Authentic data publication over the Internet1

Dévanbu, Prémkumar; Gertz, Michael; Martel, Charles U.; Stubblebine, Stuart G.

doi:10.3233/jcs-2003-11302

Cited by 130 publications

(134 citation statements)

References 22 publications

Supporting

Mentioning

132

Contrasting

Order By: Relevance

“…We compare three different range query verification methods, Authentic Publication proposed by Devanbu, et al in [6], Pang and Tan's verifiable B-tree (VB tree) in [17] and the proposals in this paper. We focus on Client proof overhead and verification cost and then consider the effect of bandwidth.…”

Section: Performance Comparisonmentioning

confidence: 99%

“…A HAT is just a binary search tree with data stored at the leaves, along with a digest procedure that incorporates a fast collision intractable hash function h and an accumulator H. We want to take advantage of the input reordering allowed by an accumulator to avoid checking the entire hash path to the root as done when using Merkle trees as in Authentic Publication [6] and related schemes. However, accumulators have larger output, typically near the 1024 bits of an RSA modulus compared to the 160 bit output of SHA-1, and take longer to verify a value y i against a proof z i for a set value z.…”

Section: Breaking the Dependence On Tree Heightmentioning

confidence: 99%

“…We follow the general Authentic Publication model [6]: a trusted data Owner relies on an untrusted third party Publisher to respond to Client queries on a data set. First, a trusted Owner computes a digest of the data set (e.g.…”

Section: Merkle Trees and Authentic Publicationmentioning

confidence: 99%

“…The Owner relies on the untrusted Publisher to process Client database queries. In the related Authentic Publication model [6], the Publisher is assumed to be untrusted, but the Owner is trusted, so Clients use a small digest value computed over the database by the Owner, to verify the query results. The same digest verifies many different queries on the same database.…”

Section: Introductionmentioning

confidence: 99%

“…This allows the Owner to rely on, presumably cheaper, untrusted resources to handle Client requests. Authentic Publication [6] uses the organization of a tree digest, based on Merkle trees, to provide efficient verification for Clients.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Verified Query Results from Hybrid Authentication Trees

Nuckolls

2005

Data and Applications Security XIX

View full text Add to dashboard Cite

Abstract. We address the problem of verifying the accuracy of query results provided by an untrusted third party Publisher on behalf of a trusted data Owner. We propose a flexible database verification structure, the Hybrid Authentication Tree (HAT), based on fast cryptographic hashing and careful use of a more expensive one-way accumulator. This eliminates the dependence on tree height of earlier Merkle tree based proposals and improves on the VB tree, a recent proposal to reduce proof sizes, by eliminating a trust assumption and reliance on signatures. An evaluation of the Hybrid Authentication Tree against the VB tree and Authentic Publication showing that a HAT provides the smallest proofs and faster verification than the VB tree. With moderate bandwidth limitations, the HATs low proof overhead reduces transfer time to significantly outweigh the faster verification time of Authentic Publication. A HAT supports two verification modes that can vary per query and per Client to match Client resources and applications. This flexibility allows the HAT to match the best performance of both hash based and accumulator based methods.

show abstract

Section: Performance Comparisonmentioning

confidence: 99%

Section: Breaking the Dependence On Tree Heightmentioning

confidence: 99%

Section: Merkle Trees and Authentic Publicationmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Verified Query Results from Hybrid Authentication Trees

Nuckolls

2005

Data and Applications Security XIX

View full text Add to dashboard Cite

show abstract

On authenticated skyline query processing over road networks

Zhu

Chang

et al. 2020

Concurrency and Computation

View full text Add to dashboard Cite

In recent times, many location-based service providers (LBSPs) choose to outsource data query services to third-party cloud service providers (CSPs). This allows users to easily search for points of interests (POIs), such as restaurants and parking lots in their vicinity, using their mobile devices and in-vehicle infotainment units. Skyline query is one potential technique to be deployed for road networks. However, the untrusted CSPs may forge or omit query results, intentionally or not. Therefore, in this article, we posit that by observing the unique properties of skyline query results in road networks, we can bind each POI with four nearby POIs with special properties using signature chain technology. Our proposed approach not only provides users with skyline query result authentication ability over the road network, but also have low communication overhead. Specifically, the overhead analysis and experimental results show that our proposed approach decreases the communication overhead.

show abstract

Certifying Data from Multiple Sources

Nuckolls

Martel

Stubblebine³

2004

Data and Applications Security XVII

Self Cite

View full text Add to dashboard Cite

Data integrity can be problematic when integrating and organizing information from many sources. In this paper we describe efficient mechanisms that enable a group of data owners to contribute data sets to an untrusted third-party publisher, who then answers users' queries. Each owner gets a proof from the publisher that his data is properly represented, and each user gets a proof that the answer given to them is correct. This allows owners to be confident that their data is being properly represented and for users to be confident they are getting correct answers. We show that a group of data owners can efficiently certify that an untrusted third party publisher has computed the correct digest of the owners' collected data sets. Users can then verify that the answers they get from the publisher are the same as a fully trusted publisher would provide, or detect if they are not. The results presented support selection and range queries on multi-attribute data sets and are an extension of earlier work on Authentic Publication which assumed that a single trusted owner certified all of the data.

show abstract

Authentic data publication over the Internet1

Cited by 130 publications

References 22 publications

Verified Query Results from Hybrid Authentication Trees

Verified Query Results from Hybrid Authentication Trees

On authenticated skyline query processing over road networks

Certifying Data from Multiple Sources

Contact Info

Product

Resources

About