, that his/her personal data are shared only among designated applications. The anonymity of the platform identity is preserved while the integrity of the hardware platform (represented by Trusted Computing configuration register values) is proven to the remote servers. Moreover, the cloud service provider can assess user account activities, which leads to efficient security enforcement measures.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Chrome Notebook, http://www.google.com/chromeos/pilot-program-cr48.html

  2. Google Buzz, http://www.google.com/buzz

  3. Google Latitude, http://www.google.com/latitude

  4. Google Transparency Report, http://www.google.com/transparencyreport/governmentrequests/

  5. An information-centric approach to information security, http://virtulization.sys-con.com/node/171199

  6. The Primelife Project, http://www.primelife.eu/

  7. Warning: Google buzz has a huge privacy flaw (February 2010), http://www.businessinsider.com/warning-google-buzz-has-a-huge-privacy-flaw-2010-2

  8. Bellare, M., Garay, J.A., Rabin, T.: Fast Batch Verification for Modular Exponentiation and Digital Signatures. In: Nyberg, K. (ed.) EUROCRYPT 1998. LNCS, vol. 1403, pp. 236–250. Springer, Heidelberg (1998)

    Chapter  Google Scholar 

  9. Boneh, D., Di Crescenzo, G., Ostrovsky, R., Persiano, G.: Public Key Encryption with Keyword Search. In: Cachin, C., Camenisch, J.L. (eds.) EUROCRYPT 2004. LNCS, vol. 3027, pp. 506–522. Springer, Heidelberg (2004)

    Chapter  Google Scholar 

  10. Brickell, E.F., Camenisch, J., Chen, L.: Direct Anonymous Attestation. In: ACM Conference on Computer and Communications Security, pp. 132–145 (2004)

    Google Scholar 

  11. Brickell, E., Li, J.: Enhanced Privacy ID: a direct anonymous attestation scheme with enhanced revocation capabilities. In: WPES, pp. 21–30 (2007)

    Google Scholar 

  12. Camenisch, J.: Better Privacy for Trusted Computing Platforms (Extended Abstract). In: Samarati, P., Ryan, P.Y.A., Gollmann, D., Molva, R. (eds.) ESORICS 2004. LNCS, vol. 3193, pp. 73–88. Springer, Heidelberg (2004)

    Chapter  Google Scholar 

  13. Camenisch, J.L., Lysyanskaya, A.: A Signature Scheme with Efficient Protocols. In: Cimato, S., Galdi, C., Persiano, G. (eds.) SCN 2002. LNCS, vol. 2576, pp. 268–289. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  14. Chen, L.: A DAA Scheme Using Batch Proof and Verification. In: Acquisti, A., Smith, S.W., Sadeghi, A.-R. (eds.) TRUST 2010. LNCS, vol. 6101, pp. 166–180. Springer, Heidelberg (2010)

    Chapter  Google Scholar 

  15. Chor, B., Kushilevitz, E., Goldreich, O., Sudan, M.: Private information retrieval. J. ACM 45(6), 965–981 (1998)

    Article  MathSciNet  MATH  Google Scholar 

  16. Chow, R., Golle, P., Jakobsson, M., Shi, E., Staddon, J., Masuoka, R., Molina, J.: Controlling data in the cloud: outsourcing computation without outsourcing control. In: Proceedings of the 2009 ACM Workshop on Cloud Computing Security, CCSW 2009, pp. 85–90. ACM, New York (2009)

    Chapter  Google Scholar 

  17. EMC. Information-centric security, http://www.idc.pt/resources/PPTs/2007/IT&Internet_Security/12.EMC.pdf

  18. Gentry, C.: Fully homomorphic encryption using ideal lattices. In: Proceedings of the 41st Annual ACM Symposium on Theory of Computing, pp. 169–178. ACM (2009)

    Google Scholar 

  19. Trusted Computing Group. Trusted computing platform alliance (TCPA) main specification, version 1.1b (2001), www.trustedcomputing.org

  20. Trusted Computing Group. Trusted computing platform alliance (TCPA) main specification, version 1.2 (2003), www.trustedcomputing.org

  21. Privacy International. An interview with google on government access to personal information, https://www.privacyinternational.org/article/interview-google-government-access-personal-information

  22. Privacy International. Privacy international identifies major security flaw in google’s global phone tracking system, https://www.privacyinternational.org/article/privacy-international-identifies-major-security-flaw-google's-global-phone-tracking-system

  23. Lambert, C.: Google latitude, now with location history and alerts (November 2009), http://googlemobile.blogspot.com/2009/11/google-latitude-now-with-location.html

  24. Leung, A., Chen, L., Mitchell, C.J.: On a Possible Privacy Flaw in Direct Anonymous Attestation (DAA). In: Lipp, P., Sadeghi, A.-R., Koch, K.-M. (eds.) Trust 2008. LNCS, vol. 4968, pp. 179–190. Springer, Heidelberg (2008)

    Chapter  Google Scholar 

  25. Rudolph, C.: Covert Identity Information in Direct Anonymous Attestation (DAA). In: SEC, pp. 443–448 (2007)

    Google Scholar 

  26. Smyth, B., Ryan, M., Chen, L.: Direct Anonymous Attestation (DAA): Ensuring Privacy with Corrupt Administrators. In: Stajano, F., Meadows, C., Capkun, S., Moore, T. (eds.) ESAS 2007. LNCS, vol. 4572, pp. 218–231. Springer, Heidelberg (2007)

    Chapter  Google Scholar 

  27. Song, D.X., Wagner, D., Perrig, A.: Practical techniques for searches on encrypted data. In: IEEE Symposium on Security and Privacy, pp. 44–55 (2000)

    Google Scholar 

  28. van Dijk, M., Gentry, C., Halevi, S., Vaikuntanathan, V.: Fully Homomorphic Encryption Over the Integers. In: Gilbert, H. (ed.) EUROCRYPT 2010. LNCS, vol. 6110, pp. 24–43. Springer, Heidelberg (2010)

    Chapter  Google Scholar 

  29. Wolfgang, G.: Chrome OS is ahead of its time (December 2010), http://www.conceivablytech.com/4624/products/chrome-os-is-ahead-of-its-time

Download references

Author information

Authors and Affiliations

  1. Computer Security Lab, Münster University of Applied Sciences, D-48565, Steinfurt, Germany

    Ulrich Greveler, Benjamin Justus & Dennis Loehr

Authors
  1. Ulrich Greveler
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Benjamin Justus
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Dennis Loehr
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. STAR Lab, Vrije Universiteit Brussel (VUB), Bldg G/10, Pleinlaan 2, 1050, Brussel, Belgium

    Robert Meersman

  2. DEBII, Curtin University of Technology, Technology Park, De Laeter Way, 6102, Bentley, WA, Australia

    Tharam Dillon

  3. Facultad de Informática, Universidad Politécnica de Madrid, Campus de Montegancedo S/N, 28660, Boadilla del Monte, Madrid, Spain

    Pilar Herrero

  4. Smeal College of Business, Pennsylvania State University, University Park, 16802, P.O. Box, PA, U.S.A.

    Akhil Kumar

  5. Institute of Databases and Information Systems, Ulm University, Germany

    Manfred Reichert

  6. City University of Hong Kong, Hong Kong

    Li Qing

  7. National University of Singapore (NUS), Singapore

    Beng-Chin Ooi

  8. Dipartemento Tecnologie dell’Informazione, Universitá degli Studi di Milano, Via Bramante 65, 26013, Crema, Italy

    Ernesto Damiani

  9. Vanderbilt University, VU, Station B #1829, 2015 Terrace Place, 37203, Nashville, TN, USA

    Douglas C. Schmidt

  10. Virginia Tech, 24060, Blacksburg, VA

    Jules White

  11. Digital Enterprise Research Institute (DERI),, National University of Ireland, IDA Business Park, Lower Dangan, Galway, Ireland

    Manfred Hauswirth

  12. Kno.e.sis Center, Wright State University, Dayton,, Ohio

    Pascal Hitzler

  13. IBM India Research Lab, 4, Block C, Institutional Area, 110 070, Vasant Kunj, New Delhi, India

    Mukesh Mohania

Rights and permissions

Reprints and permissions

Copyright information

© 2011 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Greveler, U., Justus, B., Loehr, D. (2011). Direct Anonymous Attestation: Enhancing Cloud Service User Privacy. In: Meersman, R., et al. On the Move to Meaningful Internet Systems: OTM 2011. OTM 2011. Lecture Notes in Computer Science, vol 7045. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-25106-1_11

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-25106-1_11

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-25105-4

  • Online ISBN: 978-3-642-25106-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics