Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

Kevin Theuermann; Felix Hörandner; Andreas Abraham; Dominik Ziegler

doi:10.1007/978-3-030-58986-8_8

Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

Kevin Theuermann^*, Felix Hörandner, Andreas Abraham, Dominik Ziegler

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Service compositions are implemented through the interplay
between actors of different organizations. Many composition systems use
a middleware, which coordinates the service calls according to specified
workflows. These middlewares pose a certain privacy issue, since they may
read all the exchanged data. Furthermore, service compositions may require
that only selected subsets of data that was initially supplied by the user are
disclosed to the receiving actors. Traditional public key encryption only
allows encryption for a particular party and lack of the ability to efficiently
define more expressive access controls for a one-to-many communication.
Besides privacy-preserving requirements, it may be necessary for participants
in service compositions to be able to verify which actor has modified or
added data during a process to ensure accountability of performed actions.
This paper introduces a concept for efficient, privacy-preserving service
composition using attribute-based encryption in combination with outsourced
decryption as well as collaborative key management. Our concept enables
end-to-end confidentiality and integrity in a one-to-many communication using
fine-grained access controls, while minimizing the decryption effort for devices
with low calculation capacity, which enables to use smartphones at the
client side. The feasibility of the proposed solution is demonstrated by an
implemented proof-of-concept including a performance evaluation.

Original language	English
Title of host publication	Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings
Subtitle of host publication	17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings
Editors	Stefanos Gritzalis, Edgar R. Weippl, Gabriele Kotsis, Ismail Khalil, A Min Tjoa
Publisher	Springer
Pages	109-124
Number of pages	16
ISBN (Electronic)	978-3-030-58986-8
ISBN (Print)	978-3-030-58985-1
DOIs	https://doi.org/10.1007/978-3-030-58986-8_8
Publication status	Published - 14 Sept 2020
Event	17th International Conference on Trust, Privacy and Security in Digital Business: TrustBus 2020 - Virtuell, Virtuell, Slovakia Duration: 14 Sept 2020 → 17 Sept 2020

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	12395 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	17th International Conference on Trust, Privacy and Security in Digital Business
Country/Territory	Slovakia
City	Virtuell
Period	14/09/20 → 17/09/20
Other	TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings

Keywords

Confidentiality
Efficiency
Integrity
Privacy

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-030-58986-8_8

A-SIT - Secure Information Technology Center Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Project: Research area

Cite this

Theuermann, K., Hörandner, F., Abraham, A., & Ziegler, D. (2020). Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. In S. Gritzalis, E. R. Weippl, G. Kotsis, I. Khalil, & A. M. Tjoa (Eds.), Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings (pp. 109-124). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12395 LNCS). Springer. https://doi.org/10.1007/978-3-030-58986-8_8

Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. / Theuermann, Kevin; Hörandner, Felix; Abraham, Andreas et al.
Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. ed. / Stefanos Gritzalis; Edgar R. Weippl; Gabriele Kotsis; Ismail Khalil; A Min Tjoa. Springer, 2020. p. 109-124 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12395 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Theuermann, K, Hörandner, F, Abraham, A & Ziegler, D 2020, Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. in S Gritzalis, ER Weippl, G Kotsis, I Khalil & AM Tjoa (eds), Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 12395 LNCS, Springer, pp. 109-124, 17th International Conference on Trust, Privacy and Security in Digital Business, Virtuell, Slovakia, 14/09/20. https://doi.org/10.1007/978-3-030-58986-8_8

Theuermann K, Hörandner F, Abraham A, Ziegler D. Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. In Gritzalis S, Weippl ER, Kotsis G, Khalil I, Tjoa AM, editors, Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. Springer. 2020. p. 109-124. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-58986-8_8

Theuermann, Kevin ; Hörandner, Felix ; Abraham, Andreas et al. / Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency. Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings: 17th International Conference, TrustBus 2020 Bratislava, Slovakia, September 14–17, 2020 Proceedings. editor / Stefanos Gritzalis ; Edgar R. Weippl ; Gabriele Kotsis ; Ismail Khalil ; A Min Tjoa. Springer, 2020. pp. 109-124 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{a664c1baeedb41c8813baa028b2fdd26,

title = "Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency",

abstract = "Service compositions are implemented through the interplaybetween actors of different organizations. Many composition systems usea middleware, which coordinates the service calls according to specifiedworkflows. These middlewares pose a certain privacy issue, since they mayread all the exchanged data. Furthermore, service compositions may requirethat only selected subsets of data that was initially supplied by the user aredisclosed to the receiving actors. Traditional public key encryption onlyallows encryption for a particular party and lack of the ability to efficientlydefine more expressive access controls for a one-to-many communication.Besides privacy-preserving requirements, it may be necessary for participantsin service compositions to be able to verify which actor has modified oradded data during a process to ensure accountability of performed actions.This paper introduces a concept for efficient, privacy-preserving servicecomposition using attribute-based encryption in combination with outsourceddecryption as well as collaborative key management. Our concept enablesend-to-end confidentiality and integrity in a one-to-many communication usingfine-grained access controls, while minimizing the decryption effort for deviceswith low calculation capacity, which enables to use smartphones at theclient side. The feasibility of the proposed solution is demonstrated by animplemented proof-of-concept including a performance evaluation.",

keywords = "Confidentiality, Efficiency, Integrity, Privacy",

author = "Kevin Theuermann and Felix H{\"o}randner and Andreas Abraham and Dominik Ziegler",

year = "2020",

month = sep,

day = "14",

doi = "10.1007/978-3-030-58986-8_8",

language = "English",

isbn = "978-3-030-58985-1",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "109--124",

editor = "Stefanos Gritzalis and Weippl, {Edgar R.} and Gabriele Kotsis and Ismail Khalil and Tjoa, {A Min}",

booktitle = "Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings",

note = "17th International Conference on Trust, Privacy and Security in Digital Business : TrustBus 2020 ; Conference date: 14-09-2020 Through 17-09-2020",

}

TY - GEN

T1 - Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

AU - Theuermann, Kevin

AU - Hörandner, Felix

AU - Abraham, Andreas

AU - Ziegler, Dominik

PY - 2020/9/14

Y1 - 2020/9/14

N2 - Service compositions are implemented through the interplaybetween actors of different organizations. Many composition systems usea middleware, which coordinates the service calls according to specifiedworkflows. These middlewares pose a certain privacy issue, since they mayread all the exchanged data. Furthermore, service compositions may requirethat only selected subsets of data that was initially supplied by the user aredisclosed to the receiving actors. Traditional public key encryption onlyallows encryption for a particular party and lack of the ability to efficientlydefine more expressive access controls for a one-to-many communication.Besides privacy-preserving requirements, it may be necessary for participantsin service compositions to be able to verify which actor has modified oradded data during a process to ensure accountability of performed actions.This paper introduces a concept for efficient, privacy-preserving servicecomposition using attribute-based encryption in combination with outsourceddecryption as well as collaborative key management. Our concept enablesend-to-end confidentiality and integrity in a one-to-many communication usingfine-grained access controls, while minimizing the decryption effort for deviceswith low calculation capacity, which enables to use smartphones at theclient side. The feasibility of the proposed solution is demonstrated by animplemented proof-of-concept including a performance evaluation.

AB - Service compositions are implemented through the interplaybetween actors of different organizations. Many composition systems usea middleware, which coordinates the service calls according to specifiedworkflows. These middlewares pose a certain privacy issue, since they mayread all the exchanged data. Furthermore, service compositions may requirethat only selected subsets of data that was initially supplied by the user aredisclosed to the receiving actors. Traditional public key encryption onlyallows encryption for a particular party and lack of the ability to efficientlydefine more expressive access controls for a one-to-many communication.Besides privacy-preserving requirements, it may be necessary for participantsin service compositions to be able to verify which actor has modified oradded data during a process to ensure accountability of performed actions.This paper introduces a concept for efficient, privacy-preserving servicecomposition using attribute-based encryption in combination with outsourceddecryption as well as collaborative key management. Our concept enablesend-to-end confidentiality and integrity in a one-to-many communication usingfine-grained access controls, while minimizing the decryption effort for deviceswith low calculation capacity, which enables to use smartphones at theclient side. The feasibility of the proposed solution is demonstrated by animplemented proof-of-concept including a performance evaluation.

KW - Confidentiality

KW - Efficiency

KW - Integrity

KW - Privacy

U2 - 10.1007/978-3-030-58986-8_8

DO - 10.1007/978-3-030-58986-8_8

M3 - Conference paper

SN - 978-3-030-58985-1

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 109

EP - 124

BT - Trust, Privacy and Security in Digital Business - 17th International Conference, TrustBus 2020, Proceedings

A2 - Gritzalis, Stefanos

A2 - Weippl, Edgar R.

A2 - Kotsis, Gabriele

A2 - Khalil, Ismail

A2 - Tjoa, A Min

PB - Springer

T2 - 17th International Conference on Trust, Privacy and Security in Digital Business

Y2 - 14 September 2020 through 17 September 2020

ER -

Privacy-Preserving Service Composition with Enhanced Flexibility and Efficiency

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Projects

A-SIT - Secure Information Technology Center Austria

Cite this