Optimizing Segment Based Document Protection

  • Mirosław Kutyłowski
  • Maciej Gębala
Conference paper

DOI: 10.1007/978-3-642-27660-6_46

Part of the Lecture Notes in Computer Science book series (LNCS, volume 7147)
Cite this paper as:
Kutyłowski M., Gębala M. (2012) Optimizing Segment Based Document Protection. In: Bieliková M., Friedrich G., Gottlob G., Katzenbeisser S., Turán G. (eds) SOFSEM 2012: Theory and Practice of Computer Science. SOFSEM 2012. Lecture Notes in Computer Science, vol 7147. Springer, Berlin, Heidelberg

Abstract

We consider documents with restricted access rights, where some segments of the document are encrypted in order to prevent unauthorized reading. The access rights to such a document are described by an access graph. It is a directed acyclic graph; each node describing a different access rights level. It is assumed that a user having the rights corresponding to a node v has also all rights corresponding to all nodes w such that there is a directed path from v to w in the access graph. Then, to each node v we assign a key Kv and use this key to encrypt the segment of the document corresponding to the access level v.

We consider key management schemes and encoding auxiliary information in the document which ensure that a user who gets a single key corresponding to his access level v can derive all keys Kw for w = v or w being an ancestor of v in the access graph.

In this paper we show how to minimize the total size of auxiliary keying information stored in the document. We provide an algorithm based on node disjoint paths in the access graph and key derivation based on one-way functions. We show that the algorithm chooses the paths in an optimal way.

Keywords

document protection access rights key management key hierarchy directed acyclic graph 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2012

Authors and Affiliations

  • Mirosław Kutyłowski
    • 1
  • Maciej Gębala
    • 1
  1. 1.Institute of Mathematics and Computer ScienceWrocław University of TechnologyPoland

Personalised recommendations