Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

Kevin Theuermann; Felix Hörandner; Andreas Abraham; Dominik Ziegler

doi:10.1007/978-3-030-58986-8_8

Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

Kevin Theuermann^*, Felix Hörandner, Andreas Abraham, Dominik Ziegler

^*Korrespondierende/r Autor/-in für diese Arbeit

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Service compositions are implemented through the interplay
between actors of different organizations. Many composition systems use
a middleware, which coordinates the service calls according to specified
workflows. These middlewares pose a certain privacy issue, since they may
read all the exchanged data. Furthermore, service compositions may require
that only selected subsets of data that was initially supplied by the user are
disclosed to the receiving actors. Traditional public key encryption only
allows encryption for a particular party and lack of the ability to efficiently
define more expressive access controls for a one-to-many communication.
Besides privacy-preserving requirements, it may be necessary for participants
in service compositions to be able to verify which actor has modified or
added data during a process to ensure accountability of performed actions.
This paper introduces a concept for efficient, privacy-preserving service
composition using attribute-based encryption in combination with outsourced
decryption as well as collaborative key management. Our concept enables
end-to-end confidentiality and integrity in a one-to-many communication using
fine-grained access controls, while minimizing the decryption effort for devices
with low calculation capacity, which enables to use smartphones at the
client side. The feasibility of the proposed solution is demonstrated by an
implemented proof-of-concept including a performance evaluation.

Originalsprache	englisch
Titel	Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings
Untertitel	17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings
Redakteure/-innen	Stefanos Gritzalis, Edgar R. Weippl, Gabriele Kotsis, Ismail Khalil, A Min Tjoa
Herausgeber (Verlag)	Springer
Seiten	109-124
Seitenumfang	16
ISBN (elektronisch)	978-3-030-58986-8
ISBN (Print)	978-3-030-58985-1
DOIs	https://doi.org/10.1007/978-3-030-58986-8_8
Publikationsstatus	Veröffentlicht - 14 Sept. 2020
Veranstaltung	17th International Conference on Trust, Privacy and Security in Digital Business: TrustBus 2020 - Virtuell, Virtuell, Slowakei Dauer: 14 Sept. 2020 → 17 Sept. 2020

Publikationsreihe

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Band	12395 LNCS
ISSN (Print)	0302-9743
ISSN (elektronisch)	1611-3349

Konferenz

Konferenz	17th International Conference on Trust, Privacy and Security in Digital Business
Land/Gebiet	Slowakei
Ort	Virtuell
Zeitraum	14/09/20 → 17/09/20

ASJC Scopus subject areas

Theoretische Informatik
Allgemeine Computerwissenschaft

Zugriff auf Dokument

10.1007/978-3-030-58986-8_8

A-SIT - Zentrum für sichere Informationstechnologie Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Projekt: Arbeitsgebiet

Dieses zitieren

Theuermann, K., Hörandner, F., Abraham, A., & Ziegler, D. (2020). Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. in S. Gritzalis, E. R. Weippl, G. Kotsis, I. Khalil, & A. M. Tjoa (Hrsg.), Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings (S. 109-124). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Band 12395 LNCS). Springer. https://doi.org/10.1007/978-3-030-58986-8_8

Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. / Theuermann, Kevin; Hörandner, Felix; Abraham, Andreas et al.
Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. Hrsg. / Stefanos Gritzalis; Edgar R. Weippl; Gabriele Kotsis; Ismail Khalil; A Min Tjoa. Springer, 2020. S. 109-124 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Band 12395 LNCS).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Theuermann, K, Hörandner, F, Abraham, A & Ziegler, D 2020, Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. in S Gritzalis, ER Weippl, G Kotsis, I Khalil & AM Tjoa (Hrsg.), Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Bd. 12395 LNCS, Springer, S. 109-124, 17th International Conference on Trust, Privacy and Security in Digital Business, Virtuell, Slowakei, 14/09/20. https://doi.org/10.1007/978-3-030-58986-8_8

Theuermann K, Hörandner F, Abraham A, Ziegler D. Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. in Gritzalis S, Weippl ER, Kotsis G, Khalil I, Tjoa AM, Hrsg., Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. Springer. 2020. S. 109-124. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-58986-8_8

Theuermann, Kevin ; Hörandner, Felix ; Abraham, Andreas et al. / Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. Hrsg. / Stefanos Gritzalis ; Edgar R. Weippl ; Gabriele Kotsis ; Ismail Khalil ; A Min Tjoa. Springer, 2020. S. 109-124 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{a664c1baeedb41c8813baa028b2fdd26,

title = "Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency",

abstract = "Service compositions are implemented through the interplaybetween actors of different organizations. Many composition systems usea middleware, which coordinates the service calls according to specifiedworkflows. These middlewares pose a certain privacy issue, since they mayread all the exchanged data. Furthermore, service compositions may requirethat only selected subsets of data that was initially supplied by the user aredisclosed to the receiving actors. Traditional public key encryption onlyallows encryption for a particular party and lack of the ability to efficientlydefine more expressive access controls for a one-to-many communication.Besides privacy-preserving requirements, it may be necessary for participantsin service compositions to be able to verify which actor has modified oradded data during a process to ensure accountability of performed actions.This paper introduces a concept for efficient, privacy-preserving servicecomposition using attribute-based encryption in combination with outsourceddecryption as well as collaborative key management. Our concept enablesend-to-end confidentiality and integrity in a one-to-many communication usingfine-grained access controls, while minimizing the decryption effort for deviceswith low calculation capacity, which enables to use smartphones at theclient side. The feasibility of the proposed solution is demonstrated by animplemented proof-of-concept including a performance evaluation.",

keywords = "Confidentiality, Efficiency, Integrity, Privacy",

author = "Kevin Theuermann and Felix H{\"o}randner and Andreas Abraham and Dominik Ziegler",

year = "2020",

month = sep,

day = "14",

doi = "10.1007/978-3-030-58986-8_8",

language = "English",

isbn = "978-3-030-58985-1",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "109--124",

editor = "Stefanos Gritzalis and Weippl, {Edgar R.} and Gabriele Kotsis and Ismail Khalil and Tjoa, {A Min}",

booktitle = "Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings",

note = "17th International Conference on Trust, Privacy and Security in Digital Business : TrustBus 2020 ; Conference date: 14-09-2020 Through 17-09-2020",

}

TY - GEN

T1 - Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

AU - Theuermann, Kevin

AU - Hörandner, Felix

AU - Abraham, Andreas

AU - Ziegler, Dominik

PY - 2020/9/14

Y1 - 2020/9/14

N2 - Service compositions are implemented through the interplaybetween actors of different organizations. Many composition systems usea middleware, which coordinates the service calls according to specifiedworkflows. These middlewares pose a certain privacy issue, since they mayread all the exchanged data. Furthermore, service compositions may requirethat only selected subsets of data that was initially supplied by the user aredisclosed to the receiving actors. Traditional public key encryption onlyallows encryption for a particular party and lack of the ability to efficientlydefine more expressive access controls for a one-to-many communication.Besides privacy-preserving requirements, it may be necessary for participantsin service compositions to be able to verify which actor has modified oradded data during a process to ensure accountability of performed actions.This paper introduces a concept for efficient, privacy-preserving servicecomposition using attribute-based encryption in combination with outsourceddecryption as well as collaborative key management. Our concept enablesend-to-end confidentiality and integrity in a one-to-many communication usingfine-grained access controls, while minimizing the decryption effort for deviceswith low calculation capacity, which enables to use smartphones at theclient side. The feasibility of the proposed solution is demonstrated by animplemented proof-of-concept including a performance evaluation.

AB - Service compositions are implemented through the interplaybetween actors of different organizations. Many composition systems usea middleware, which coordinates the service calls according to specifiedworkflows. These middlewares pose a certain privacy issue, since they mayread all the exchanged data. Furthermore, service compositions may requirethat only selected subsets of data that was initially supplied by the user aredisclosed to the receiving actors. Traditional public key encryption onlyallows encryption for a particular party and lack of the ability to efficientlydefine more expressive access controls for a one-to-many communication.Besides privacy-preserving requirements, it may be necessary for participantsin service compositions to be able to verify which actor has modified oradded data during a process to ensure accountability of performed actions.This paper introduces a concept for efficient, privacy-preserving servicecomposition using attribute-based encryption in combination with outsourceddecryption as well as collaborative key management. Our concept enablesend-to-end confidentiality and integrity in a one-to-many communication usingfine-grained access controls, while minimizing the decryption effort for deviceswith low calculation capacity, which enables to use smartphones at theclient side. The feasibility of the proposed solution is demonstrated by animplemented proof-of-concept including a performance evaluation.

KW - Confidentiality

KW - Efficiency

KW - Integrity

KW - Privacy

U2 - 10.1007/978-3-030-58986-8_8

DO - 10.1007/978-3-030-58986-8_8

M3 - Conference paper

SN - 978-3-030-58985-1

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 109

EP - 124

BT - Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings

A2 - Gritzalis, Stefanos

A2 - Weippl, Edgar R.

A2 - Kotsis, Gabriele

A2 - Khalil, Ismail

A2 - Tjoa, A Min

PB - Springer

T2 - 17th International Conference on Trust, Privacy and Security in Digital Business

Y2 - 14 September 2020 through 17 September 2020

ER -

Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

Abstract

Publikationsreihe

Konferenz

ASJC Scopus subject areas

Zugriff auf Dokument

Fingerprint

Projekte

A-SIT - Zentrum für sichere Informationstechnologie Austria

Dieses zitieren