PRACTICAL AUDITABILITY IN TRUSTED MESSAGING SYSTEMS

Miguel Reis and Artur Rom

Novis Telecom, SA

Estrada da Outurela, 118-A, Carnaxide, Portugal

A. Eduardo Dias

Universidade de

Evora

Rua Rom

ao Ramalho, 59,

Evora, Portugal

Keywords:

Auditability, Trusted Repository, Secure Messaging, Secure Electronic Commerce.

Abstract:

The success of a dispute resolution over an electronic transaction depends on the possibility of trustworthily

recreating it. It is crucial to maintain a trusted, thus fully auditable, repository to which a judge could re-

quest a transaction recreation. This article presents a practical scheme providing strong guarantees about the

auditability of a trusted repository. We use the messaging paradigm to present the mechanism, but it can be

applied to any other scenario that needs to maintain fully auditable long term information.

1 INTRODUCTION

Common messaging systems, in particular electronic

mail, do not possess enough security guarantees to

satisfy most of the assumptions required on security

demanding areas, such as military or business to

business electronic commerce. Even secure elec-

tronic mail is not enough, since it only satisﬁes

some requirements, like authentication, integrity,

conﬁdentiality and non-repudiation of origin.

Stronger security requirements, like non-

repudiation of submission and non-repudiation

of receipt (Kremer et al., 2002; Zhou, 2001), together

with trusted auditability (Haber and Stornetta, 1997;

Peha, 1999) from the message transportation and

delivery systems, are not guaranteed at all. Fur-

thermore, it is fundamental to assure the effective

message delivery, or some warning about the im-

possibility of delivery, as well as reliable and secure

(e.g., conﬁdential) message archiving, needed for

legal effects and long term availability.

This article presents an approach to maintain long

term auditability of this type of electronic messaging

systems, and it is organized as follows. In section 2

we present a series of required assumptions. In sec-

tions 3 and 4 we propose a new scheme and in sec-

tion 5 we analyze its security. In section 6 we ana-

lyze the efﬁciency of the proposed scheme. In section

7 we present implementation guidelines using widely

available tools. In section 8 we conclude the article.

2 SECURITY REQUIREMENTS

Messaging systems auditability is based on the

possibility of recreating a transaction or a transaction

set. This requirement demands the trusted storage

of the set of messages belonging to a transaction.

Every message, as well as additional attributes, is

mapped to a speciﬁc record. A record is the basic

unit of a trusted repository. We can deﬁne trusted

storage as a series of assumptions made over a record:

• Content integrity: It is impossible to corrupt the

content of a record without detection.

• Temporal ordering: Every record must be in

chronological order, and this ordering cannot be

corrupted without detection.

• Record elimination: It is impossible to delete a

record without detection.

• Record insertion: It is impossible to add a non-

authorized record without detection. We deﬁne au-

thorized entity as someone possessing or having ac-

cess to a secret needed to create records.

From this point on we will use the word ”validity”

to refer to a situation where all the assumptions are

achieved.

169

Reis M., Romão A. and Eduardo Dias A. (2004).

PRACTICAL AUDITABILITY IN TRUSTED MESSAGING SYSTEMS.

In Proceedings of the First International Conference on E-Business and Telecommunication Networks, pages 169-174

DOI: 10.5220/0001392001690174

 SciTePress

3 A NEW AUDITABILITY

SCHEME

In this section we describe a new scheme providing

strong guarantees of meeting all the assumptions

previously identiﬁed. Let us assume that all the

records are kept inside a trusted repository. Let us

also assume that message transportation from the

messaging system to the trusted repository is done

without corruption.

3.1 Notation

We use the following notation to represent data

elements and functions in this article:

M : message belonging to a speciﬁc transaction

E : record element

: concatenation of two elements E

and E

R = {E

,...,E

} : record containing the concate-

nation of elements E

to E

, f

: ﬂags indicating the purpose of a record

L : label linking a message with a speciﬁc transac-

tion (transaction identiﬁer)

(E) : keyed message digest applied to element

E using key k

H(E) : message digest applied to element E

(E) : signature applied to element E using

private key k

e S

: veriﬁcation and signature key of

principal A

n

: element placed in position n in an ordered

list

T (E) : timestamp (Adams et al., 2001) applied to

element E

3.2 The protocol

Whenever a message M is sent to the trusted repos-

itory a new record R

is created in the following way:

= {f

,L,M,Mac}

Mac = H

,L,M)

The Mac element is generated using elements

present in the record. If any of these elements

changes, the Mac element must change too, in order

to keep the record integrity. This way we ensure that

only who owns the secret k is able to change or add

records to the repository. With this mechanism we

satisfy the integrity assumption.

We now introduce the concept of an epoch.An

epoch is deﬁned as a set of R

records, ordered in

time, and completed with an R

record. This type of

record is deﬁned in the following way:

= {f

,k,V

,Sig

,T(Sig

)}

Sig

= s

,k,H(Mac

<1>

, ..., M ac

<n>

))

Sig

is a digital signature made over a sequence of

elements belonging to the R

record together with a

message digest element. The message digest is built

from an ordered sequence of elements belonging to

all R

records which form this epoch.

As explained above using R

records, R

records

can only be changed or added to the trusted repository

by who owns a secret, which is, in this particular

case, the signature key S

. By using a message

digest built over elements orderly collected from all

the records R

included in this epoch, the signature

element Sig

gives us the guarantee of content

integrity, temporal ordering, non-elimination and

non-authorized insertion of records without detection.

The message digest function referred above is

created using Mac elements. This way we not only

guarantee the integrity of these particular elements

within each R

record, but also the integrity of the

set of R

records belonging to this epoch.

So far we only guarantee the assumptions deﬁned

in section 2 within each particular epoch (as long as

it is closed). But we must also guarantee that epochs

are ordered in time, as well as the impossibility

to completely remove one or more epochs without

detection, thus certifying that the assumptions deﬁned

in section 2 are veriﬁed in all the trusted repository.

To achieve this goal we need to modify the deﬁnition

of the Sig

element in the following way:

Sig

<n>

= s

,k,H(Mac

<1>

, ..., M ac

<n>

H(Sig

<n−1>

))

This way all of the R

records are directly con-

nected and ordered in time. Every R

record has

among its elements a reference to the immediately

ICETE 2004 - SECURITY AND RELIABILITY IN INFORMATION SYSTEMS AND NETWORKS

170

previous R

record (as depicted in ﬁgure 1). For

someone to be able to compromise one or more

epochs without detection from the validation system,

all of the epochs generated after those ones would

also have to be changed. Assuming the signature key

used in the last R

record of the trusted repository

is never compromised, we can state that with this

scheme all of the assumptions deﬁned in section 2

are fully satisﬁed.

records act as checkpoints of validation

throughout the repository. The concept of creating

checkpoints and link them together follows the

concept of a Merkle tree (Merkle, 1980).

<7>

<4>

<8>

<9>

<10>

<5>

<11>

<12>

<6>

<13>

...

4th epoch

5th epoch

6th epoch

...

<1>

<2>

<1>

<3>

<2>

<4>

<5>

<6>

<3>

1st epoch

2nd epoch

3rd epoch

Figure 1: Example with a non-ﬁxed number of R

records

in each epoch.

3.3 Record integrity veriﬁcation

To validate the content of an R

record it is neces-

sary to go through the following steps:

1. Check which epoch the R

record belongs to, thus

identifying that epoch’s R

record.

2. Obtain H(Mac

<1>

, ..., M ac

<n>

). Mac elements

are obtained from every R

record belonging to

the current epoch.

3. Obtain the previous epoch R

record, using it to

obtain H(Sig

<n−1>

4. Check if the content from record R

is not cor-

rupted, using veriﬁcation key V

, the elements

gathered in the previous steps and elements f

and

k to validate the digital signature present in element

Sig

5. Validate the content of record R

by check-

ing if the content from Mac element matches

,L,M). We need to use the secret element

k present in this epoch’s R

record.

6. Repeat steps 2 to 4 to all of the epochs created after

this one, thus validating the chain of R

records un-

til the last one currently present in the trusted repos-

itory is correctly veriﬁed, or an error occurs.

4 HIERARCHICAL

PARTITIONING OF RECORDS

The procedure explained above becomes impractical

as the number of epochs increases. This is due to the

fact that the number of record veriﬁcations that are

necessary is directly proportional to the number of

records in the trusted repository.

4.1 Deﬁnitions

To solve this problem we introduce a new hierarchical

partitioning scheme. Instead of directly connect all

the R

records in the trusted repository, we now only

directly connect R

subsets. To explain this scheme

we present a new notation:

[y]

: record belonging to hierarchical level y

<l>

: last record of a subset

The last record of an epoch subset, which is always

an R

record, is no longer directly connected to the

ﬁrst R

record of the next epoch. Instead, it is now

only directly connected to a hierarchically superior

record. This new type of record will be deﬁned as

. R

records are also grouped in subsets, and

directly connected one to another, just like explained

to R

records. In a generic way, every time a record

subset is terminated with an R

[y]

<l>

record, a new

hierarchically superior record level beginning with

an R

[y+1]

<1>

record is created. The ﬁrst record

belonging to hierarchical level y +1 is always directly

connected to the last record belonging to hierarchical

level y (as depicted in ﬁgure 2). We now formally

introduce this new type of record:

[y]

= {f

,Sig

[y]

,T(Sig

[y]

)}, where

Sig

[1]

<n>

= s

,H(Sig

<l>

))

Sig

[y]

<1>

= s

,H(Sig

[y−1]

<l>

)) if y =1

Sig

[y]

<n>

= s

,H(Sig

[y]

<n−1>

)) on all

other situations

4.2 Integrity Veriﬁcation Procedure

With this approach, to validate the content of an

record we begin by going through all the steps

deﬁned in section 3.3 with some minor changes. We

re-deﬁne the last step and extend the procedure:

PRACTICAL AUDITABILITY IN TRUSTED MESSAGING SYSTEMS

171

<7>

<4>

<8>

<9>

<10>

<5>

<11>

<12>

<6>

<13>

...

4th epoch

5th epoch

6th epoch

...

<1>

<2>

<1>

<3>

<2>

<4>

<5>

<6>

<3>

1st epoch

2nd epoch

3rd epoch

<1>

[1]

<2>

[1]

1st epoch subset 2nd epoch subset

Figure 2: Hierarchical record scheme example.

6. Repeat steps 2 to 4 to all of the epochs created after

this one and belonging to the current subset, thus

validating a chain of R

records.

7. Find which record R

[1]

is directly connected to the

last record of the current subset, R

<l>

, and check

its content integrity by validating the signature in

element Sig

[1]

. Check also the integrity of all the

other R

[1]

records belonging to the same subset.

8. Find which record R

[y+1]

is directly connected to

the last record of the current subset, R

[y]

<l>

, and

check its content integrity by validating the signa-

ture in element Sig

[y+1]

. Check also the integrity

of all the other R

[y+1]

records belonging to the

same subset.

9. Repeat the previous step until the hierarchically

highest level as been successfully veriﬁed.

With the procedure explained above, verifying the

integrity of some R

record is no longer directly pro-

portional to the number of existing records, as ex-

plained in section 6.

5 SECURITY ANALYSIS

The integrity of some record R

is based on the

security of the underlying message digest algorithm,

as well as on the privacy of the secret k used to

calculate Mac elements. Due to this fact, we should

use a well known message digest algorithm, whose

inviolability is perfectly demonstrated. We should

also choose a secret in line with the computational

capabilities available during the underlying epoch,

minimizing the risk of well succeeded attacks over

Mac elements. To prevent an attacker from manip-

ulating R

records, it is vital to keep the privacy of

secret k assured as long as the current epoch is not

completed with the generation of an R

record.

The secret k used to build Mac elements is present

in the respective R

record. This is not a security

weakness, since the epoch is closed and its security

now lies on the integrity of the Sig element.

The content integrity of record types R

and R

is based on the security of the signature algorithm,

as well as on the secrecy of the signature key. This

leads us to conclude that epoch validity is dependent

on the Sig element integrity. If the signature key

becomes compromised the current epoch becomes

also compromised, due to the possibility of re-signing

it without detection.

In order for this compromise procedure to become

fully undetectable it is also necessary to compromise

the chain of directly connected records. This implies

compromising all the R

records belonging to the

current subset and created later in time, as well as

all the directly connected and hierarchically superior

record subsets (as depicted in ﬁgure 3). We

can conclude this from the fact that every record

belonging to the chain has among its elements a

reference to the Sig element of some previously

created record.

<7>

<4>

<8>

<9>

<10>

<5>

<11>

<12>

<6>

<13>

...

4th epoch

5th epoch

6th epoch

...

<1>

<2>

<1>

<4>

<5>

<6>

1st epoch

2nd epoch

3rd epoch

1st epoch subset 2nd epoch subset

<3>

<2>

<3>

<1>

[1]

<2>

[1]

Figure 3: Undetected corruption of record R

<3>

implies

compromising the chain of directly connected records.

This fact, together with the possibility of renewal

of signature keys from one epoch to another makes

undetected corruption extremely hard to achieve.

Since signature key sizes can (and should) be

adapted to the current computational power, the

greatest security concern comes from the ability to

maintain the secrecy of the signature key itself. We

should eliminate the signature key after the end of

an epoch, minimizing the risk of key disclosure.

Since we are using asymmetric cryptography, this

key is no longer necessary to verify a record’s validity.

Nevertheless, it is possible that signature keys

used a long time ago will become compromised (i.e.,

discovered), mostly due to technology breakthroughs.

Even in this case, the record integrity may remain

fully veriﬁable. All we need to do is to check if

the T element remains valid. This element holds a

timestamp of the Sig

or Sig

element, thus placing

an upper boundary on the date the signature has been

made. If this timestamp is later than the date the

signature key has been or known to be compromised,

the record is marked as valid. The T element is

created by applying a digital signature to the target

data. We assume the private key used to generate this

signature is not compromised.

ICETE 2004 - SECURITY AND RELIABILITY IN INFORMATION SYSTEMS AND NETWORKS

172

6 EFFICIENCY

Adapting secret k or signature key sizes to the current

computational power is a basic operation, since both

can be replaced after every epoch.

Creating R

and R

records takes much more

time than creating R

records, mostly due to the

characteristics of asymmetric versus symmetric

cryptography (Schneier, 1995). To minimize this

constraint it is possible to increase the number of

records per epoch, keeping always in mind the

fact that one must never allow the computational

power available during the current epoch to be able

to compromise secret k used to build Mac elements.

Secret k is revealed in the end of each epoch,

thus making a validation over an R

record a very

easy and fast operation to conclude, even after long

time periods. Verifying the validity of an R

record

implies the validation of O(log

n) records, where

n = total number of records in the trusted repository

x = average number of records within each subset

7 IMPLEMENTATION

GUIDELINES

In this section we present guidelines to an implemen-

tation of the scheme deﬁned in the previous sections,

through the application of technology widely used

and proved to be secure and efﬁcient nowadays.

The message digest algorithm used to create Mac

elements must be widely deployed and proved to

be secure, and at same time efﬁcient, since it will

be used very often. A keyed-hashing algorithm like

HMAC (Krawczyk et al., 1997) satisﬁes all of the

above requirements.

In a similar way, it is important to use a widely

deployed one-way hash function like SH A − 1

(NIST, 1994) to generate elements which will be

needed to create Sig

or Sig

elements.

Sig

and Sig

elements will be built using asym-

metric cryptography. The private key is used to

generate those elements and the public key, which

will be bound to a X.509 (ITU-T, 2000) digital

certiﬁcate, is used to verify the integrity of the

elements, interacting with a certiﬁcation authority

(CA). Despite the fact that the trusted repository

must fulﬁll certain security requirements, critical

operations like certiﬁcate life cycle management are

much more suitable to be done by a CA.

It is crucial to the preservation of the proto-

col security to establish a security scheme for

the certiﬁcate requests (RSA, 2000) to be done.

There are several good approaches: one is to use

a mutually-authenticated TLS (Dierks and Allen,

1999) connection. Other may be by carrying some

shared secret, which should be evolving from one

request to the next, among the certiﬁcate request

extensions.

Another point where we may increase security is

by settling an agreement with the CA in which we

can deﬁne a set of X.509 extensions to be included

in all the certiﬁcates issued to the service. By issuing

speciﬁc extension values for each digital certiﬁcate

we may, for instance, lower the risk of certiﬁcate

replacement frauds.

Validating an R

record must also always require

validating the digital certiﬁcate state by using an

CRL (ITU-T, 2000) or an OC S P (Myers et al.,

1999) service. Whenever a certiﬁcate is found to

be invalid (revoked, expired, etc.) it is necessary to

validate the timestamp present in the T element, as

explained previously, to decide if the record remains

valid.

One ﬁnal note concerning secret and private key

protection. As pointed out before, it is extremely

important to keep the items private. To achieve this

goal we should use cryptographic hardware which

allows us to generate secret and private keys inside an

hardware token. The keys also have the possibility to

never leave the token, thereby creating a very secure

environment.

8 CONCLUSION

In this article we proposed a new scheme providing

strong guarantees about the auditability of a trusted

repository. The trusted repository maintains three

types of records:

• R

records keep the actual messages belonging to

a speciﬁc and well deﬁned transaction.

• R

records aggregate sets of R

records together,

establishing epochs. This type of records are also

aggregated in sets. In every set an R

record keeps

a reference to the R

record created immediately

before.

PRACTICAL AUDITABILITY IN TRUSTED MESSAGING SYSTEMS

173

• R

records are aggregated in directly connected

sets and bound to a hierarchical level. Generically,

every ﬁrst R

record of a subset belonging to

hierarchical level y holds a reference to the last R

(or R

if y represents the ﬁrst hierarchical level)

record of a subset belonging to hierarchical level

y − 1.

We state that maintaining the secret k used to build

records private as long as the current epoch is

not terminated, and adapting the size of this secret

to the computational power available during the

present time makes undetected corruption of R

extremely records hard to achieve. Besides that, if we

maintain strong guarantees that the private keys used

in creating the last record of every hierarchical level

are not compromised, undetected corruption of the

complete chain of R

and R

records alse becomes

extremely hard to achieve.

We have provided guidelines that prove informally

that it is possible to make a practical implementation

of this scheme through the application of technolo-

gies available in the present time. Although we

use the trusted messaging system concept as a way

of presenting the scheme, it can be applied to any

system that needs to maintain fully auditable long

term information.

REFERENCES

Adams, C., Cain, P., Pinkas, D., and Zuccherato, R. (2001).

Time-stamp protocol (tsp). RFC 3161, Internet Engi-

neering Task Force.

Dierks, T. and Allen, C. (1999). The tls protocol version

1.0. RFC 2246, Internet Engineering Task Force.

Haber, S. and Stornetta, W. S. (1997). Secure names for bit-

strings. In ACM Conference on Computer and Com-

munications Security, pages 28–35.

ITU-T (2000). Itu-t recommendation x.509. Technical re-

port, ITU-T.

Krawczyk, H., Bellare, M., and Canetti, R. (1997). Hmac:

Keyed-hashing for message authentication. RFC

2104, Internet Engineering Task Force.

Kremer, S., Markowitch, O., and Zhou, J. (2002). An inten-

sive survey of fair non-repudiation protocols. Com-

puter Communications, 25(17):1606–1621.

Merkle, R. C. (1980). Protocols for public key cryptosys-

tems. In Proceedings of the IEEE Symposium on Re-

search in Security and Privacy, pages 122–134. IEEE

Computer Society Press.

Myers, M., Ankney, R., Malpani, A., Galperin, S., and

Adams, C. (1999). X.509 internet public key infras-

tructure online certiﬁcate status protocol - ocsp. RFC

2560, Internet Engineering Task Force.

NIST (1994). NIST Federal Information Processing Stan-

dard Publication 180-1: Secure Hash Standard.

Peha, J. M. (1999). Electronic commerce with veriﬁable

audit trails. In Proceedings of ISOC.

RSA (2000). Pkcs #10 v1.7: Certiﬁcation request syntax

standard. Technical report, RSA Laboratories.

Schneier, B. (1995). Applied cryptography: protocols, al-

gorithms, and source code in C. John Wiley and Sons,

Inc., second edition.

Zhou, J. (2001). Non-Repudiation in Electronic Commerce.

Artech House, ﬁrst edition.

ICETE 2004 - SECURITY AND RELIABILITY IN INFORMATION SYSTEMS AND NETWORKS

174