l o g g ing syste m fo r l o ng life time da ta va lida
play

L o g g ing Syste m fo r L o ng - life time Da ta Va lida tio n - PowerPoint PPT Presentation

May 27, 2023 •38 likes •498 views

L o g g ing Syste m fo r L o ng - life time Da ta Va lida tio n Ying di Yu UCL A 1 L ife time o f da ta vs. sig ning ke y L ife time o f a da ta pa c ke t de pe nds o n da ta usa g e ma y e xist fo r a lo ng time

  1. L o g g ing Syste m fo r L o ng - life time Da ta Va lida tio n Ying di Yu UCL A 1

  2. L ife time o f da ta vs. sig ning ke y • L ife time o f a da ta pa c ke t – de pe nds o n da ta usa g e – ma y e xist fo r a lo ng time – e ve n fo re ve r 2

  3. L ife time o f da ta vs. sig ning ke y • L ife time o f a da ta pa c ke t – de pe nds o n da ta usa g e – ma y e xist fo r a lo ng time – e ve n fo re ve r • L ife time o f a sig ning ke y – must b e limite d 3

  4. Ho w to ma inta in lo ng -live d da ta 4

  5. Ho w to ma inta in lo ng -live d da ta • Re -sig n da ta with a ne w ke y – ma inte na nc e is c o mplic a te d • ke y ro llo ve r • pub lishing re -sig ne d da ta 5

  6. Ho w to ma inta in lo ng -live d da ta • Re -sig n da ta with a ne w ke y – ma inte na nc e is c o mplic a te d • ke y ro llo ve r • pub lishing re -sig ne d da ta • Ca n we sig n da ta o nc e a nd le a ve it a lo ne ? – po st-fa c t va lida tio n • va lida te da ta with a n e xpire d ke y? 6

  7. Po st-F a c t Va lida tio n 7

  8. Po st-F a c t Va lida tio n • K e y wa s va lid a t the mo me nt o f sig ning – tho ug h it is inva lid no w 8

  9. Po st-F a c t Va lida tio n • K e y wa s va lid a t the mo me nt o f sig ning – tho ug h it is inva lid no w • Che c k if the sig na ture wa s g e ne ra te d during the va lid pe rio d o f the ke y 9

  10. Po st-F a c t Va lida tio n • K e y wa s va lid a t the mo me nt o f sig ning – tho ug h it is inva lid no w • Che c k if the sig na ture wa s g e ne ra te d during the va lid pe rio d o f the ke y • Ca n we ha ve a time ma c hine to g o b a c k? – a lo g g ing syste m ma y he lp! 10

  11. Wha t to lo g ? • Assume we ha ve a ho ne st lo g g e r 11

  12. Wha t to lo g ? • Assume we ha ve a ho ne st lo g g e r • Give n a lo ng -live d da ta – da ta na me : re trie ve da ta whe n ne c e ssa ry – da ta dig e st: inte g rity c he c king – sig ning time sta mp 12

  13. Wha t to lo g ? • Assume we ha ve a ho ne st lo g g e r • Give n a lo ng -live d da ta – da ta na me : re trie ve da ta whe n ne c e ssa ry – da ta dig e st: inte g rity c he c king – sig ning time sta mp • But a lso sig ning ke y – na me , dig e st, inse rting time sta mp (a nd re vo king time sta mp if ne e de d) 13

  14. Wha t to lo g ? • Assume we ha ve a ho ne st lo g g e r • Give n a lo ng -live d da ta – da ta na me : re trie ve da ta whe n ne c e ssa ry – da ta dig e st: inte g rity c he c king – sig ning time sta mp • But a lso sig ning ke y – na me , dig e st, inse rting time sta mp (a nd re vo king time sta mp if ne e de d) 14

  15. Se c ure lo g g e r 15

  16. Se c ure lo g g e r • A truste d third pa rty? – no t e ve ry o ne will trust the sa me third pa rty – no e ntity la sts fo re ve r 16

  17. Se c ure lo g g e r • A truste d third pa rty? – no t e ve ry o ne will trust the sa me third pa rty – no e ntity la sts fo re ve r • Pub lic ly a udita b le lo g g e r – a nyo ne c a n a udit the lo g g e r • da ta sig ne rs, da ta c o nsume rs, c e rtific a te issue rs, inde pe nde nt third pa rtie s, … 17

  18. Se c ure lo g g e r • A truste d third pa rty? – no t e ve ry o ne will trust the sa me third pa rty – no e ntity la sts fo re ve r • Pub lic ly a udita b le lo g g e r – a nyo ne c a n a udit the lo g g e r • da ta sig ne rs, da ta c o nsume rs, c e rtific a te issue rs, inde pe nde nt third pa rtie s, … – fo rc e lo g g e r to b e ha ve ho ne stly 18

  19. Se c ure lo g g e r • A truste d third pa rty? – no t e ve ry o ne will trust the sa me third pa rty – no e ntity la sts fo re ve r • Pub lic ly a udita b le lo g g e r – a nyo ne c a n a udit the lo g g e r • da ta sig ne rs, da ta c o nsume rs, c e rtific a te issue rs, inde pe nde nt third pa rtie s, … – fo rc e lo g g e r to b e ha ve ho ne stly – ta mpe r-e vide nt lo g 19

  20. T a mpe r-E vide nt L o g 20

  21. T a mpe r-E vide nt L o g • Ha sh c ha in – Bitc o in – simple , spa c e e ffie nt – slo w to c he c k 21

  22. T a mpe r-E vide nt L o g • Ha sh c ha in – Bitc o in – simple , spa c e e ffie nt – slo w to c he c k 22

  23. T a mpe r-E vide nt L o g • Ha sh c ha in – Bitc o in – simple , spa c e e ffie nt – slo w to c he c k • Me rkle T re e – Ce rtific a te T ra nspa re nc y – e ffic ie nt c he c king 23

  24. T a mpe r-E vide nt L o g • Ha sh c ha in – Bitc o in – simple , spa c e e ffie nt – slo w to c he c k • Me rkle T re e – Ce rtific a te T ra nspa re nc y – e ffic ie nt c he c king 24

  25. Me rkle T re e in NDN 25

  26. Me rkle T re e in NDN A Me rkle T re e c o nsists o f sub -tre e s • 26

  27. Me rkle T re e in NDN A Me rkle T re e c o nsists o f sub -tre e s • E a c h sub -tre e • – fixe d b y its ro o t e a sy to ve r ify • 27

  28. Me rkle T re e in NDN A Me rkle T re e c o nsists o f sub -tre e s • E a c h sub -tre e • – fixe d b y its ro o t e a sy to ve r ify • – fixe d b y its inde x (le ve l, se q No ) e a sy to r e tr ie ve • 28

  29. Me rkle T re e in NDN A Me rkle T re e c o nsists o f sub -tre e s • E a c h sub -tre e • – fixe d b y its ro o t e a sy to ve r ify • – fixe d b y its inde x (le ve l, se q No ) e a sy to r e tr ie ve • – o nc e c o mple te , b e c o me fro ze n c a n be c a c he d • 29

  30. Me rkle T re e in NDN A Me rkle T re e c o nsists o f sub -tre e s • E a c h sub -tre e • – fixe d b y its ro o t e a sy to ve r ify • – fixe d b y its inde x (le ve l, se q No ) e a sy to r e tr ie ve • – o nc e c o mple te , b e c o me fro ze n c a n be c a c he d • E nc o de e a c h sub tre e in a da ta pa c ke t • – na me : / <lo g g e rPre fix>/ [sub T re e I nde x]/ [dig e st] – c o nte nt: no de dig e sts in BF S o rde r 30

  31. Me rkle T re e in NDN A Me rkle T re e c o nsists o f sub -tre e s • E a c h sub -tre e • – fixe d b y its ro o t e a sy to ve r ify • – fixe d b y its inde x (le ve l, se q No ) e a sy to r e tr ie ve • – o nc e c o mple te , b e c o me fro ze n c a n be c a c he d • E nc o de e a c h sub tre e in a da ta pa c ke t • – na me : / <lo g g e rPre fix>/ [sub T re e I nde x]/ [dig e st] – c o nte nt: no de dig e sts in BF S o rde r L e a f no de • – na me : / <lo g g e rPre fix>/ le a f/ [se q No ] – de ta ile d info (sig ne d da ta , time sta mp…) 31

  32. Sto ra g e o f lo g & da ta 32

  33. Sto ra g e o f lo g & da ta • Sto re lo g & da ta se pa ra te ly – L o g g e rs ma inta in lo g – Use rs ma inta in a c tua l da ta • no ne e d to re trie ve lo g fo r una va ila b le da ta 33

  34. Sto ra g e o f lo g & da ta • Sto re lo g & da ta se pa ra te ly – L o g g e rs ma inta in lo g – Use rs ma inta in a c tua l da ta • no ne e d to re trie ve lo g fo r una va ila b le da ta • Use r c a nno t c ha ng e a c tua l da ta – dig e st is fixe d in lo g 34

  35. Sto ra g e o f lo g & da ta • Sto re lo g & da ta se pa ra te ly – L o g g e rs ma inta in lo g – Use rs ma inta in a c tua l da ta • no ne e d to re trie ve lo g fo r una va ila b le da ta • Use r c a nno t c ha ng e a c tua l da ta – dig e st is fixe d in lo g • Use rs ma y e ve n ke e p a sub -tre e – c o nta in a use r’ s o wn da ta – c o uld b e inc o mple te – ro o t dig e st is fixe d in lo g 35

  36. Multiple L o g g e rs 36

  37. Multiple L o g g e rs • L o g g e rs ma y se rve diffe re nt purpo se s – diffe re nt na me spa c e s, diffe re nt trust mo de ls • e .g ., e a c h o rg a niza tio n ma y ha ve its o wn lo g g e r to lo g the ir o wn da ta 37

  38. Multiple L o g g e rs • L o g g e rs ma y se rve diffe re nt purpo se s – diffe re nt na me spa c e s, diffe re nt trust mo de ls • e .g ., e a c h o rg a niza tio n ma y ha ve its o wn lo g g e r to lo g the ir o wn da ta • L o g g e rs sync hro nize with e a c h o the r 38

  39. Multiple L o g g e rs • L o g g e rs ma y se rve diffe re nt purpo se s – diffe re nt na me spa c e s, diffe re nt trust mo de ls • e .g ., e a c h o rg a niza tio n ma y ha ve its o wn lo g g e r to lo g the ir o wn da ta • L o g g e rs sync hro nize with e a c h o the r – impro ve re dunda nc y 39

  40. Multiple L o g g e rs • L o g g e rs ma y se rve diffe re nt purpo se s – diffe re nt na me spa c e s, diffe re nt trust mo de ls • e .g ., e a c h o rg a niza tio n ma y ha ve its o wn lo g g e r to lo g the ir o wn da ta • L o g g e rs sync hro nize with e a c h o the r – impro ve re dunda nc y – a uto ma tic a lly a udit e a c h o the r 40

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Mo de lling o f Pro pe lla nt Ma na g e me nt Syste ms in E a rly-Pha se L a unc he r De ve lo

Mo de lling o f Pro pe lla nt Ma na g e me nt Syste ms in E a rly-Pha se L a unc he r De ve lo

Mo de lling o f Pro pe lla nt Ma na g e me nt Syste ms in E a rly-Pha se L a unc he r De ve lo pme nt E UCASS 2015 Va ne ssa Cla rk Ge rma n Ae rospa c e Ce nte r I nstitute o f Spa c e Syste ms Spa c e L a unc he r Syste m Ana

567 views • 37 slides
Ti Time me and nd Att ttendance endance Sy Syste stem A Follow-up Discussion Board of

Ti Time me and nd Att ttendance endance Sy Syste stem A Follow-up Discussion Board of

Ti Time me and nd Att ttendance endance Sy Syste stem A Follow-up Discussion Board of Education Meeting Tonya Crosby, Chief Financial Officer February 5, 2019 Survey Results 2 Do you be believ ieve e that at impl pleme ement

480 views • 13 slides
Pulse s in Syste ms: SI ML E SA Susta ina b le inte nsific a tio n o f ma ize - le g ume

Pulse s in Syste ms: SI ML E SA Susta ina b le inte nsific a tio n o f ma ize - le g ume

Pulse s in Syste ms: SI ML E SA Susta ina b le inte nsific a tio n o f ma ize - le g ume syste ms fo r F o o d Se c urity in e a ste rn a nd so uthe rn Afric a A ma jo r fa rming syste ms pro je c t fo r Afric a funde d b y ACI AR

113 views • 9 slides
Pre-Proposal l Confer erence ce S72-T29275 Aircraft S Support S Syste tems Op Oper

Pre-Proposal l Confer erence ce S72-T29275 Aircraft S Support S Syste tems Op Oper

Pre-Proposal l Confer erence ce S72-T29275 Aircraft S Support S Syste tems Op Oper erati tion ons &amp; &amp; Maintenance a ce and S Servi vice L ce Life e Presented by Renewal S Services ces Calvin D. Wells, Deputy

334 views • 19 slides
Ne b ra ska Syste m of Ca re Youth Guided, Fam ily Driven Transform rm at ion T Thro rough

Ne b ra ska Syste m of Ca re Youth Guided, Fam ily Driven Transform rm at ion T Thro rough

Ne b ra ska Syste m of Ca re Youth Guided, Fam ily Driven Transform rm at ion T Thro rough Part rt ners rships 08 08/08 08/201 017 Helping People Live Bet ter Lives. Wh a t Is A Syste m of Ca re ? Defin init it io ion: A

455 views • 18 slides
NE T L Gasific ation Pr ogr am Ove r vie w 2019 Gasific ation Syste ms Pr oje c t Re vie w

NE T L Gasific ation Pr ogr am Ove r vie w 2019 Gasific ation Syste ms Pr oje c t Re vie w

NE T L Gasific ation Pr ogr am Ove r vie w 2019 Gasific ation Syste ms Pr oje c t Re vie w Me e ting April 9, 2019 K. David L yons, T e c hnology Manage r , Ga sific a tio n Syste ms, NE T L Solutions fo r T oday | Options fo r T

446 views • 15 slides
17/04/2015 What does it mean? Re spo nse -time a na lysis c o nditio na l

17/04/2015 What does it mean? Re spo nse -time a na lysis c o nditio na l

17/04/2015 What does it mean? Re spo nse -time a na lysis c o nditio na l Response-Time Analysis DAG ta sks of Conditional DAG Tasks multipro c e sso r syste ms in Multiprocessor Systems Alessandra

252 views • 8 slides
HI s Pump Syste ms Op timiza tio n (PSO) tra ining is a o ne -da y o ve rvie w o n the fa c to

HI s Pump Syste ms Op timiza tio n (PSO) tra ining is a o ne -da y o ve rvie w o n the fa c to

HI s Pump Syste ms Op timiza tio n (PSO) tra ining is a o ne -da y o ve rvie w o n the fa c to rs tha t impa c t the o pe ra tio n a nd e ne rg y c o nsumptio n o f pumping syste ms. Ge ne ra lly, a utility spo nso ring PSO tra ining will inc

75 views • 4 slides
The US National Academies Initiatives on Responsible Science Lida Anestidou, DVM, PhD Program

The US National Academies Initiatives on Responsible Science Lida Anestidou, DVM, PhD Program

The US National Academies Initiatives on Responsible Science Lida Anestidou, DVM, PhD Program Director Why teach responsible conduct of science (RCS)? What are current methods of teaching and do they work? The foundations of our approach

289 views • 16 slides
A Low-Voltage Log-Domain Integrator Using MOSFET in Weak Inversion Lida Ramezani Electrical

A Low-Voltage Log-Domain Integrator Using MOSFET in Weak Inversion Lida Ramezani Electrical

A Low-Voltage Log-Domain Integrator Using MOSFET in Weak Inversion Lida Ramezani Electrical &amp; Computer Engineering Dept., Ryerson University, lramezan@ee.ryerson.ca PATMOS2010 1 Outline Introduction 1. Main idea and concepts 2. 2-1

838 views • 32 slides
E ARLY WARNING SYSTE M AND DISASTE R E ARLY WARNING SYSTE M AND DISASTE R MANAGE ME NT

E ARLY WARNING SYSTE M AND DISASTE R E ARLY WARNING SYSTE M AND DISASTE R MANAGE ME NT

E ARLY WARNING SYSTE M AND DISASTE R E ARLY WARNING SYSTE M AND DISASTE R MANAGE ME NT CONCE PT IN INDONE SIA MANAGE ME NT CONCE PT IN INDONE SIA BY: ANALIS WIDODO ADI DIRECTORATE GENERAL OF POSTS AND TELECOMMUNICATIONS REPUBLIC

288 views • 10 slides
Ma rc ia L . Zuc ke r, Ph.D. ZIVD L L C 1 E xpla in why ACT s fro m diffe re nt syste

Ma rc ia L . Zuc ke r, Ph.D. ZIVD L L C 1 E xpla in why ACT s fro m diffe re nt syste

Ma rc ia L . Zuc ke r, Ph.D. ZIVD L L C 1 E xpla in why ACT s fro m diffe re nt syste ms a re no t the sa me De ve lo p a pla n fo r switc hing fro m o ne ACT syste m to a no the r De sc rib e why ACT a nd a PT T a

370 views • 34 slides
Ma rc ia L . Zuc ke r, Ph.D. ZIVD L L C 1 E xpla in why ACT s fro m diffe re nt syste

Ma rc ia L . Zuc ke r, Ph.D. ZIVD L L C 1 E xpla in why ACT s fro m diffe re nt syste

Ma rc ia L . Zuc ke r, Ph.D. ZIVD L L C 1 E xpla in why ACT s fro m diffe re nt syste ms a re no t the sa me De ve lo p a pla n fo r switc hing fro m o ne ACT syste m to a no the r De sc rib e why ACT a nd a PT T a

523 views • 33 slides
WORLD SBK HERE WE COME! Info: lida@mikakallio.com THE FASTEST FAMILY IN FINLAND, Kallio Racing,

WORLD SBK HERE WE COME! Info: lida@mikakallio.com THE FASTEST FAMILY IN FINLAND, Kallio Racing,

I N S E A S O N 2 0 1 7 WORLD SBK HERE WE COME! Info: lida@mikakallio.com THE FASTEST FAMILY IN FINLAND, Kallio Racing, is making Nordic motorsport history in season 2017 when it becomes the 1st Nordic team to enter in FIM Superbike World

486 views • 23 slides
Auto no mo us Ve hic le s, Co nne c te d Syste ms a nd Ma rke t Ado ptio n F a c to rs Ha ni Ma

Auto no mo us Ve hic le s, Co nne c te d Syste ms a nd Ma rke t Ado ptio n F a c to rs Ha ni Ma

Auto no mo us Ve hic le s, Co nne c te d Syste ms a nd Ma rke t Ado ptio n F a c to rs Ha ni Ma hma ssa ni No rthwe ste rn Unive rsity WHAT IS A DRIVERLESS CAR? Four Levels of Automation Kornhauser, 2014 Implications of Each Level: User,

328 views • 22 slides
Ne w QCE Syste m F ro m 2019 o nwa rd s fo r Ye a r 9 into 10 a nd Ye a r 10 into 11 Bundab

Ne w QCE Syste m F ro m 2019 o nwa rd s fo r Ye a r 9 into 10 a nd Ye a r 10 into 11 Bundab

Ne w QCE Syste m F ro m 2019 o nwa rd s fo r Ye a r 9 into 10 a nd Ye a r 10 into 11 Bundab e rg State Hig h Sc ho o l e xpe c ts all stude nts who g raduate to attain a QCE o r QCI A the n e ithe r an AT AR o r VE T q ualific atio

617 views • 35 slides
Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu Course VI-3A April 26, 1999 On-Campus Thesis Advisor: Ron Rivest Bellcore Company Supervisor: S. Rajagopalan 4/26/99 Cepheus: The Cryptographic

596 views • 12 slides
Integrity checking for combined databases Davide Martinenghi Computer Science, building 42.1

Integrity checking for combined databases Davide Martinenghi Computer Science, building 42.1

CoLogNET Workshop on Logic-Based Methods for Information Integration - 23 August 2003 Integrity checking for combined databases Davide Martinenghi Computer Science, building 42.1 Roskilde University Universitetsvej 1 P.O. Box 260 DK-4000

496 views • 15 slides
Dealing with Academic Integrity Violations - TA Training Please form a group of 4 people Dr.

Dealing with Academic Integrity Violations - TA Training Please form a group of 4 people Dr.

Dealing with Academic Integrity Violations - TA Training Please form a group of 4 people Dr. Emad Jassim Assistant Dean - College of Engineering - 206 Engineering Hall jassim@Illinois.edu TA Training

740 views • 36 slides
Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh,

Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh,

Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh, Dwaine Clarke, Blaise Gassend, Marten van Dijk, Srinivas Devadas Massachusetts Institute of Technology New Security Challenges Current computer

411 views • 26 slides
Sig ignal In Integrity Checks Ba Babak Abi 30 August 2018 1 DPM Design simply includes :

Sig ignal In Integrity Checks Ba Babak Abi 30 August 2018 1 DPM Design simply includes :

DPM Status update Sig ignal In Integrity Checks Ba Babak Abi 30 August 2018 1 DPM Design simply includes : ZYNQ: XCZU15EG-1FFVB1156E samtec M2 NMVe DDR4 : MT40A1G16WBU-083(twin die) in two separate banks 1. 4x DDR4 (8 GB)

369 views • 23 slides
CSCI 127 Introduction to Database Systems Integrity Constraints and Functional Dependencies

CSCI 127 Introduction to Database Systems Integrity Constraints and Functional Dependencies

CSCI 127 Introduction to Database Systems Integrity Constraints and Functional Dependencies CSCI 127: Introduction to Database Systems Integrity Constraints Purpose: Prevent semantic inconsistencies in data total savings + checking

1.01k views • 64 slides
1st Graduate Students Conference Computer Science Department October 25th, 2019 PhD Candidate

1st Graduate Students Conference Computer Science Department October 25th, 2019 PhD Candidate

Senior Software Security Engineer sad Sphynx Technology Solutions AG (CH,CY) Email: smyrlis@sphynx.ch 1st Graduate Students Conference Computer Science Department October 25th, 2019 PhD Candidate School of Mathematics, Computer Science and

923 views • 32 slides
Compiler Design Spring 2018 Thomas R. Gross Computer Science Department ETH Zurich, Switzerland

Compiler Design Spring 2018 Thomas R. Gross Computer Science Department ETH Zurich, Switzerland

Compiler Design Spring 2018 Thomas R. Gross Computer Science Department ETH Zurich, Switzerland 1 What I hope you learned in this class 1. Compiler design: Structure of a simple compiler Simple: 2-3K lines of Java code (maybe a bit more)

849 views • 33 slides

More recommend