Title :
Towards Privacy-Preserving XML Transformation
Author :
Jensen, Meiko ; Kerschbaum, Florian
Author_Institution :
Horst Gortz Inst. for IT-Security, Ruhr Univ. Bochum, Bochum, Germany
Abstract :
In composite web services one can only either hide the identities of the participants or provide end-to-end confidentiality via encryption. For a designer of inter-organizational business processes this implies that she either needs to reveal her suppliers or force her customers to reveal their information. In this paper we present a solution to the encrypted data modification problem and reconciliate this apparent conflict. Using a generic sender-transformer-recipient example scenario, we illustrate the steps required for applying XML transformations to encrypted data, present the cryptographic building blocks, and give an outlook on advantages and weaknesses of the proposed encryption scheme. The transformer is then able to offer composite services without itself learning the content of the messages.
Keywords :
Web services; XML; business data processing; cryptography; data privacy; Web services; composite services; cryptographic building block; data encryption; encrypted data modification problem; end-to-end confidentiality; interorganizational business process; privacy preserving XML transformation; Business; Encryption; Protocols; Public key; XML; XML transformation; encrypted data modification problem; homomorphic encryption;
Conference_Titel :
Web Services (ICWS), 2011 IEEE International Conference on
Conference_Location :
Washington, DC
Print_ISBN :
978-1-4577-0842-8
Electronic_ISBN :
978-0-7695-4463-2
DOI :
10.1109/ICWS.2011.10
