Distributed Immutabilization of Secure Logs

Conference paper

DOI: 10.1007/978-3-319-46598-2_9

Part of the Lecture Notes in Computer Science book series (LNCS, volume 9871)
Cite this paper as:
Cucurull J., Puiggalí J. (2016) Distributed Immutabilization of Secure Logs. In: Barthe G., Markatos E., Samarati P. (eds) Security and Trust Management. STM 2016. Lecture Notes in Computer Science, vol 9871. Springer, Cham

Abstract

Several applications require robust and tamper-proof logging systems, e.g. electronic voting or bank information systems. At Scytl we use a technology, called immutable logs, that we deploy in our electronic voting solutions. This technology ensures the integrity, authenticity and non-repudiation of the generated logs, thus in case of any event the auditors can use them to investigate the issue. As a security recommendation it is advisable to store and/or replicate the information logged in a location where the logger has no writing or modification permissions. Otherwise, if the logger gets compromised, the data previously generated could be truncated or altered using the same private keys. This approach is costly and does not protect against collusion between the logger and the entities that hold the replicated data. In order to tackle these issues, in this article we present a proposal and implementation to immutabilize integrity proofs of the secure logs within the Bitcoin’s blockchain. Due to the properties of the proposal, the integrity of the immutabilized logs is guaranteed without performing log data replication and even in case the logger gets latterly compromised.

Keywords

Secure logging Blockchain Distributed immutabilization Integrity Trust 

Copyright information

© Springer International Publishing AG 2016

Authors and Affiliations

  1. 1.Scytl Secure Electronic VotingBarcelonaSpain

Personalised recommendations