A Traceable Outsourcing CP-ABE Scheme with Attribute Revocation

Zhang, Ruoqing; Hui, Lucas Chi Kwong; Yiu, S.M.; Yu, Xiaoqi; Liu, Zechao; Jiang, Zoe L.

doi:10.1109/trustcom/bigdatase/icess.2017.259

Cited by 11 publications

(9 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…erefore, it is necessary to trace the user's identity in ABE. Zhang et al [17] proposed a scheme that can change user attributes and track the identity of traitors. e results show that the scheme provides feasibility and reliability for practical application.…”

Section: Related Workmentioning

confidence: 99%

Secure Multi-Keyword Search and Access Control over Electronic Health Records in Wireless Body Area Networks

Ding

Wang

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

Wireless body area network (WBAN) consists of a number of sensors that are worn on patients to collect dynamic e-health records (EHRs) and mobile devices that aggregate EHRs. These EHRs are encrypted at mobile devices and then uploaded to the public cloud for storage and user access. To share encrypted EHRs with users effectively, help users retrieve EHRs accurately, and ensure EHRs confidentiality, a secure multi‐keyword search and access control (SMKS-AC) scheme is proposed, which implements encrypted EHRs access control under the ciphertext-policy attribute-based encryption (CP-ABE). SMKS-AC provides multi‐keyword search for accurate EHRs retrieval, supports the validation of decrypted EHRs, and traces and revokes the identity of users who leak private key. Security analysis shows that SMKS-AC is secure against chosen keyword and chosen plaintext attacks. Through theoretical analysis and experimental verification, the proposed SMKS-AC scheme requires less storage resources and computational costs on mobile devices than existing schemes.

show abstract

Section: Related Workmentioning

confidence: 99%

Secure Multi-Keyword Search and Access Control over Electronic Health Records in Wireless Body Area Networks

Ding

Wang

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…This is a fundamental problem with CP-ABE. To solve this, as shown in Table 1 , CP-ABE schemes that provide traceability to prevent key abuse have been proposed [ 5 , 6 , 7 , 8 , 9 , 10 ]. However, CP-ABE schemes that provide traceability can invade user privacy by exposing the users’ identifier values to the AA when the keys are issued, and thereby the anonymity of the users is reduced.…”

Section: Related Workmentioning

confidence: 99%

“…This is a situation that can occur due to the use of CP-ABE. To solve this problem, when the attribute authority, which verifies the attribute and issues the key, issues the key for each user, it records the user’s ID value or user signature value in the key parameter [ 6 , 7 , 8 , 9 , 10 , 11 ]. If the key is misused after the key is delegated or delivered to someone, research is being conducted to verify the identity by tracking the user who initially issued the key with the user ID value or user signature value included in the key parameter.…”

Section: Introductionmentioning

confidence: 99%

A Study on CP-ABE-Based Medical Data Sharing System with Key Abuse Prevention and Verifiable Outsourcing in the IoMT Environment

Hwang¹,

Lee²

2020

Sensors

View full text Add to dashboard Cite

Recent developments in cloud computing allow data to be securely shared between users. This can be used to improve the quality of life of patients and medical staff in the Internet of Medical Things (IoMT) environment. However, in the IoMT cloud environment, there are various security threats to the patient’s medical data. As a result, security features such as encryption of collected data and access control by legitimate users are essential. Many studies have been conducted on access control techniques using ciphertext-policy attribute-based encryption (CP-ABE), a form of attribute-based encryption, among various security technologies and studies are underway to apply them to the medical field. However, several problems persist. First, as the secret key does not identify the user, the user may maliciously distribute the secret key and such users cannot be tracked. Second, Attribute-Based Encryption (ABE) increases the size of the ciphertext depending on the number of attributes specified. This wastes cloud storage, and computational times are high when users decrypt. Such users must employ outsourcing servers. Third, a verification process is needed to prove that the results computed on the outsourcing server are properly computed. This paper focuses on the IoMT environment for a study of a CP-ABE-based medical data sharing system with key abuse prevention and verifiable outsourcing in a cloud environment. The proposed scheme can protect the privacy of user data stored in a cloud environment in the IoMT field, and if there is a problem with the secret key delegated by the user, it can trace a user who first delegated the key. This can prevent the key abuse problem. In addition, this scheme reduces the user’s burden when decoding ciphertext and calculates accurate results through a server that supports constant-sized ciphertext output and verifiable outsourcing technology. The goal of this paper is to propose a system that enables patients and medical staff to share medical data safely and efficiently in an IoMT environment.

show abstract

“…The traitor tracing mechanism refers to finding a malicious legal user/entity that intentionally distributes its key for monetary benefits. 73,74 The classification of access control schemes is presented in Figure 21.…”

Section: Access Control Schemesmentioning

confidence: 99%

A survey on privacy and access control schemes in fog computing

Khalid

Abbasi

Zuraiz

et al. 2019

Int J Communication

View full text Add to dashboard Cite

Summary To provide reliable data storage and retrieval services to the end users, the cloud service provider implements secure data storage, sharing, and retrieval mechanisms. However, the aforesaid services provided by cloud have certain pitfalls, such as decision latency and real‐time data computation. To address these aforementioned problems, fog computing was introduced for the purpose of providing cloud services at the network's edge. While this migration of the cloud services to the network's edge raises various security concerns, such as trust, authentication, mobility, intrusion, network security, and secure data computation. Among these concerns, the most critical issues that need immediate attention of researchers and practitioners are of privacy and access control in fog computing which are in direct relation to secure data storage and retrieval purposes. So, in order to highlight their importance for research community, this survey embodies to discuss, explain, and compare various privacy preserving and access control schemes in the context of fog computing for classifying and analyzing similarities and variances with respect to other researchers. Moreover, upon classification and analysis of these schemes, various open issues and future directions are also presented for researchers and practitioners for the purpose of enhancing security algorithms to address privacy and access control issues in fog computing.

show abstract

A Traceable Outsourcing CP-ABE Scheme with Attribute Revocation

Cited by 11 publications

References 17 publications

Secure Multi-Keyword Search and Access Control over Electronic Health Records in Wireless Body Area Networks

Secure Multi-Keyword Search and Access Control over Electronic Health Records in Wireless Body Area Networks

A Study on CP-ABE-Based Medical Data Sharing System with Key Abuse Prevention and Verifiable Outsourcing in the IoMT Environment

A survey on privacy and access control schemes in fog computing

Contact Info

Product

Resources

About