DigiLock: User-controlled and Server-aware Digital Locker System
This work addresses security issues in digital locker systems for users and service providers, but it appears incremental as it builds on existing concepts without introducing a new paradigm.
The authors tackled the problem of ensuring security and non-repudiation in digital locker systems, proposing a protocol that addresses confidentiality, integrity, and non-repudiation while confirming participation from both users and service providers.
The growing popularity of digital systems have paved the way for digital locker that ensures security and safety of the digital documents in store. While facilitating this system to user and availing its services offered by service provider, non-repudiation of service offered and service consumed is an important security requirement in the digital locker system. In this paper, we present a digital locker system that addresses the aspect of confidentiality, integrity, and non-repudiation along with other security properties. The proposed protocol ensures the confirmed participation of the user as well as the service provider while accessing the digital locker. The protocol is analyzed against potential threats in the context of safety and security of the digital locker system.