论文信息 - Enforcing Policies in Content Manipulation Signature Schemes

Enforcing Policies in Content Manipulation Signature Schemes

Recently proposed content manipulation signatures schemes have a broad range of applications, such as authenticated content extraction, adaptive multimedia content delivery, and XML authentication. Most of the constructions are based on Merkle trees. We show that these constructions are unable to enforce manipulation (extraction) policies, i.e. rules defining what manipulations are permitted/prohibited. We propose a generalization of Merkle trees, so called Relaxed Merkle trees. We present their ability to enforce some useful classes of policies, analyze their expressive power, and discuss few enhancements.

Martin Stanek

[1] Yael Tauman Kalai,et al. Improved Online/Offline Signature Schemes , 2001, CRYPTO.

[2] Michael Szydlo,et al. Merkle Tree Traversal in Log Space and Time , 2004, EUROCRYPT.

[3] Ron Steinfeld,et al. Content Extraction Signatures , 2001, ICISC.

[4] Ralph C. Merkle,et al. A Digital Signature Based on a Conventional Encryption Function , 1987, CRYPTO.

[5] Ravi Jain,et al. A System for End-to-End Authentication of Adaptive Multimedia Content , 2004, Communications and Multimedia Security.

[6] Hugo Krawczyk,et al. Chameleon Hashing and Signatures , 1998, IACR Cryptol. ePrint Arch..