system GenEventSet Sys CheckEvidence Log event log server log LS CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 20
system GenEventSet Sys CheckEvidence Log event log server log rcpt LS CheckEntry Inspect auditor snap monitor snap E BE a (timed) signature, so LS is accountable evidence Gossip = log = dlc t sig snap E snap 20
system GenEventSet Sys CheckEvidence Log check rcpt event log server log rcpt LS CheckEntry Inspect auditor snap monitor snap E BE a (timed) signature, so LS is accountable evidence Gossip = log = dlc t sig snap E snap 20
system GenEventSet Sys CheckEvidence Log check rcpt event log server log rcpt LS update log -add event to E CheckEntry -update dlc Inspect -update snap auditor snap monitor snap E BE a (timed) signature, so LS is accountable evidence Gossip = log = dlc t sig snap E snap 20
system Sys GenEventSet CheckEvidence Log LS log server log Auditor CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log Auditor CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log LS Auditor CheckEntry update? Inspect auditor snap monitor snap E BE evidence Auditor Gossip = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log LS Auditor CheckEntry update? Inspect snap A auditor snap monitor snap E BE evidence Auditor Gossip = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log LS Auditor ProveAppend CheckEntry update? Inspect snap A auditor snap monitor snap E BE evidence Auditor Gossip = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log LS Auditor ProveAppend CheckEntry update? Inspect snap A snap LS , π auditor snap monitor snap E BE evidence Auditor Gossip = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log LS Auditor ProveAppend CheckEntry update? Inspect snap A snap LS , π auditor snap monitor snap E BE evidence Auditor Gossip CheckAppend = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log event LS Auditor ProveAppend CheckEntry update? Inspect snap A snap LS , π auditor snap monitor snap E BE evidence Auditor Gossip CheckAppend = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log event ProveIncl LS Auditor ProveAppend CheckEntry update? Inspect snap A snap LS , π auditor snap monitor snap E BE evidence Auditor Gossip CheckAppend = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log event ProveIncl LS Auditor ProveAppend CheckEntry update? Inspect CheckIncl snap A snap LS , π auditor snap monitor snap E BE evidence Auditor Gossip CheckAppend = log = dlc t sig snap E snap 21
system Sys GenEventSet CheckEvidence event Log LS log server log b event ProveIncl LS Auditor ProveAppend CheckEntry update? Inspect CheckIncl snap A snap LS , π auditor snap monitor snap E BE evidence Auditor Gossip CheckAppend = log = dlc t sig snap E snap 21
system GenEventSet LS CheckEvidence Log log server log CheckEntry Inspect Monitor auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 22
system GenEventSet LS CheckEvidence Log log server log snap M CheckEntry Inspect Monitor auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 22
system GenEventSet LS CheckEvidence Log find E Δ (events since snap M ) log server log snap M CheckEntry Inspect Monitor auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 22
system GenEventSet LS CheckEvidence Log find E Δ (events since snap M ) log server log snap LS ,E Δ snap M CheckEntry Inspect Monitor auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 22
system GenEventSet LS CheckEvidence Log find E Δ (events since snap M ) log server log snap LS ,E Δ snap M CheckEntry Inspect Monitor Append(E Δ ,dlc M ) = dlc LS ? auditor snap monitor snap E BE use checks to update BE evidence Gossip = log = dlc t sig snap E snap 22
system Monitor Auditor GenEventSet CheckEvidence Log log server log CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 23
system Monitor Auditor GenEventSet snap M ,snap A CheckEvidence Log log server log CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 23
system Monitor Auditor GenEventSet snap M ,snap A CheckEvidence Log log server log DemoInconsistent(E,dlc A ,t A ) π CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 23
system Monitor Auditor GenEventSet snap M ,snap A CheckEvidence Log log server log DemoInconsistent(E,dlc A ,t A ) π b ← CheckInconsistent(dlc A ,t A ,dlc M , π ) if b return (snap A ,snap M , π ) CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 23
system Monitor Auditor GenEventSet snap M ,snap A CheckEvidence Log log server log DemoInconsistent(E,dlc A ,t A ) checks that π (1) snapshots b ← CheckInconsistent(dlc A ,t A ,dlc M , π ) are signed by LS and if b return (snap A ,snap M , π ) (2) π proves CheckEntry Inspect inconsistency auditor snap monitor snap E BE evidence Gossip = log = dlc t sig snap E snap 23
security ability to carry out DemoInconsistent, ProveAppend, and ProveIncl ⇒ consistency unforgeability of DemoInconsistent, DemoNotIncl * , and signature scheme ⇒ non-frameability ability to carry out DemoNotIncl * ⇒ accountability *uses pledged version in which Auditor keeps track of failed events and gossips about them with Monitor to produce new type of evidence 24
goal: bad events are exposed 25
system receives promises to include events in the log goal: bad events are exposed 25
system receives promises to include events in the log system log server CheckEntry auditor + auditors determine if these events are in the log goal: bad events are exposed 25
system receives promises to include events in the log system log server CheckEntry auditor + auditors determine if these events are in the log monitor auditor Gossip + auditors and monitors ensure consistent view of log goal: bad events are exposed 25
system receives promises to include events in the log system log server CheckEntry auditor + auditors determine if these events are in the log monitor auditor Gossip + auditors and monitors ensure consistent view of log ⇒ (by consistency+accountability) event is in monitor’s view of the log goal: bad events are exposed 25
system receives promises to include events in the log system log server CheckEntry auditor + auditors determine if these events are in the log monitor auditor Gossip + auditors and monitors ensure consistent view of log ⇒ (by consistency+accountability) event is in monitor’s view of the log log server Inspect monitor + monitors detect bad events in the log ⇒ goal: bad events are exposed 25
which systems? system GenEventSet CheckEvidence Log log server log design (add LS,Au,Mo) security CheckEntry Inspect (consistency) (non-frameability) auditor snap monitor snap E BE (accountability) construction construction evidence Gossip (dlc+sig) 26
which systems? which systems? system GenEventSet CheckEvidence Log log server log design (add LS,Au,Mo) security CheckEntry Inspect (consistency) (non-frameability) auditor snap monitor snap E BE (accountability) construction evidence Gossip (dlc+sig) 26
Certificate Transparency CA website client CheckEvidence Log log server log CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip bad certificate issuance is exposed ⇒ clients are less likely to accept bad certificates 27 (icon by parkjisun from noun project)
Bitcoin blockchain receiver sender miner Log CheckEvidence log server log CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip double spending is exposed 28
Bitcoin blockchain receiver sender miner Log CheckEvidence log server log CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip double spending is exposed … provably! 28
Bitcoin blockchain receiver sender miner Log CheckEvidence log server log CheckEntry Inspect auditor snap monitor snap E BE evidence Gossip double spending is exposed … provably! sender and receiver don’t need to store blockchain 28
Recommend
More recommend
