Blockchain as an Audit-Able Communication Channel

Shigeya Suzuki; Jun Murai

doi:10.1109/COMPSAC.2017.72

Blockchain as an Audit-Able Communication Channel

Shigeya Suzuki, Jun Murai

University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

41 Citations (Scopus)

Abstract

Applications requiring strict access control, such as medical record query, often require auditing of the query. The current typical design relies on server side logging. However, logging on server-side do not provide strict means of auditing, since the server can be tampered with attackers, and also anybody who has permission to write can modify the log. We propose a scheme using blockchain technology, as a request-response channel for a client-server system, to record both client request and server reply in an audi-table manner. We have implemented a proof-of-concept system on top of a publicly available blockchain testbed. By using a blockchain as a client-server request-response channel, the request-response sequence can be verified by anybody who has access to the blockchain, providing a way to implement audit log for strictly controlled resources.

Original language	English
Title of host publication	Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017
Editors	Claudio Demartini, Ji-Jiang Yang, Sheikh Iqbal Ahamed, Thomas Conte, Toyokazu Akiyama, Sorel Reisman, Hiroki Takakura, Kamrul Hasan, William Claycomb, Motonori Nakamura, Edmundo Tovar, Zhiyong Zhang, Ling Liu, Chung-Horng Lung, Stelvio Cimato
Publisher	IEEE Computer Society
Pages	516-522
Number of pages	7
ISBN (Electronic)	9781538603673
DOIs	https://doi.org/10.1109/COMPSAC.2017.72
Publication status	Published - 2017 Sept 7
Event	41st IEEE Annual Computer Software and Applications Conference Workshops, COMPSAC 2017 - Torino, Italy Duration: 2017 Jul 4 → 2017 Jul 8

Publication series

Name	Proceedings - International Computer Software and Applications Conference
Volume	2
ISSN (Print)	0730-3157

Other

Other	41st IEEE Annual Computer Software and Applications Conference Workshops, COMPSAC 2017
Country/Territory	Italy
City	Torino
Period	17/7/4 → 17/7/8

Keywords

audit
blockchain
secure logging

ASJC Scopus subject areas

Software
Computer Science Applications

Access to Document

10.1109/COMPSAC.2017.72

Cite this

Suzuki, S., & Murai, J. (2017). Blockchain as an Audit-Able Communication Channel. In C. Demartini, J-J. Yang, S. I. Ahamed, T. Conte, T. Akiyama, S. Reisman, H. Takakura, K. Hasan, W. Claycomb, M. Nakamura, E. Tovar, Z. Zhang, L. Liu, C-H. Lung, & S. Cimato (Eds.), Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017 (pp. 516-522). Article 8029983 (Proceedings - International Computer Software and Applications Conference; Vol. 2). IEEE Computer Society. https://doi.org/10.1109/COMPSAC.2017.72

Blockchain as an Audit-Able Communication Channel. / Suzuki, Shigeya; Murai, Jun.
Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017. ed. / Claudio Demartini; Ji-Jiang Yang; Sheikh Iqbal Ahamed; Thomas Conte; Toyokazu Akiyama; Sorel Reisman; Hiroki Takakura; Kamrul Hasan; William Claycomb; Motonori Nakamura; Edmundo Tovar; Zhiyong Zhang; Ling Liu; Chung-Horng Lung; Stelvio Cimato. IEEE Computer Society, 2017. p. 516-522 8029983 (Proceedings - International Computer Software and Applications Conference; Vol. 2).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Suzuki, S & Murai, J 2017, Blockchain as an Audit-Able Communication Channel. in C Demartini, J-J Yang, SI Ahamed, T Conte, T Akiyama, S Reisman, H Takakura, K Hasan, W Claycomb, M Nakamura, E Tovar, Z Zhang, L Liu, C-H Lung & S Cimato (eds), Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017., 8029983, Proceedings - International Computer Software and Applications Conference, vol. 2, IEEE Computer Society, pp. 516-522, 41st IEEE Annual Computer Software and Applications Conference Workshops, COMPSAC 2017, Torino, Italy, 17/7/4. https://doi.org/10.1109/COMPSAC.2017.72

Suzuki S, Murai J. Blockchain as an Audit-Able Communication Channel. In Demartini C, Yang J-J, Ahamed SI, Conte T, Akiyama T, Reisman S, Takakura H, Hasan K, Claycomb W, Nakamura M, Tovar E, Zhang Z, Liu L, Lung C-H, Cimato S, editors, Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017. IEEE Computer Society. 2017. p. 516-522. 8029983. (Proceedings - International Computer Software and Applications Conference). doi: 10.1109/COMPSAC.2017.72

Suzuki, Shigeya ; Murai, Jun. / Blockchain as an Audit-Able Communication Channel. Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017. editor / Claudio Demartini ; Ji-Jiang Yang ; Sheikh Iqbal Ahamed ; Thomas Conte ; Toyokazu Akiyama ; Sorel Reisman ; Hiroki Takakura ; Kamrul Hasan ; William Claycomb ; Motonori Nakamura ; Edmundo Tovar ; Zhiyong Zhang ; Ling Liu ; Chung-Horng Lung ; Stelvio Cimato. IEEE Computer Society, 2017. pp. 516-522 (Proceedings - International Computer Software and Applications Conference).

@inproceedings{a1c88e1b47664fe98843124acb4056a0,

title = "Blockchain as an Audit-Able Communication Channel",

abstract = "Applications requiring strict access control, such as medical record query, often require auditing of the query. The current typical design relies on server side logging. However, logging on server-side do not provide strict means of auditing, since the server can be tampered with attackers, and also anybody who has permission to write can modify the log. We propose a scheme using blockchain technology, as a request-response channel for a client-server system, to record both client request and server reply in an audi-table manner. We have implemented a proof-of-concept system on top of a publicly available blockchain testbed. By using a blockchain as a client-server request-response channel, the request-response sequence can be verified by anybody who has access to the blockchain, providing a way to implement audit log for strictly controlled resources.",

keywords = "audit, blockchain, secure logging",

author = "Shigeya Suzuki and Jun Murai",

note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 41st IEEE Annual Computer Software and Applications Conference Workshops, COMPSAC 2017 ; Conference date: 04-07-2017 Through 08-07-2017",

year = "2017",

month = sep,

day = "7",

doi = "10.1109/COMPSAC.2017.72",

language = "English",

series = "Proceedings - International Computer Software and Applications Conference",

publisher = "IEEE Computer Society",

pages = "516--522",

editor = "Claudio Demartini and Ji-Jiang Yang and Ahamed, {Sheikh Iqbal} and Thomas Conte and Toyokazu Akiyama and Sorel Reisman and Hiroki Takakura and Kamrul Hasan and William Claycomb and Motonori Nakamura and Edmundo Tovar and Zhiyong Zhang and Ling Liu and Chung-Horng Lung and Stelvio Cimato",

booktitle = "Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017",

}

TY - GEN

T1 - Blockchain as an Audit-Able Communication Channel

AU - Suzuki, Shigeya

AU - Murai, Jun

PY - 2017/9/7

Y1 - 2017/9/7

N2 - Applications requiring strict access control, such as medical record query, often require auditing of the query. The current typical design relies on server side logging. However, logging on server-side do not provide strict means of auditing, since the server can be tampered with attackers, and also anybody who has permission to write can modify the log. We propose a scheme using blockchain technology, as a request-response channel for a client-server system, to record both client request and server reply in an audi-table manner. We have implemented a proof-of-concept system on top of a publicly available blockchain testbed. By using a blockchain as a client-server request-response channel, the request-response sequence can be verified by anybody who has access to the blockchain, providing a way to implement audit log for strictly controlled resources.

AB - Applications requiring strict access control, such as medical record query, often require auditing of the query. The current typical design relies on server side logging. However, logging on server-side do not provide strict means of auditing, since the server can be tampered with attackers, and also anybody who has permission to write can modify the log. We propose a scheme using blockchain technology, as a request-response channel for a client-server system, to record both client request and server reply in an audi-table manner. We have implemented a proof-of-concept system on top of a publicly available blockchain testbed. By using a blockchain as a client-server request-response channel, the request-response sequence can be verified by anybody who has access to the blockchain, providing a way to implement audit log for strictly controlled resources.

KW - audit

KW - blockchain

KW - secure logging

UR - http://www.scopus.com/inward/record.url?scp=85032867530&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85032867530&partnerID=8YFLogxK

U2 - 10.1109/COMPSAC.2017.72

DO - 10.1109/COMPSAC.2017.72

M3 - Conference contribution

AN - SCOPUS:85032867530

T3 - Proceedings - International Computer Software and Applications Conference

SP - 516

EP - 522

BT - Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference Workshops, COMPSAC 2017

A2 - Demartini, Claudio

A2 - Yang, Ji-Jiang

A2 - Ahamed, Sheikh Iqbal

A2 - Conte, Thomas

A2 - Akiyama, Toyokazu

A2 - Reisman, Sorel

A2 - Takakura, Hiroki

A2 - Hasan, Kamrul

A2 - Claycomb, William

A2 - Nakamura, Motonori

A2 - Tovar, Edmundo

A2 - Zhang, Zhiyong

A2 - Liu, Ling

A2 - Lung, Chung-Horng

A2 - Cimato, Stelvio

PB - IEEE Computer Society

T2 - 41st IEEE Annual Computer Software and Applications Conference Workshops, COMPSAC 2017

Y2 - 4 July 2017 through 8 July 2017

ER -

Blockchain as an Audit-Able Communication Channel

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this