D 2010

Secure Logging of Retained Data for an Anonymity Service

KÖPSELL, Stefan and Petr ŠVENDA

Basic information

Original name

Secure Logging of Retained Data for an Anonymity Service

Authors

KÖPSELL, Stefan (276 Germany) and Petr ŠVENDA (203 Czech Republic, guarantor, belonging to the institution)

Edition

Berlin, Privacy and Identity Management for Life, p. 284-296, 15 pp. 2010

Publisher

Springer

Other information

Language

English

Type of outcome

Stať ve sborníku

Field of Study

10201 Computer sciences, information science, bioinformatics

Country of publisher

Czech Republic

Confidentiality degree

není předmětem státního či obchodního tajemství

Publication form

printed version "print"

RIV identification code

RIV/00216224:14330/10:00067391

Organization unit

Faculty of Informatics

ISBN

978-3-642-14281-9

ISSN

DOI

UT WoS

000301966400024

Keywords in English

secure logging; anonymity service; data retention

Tags

International impact, Reviewed
Změněno: 30/4/2014 04:14, RNDr. Pavel Šmerk, Ph.D.

Abstract

V originále

The recently introduced legislation on data retention to aid prosecuting cyber-related crime in Europe also affects the achievable security of systems for anonymous communication on the Internet. We have analyzed the newly arising risks associated with the process of accessing and storage of the retained data and propose a secure logging system, which utilizes cryptographic smart cards, trusted timestamping servers and distributed storage. These key components will allow for controlled access to the stored log data, enforce a limited data retention period, ensure integrity of the logged data, and enable reasonably convenient response to any legitimated request of the retained data. A practical implementation of the proposed scheme was performed for the AN.ON anonymity service, but the scheme can be used for other services affected by data retention legislation.