An efficient key management scheme for content access control for linear hierarchies

Hassen, Hani Ragab; Bettahar, Hatem; Bouadbdallah, Abdalmadjid; Challal, Yacine

doi:10.1016/j.comnet.2012.02.006

Cited by 22 publications

(12 citation statements)

References 35 publications

(42 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In 2011, De Santis et al [36] and in 2012, Hassen et al [37] proposed their schemes with better performance than the previous ones. The schemes [36] (TBEBF:time-bound encryption-based family and TBBEBF:time-bound broadcast encryption-based family) support dynamic updates in the hierarchy at the expense of an increase in the amount of public information.…”

Section: Related Workmentioning

confidence: 99%

A Higher-Level Security Scheme for Key Access on Cloud Computing

2021

View full text Add to dashboard Cite

In this work, we construct a key access management scheme that seamlessly transitions any hierarchical-like access policy to the digital medium. The proposed scheme allows any public cloud system to be used as a private cloud. We consider the data owner an entity consisting of several organization units. We provide a secure method for each user of this entity to access the public cloud from both inside and outside the company's network.The idea of our key access control scheme, which is based on Shamir's secret sharing algorithm and polynomial interpolation method, is suitable especially for hierarchical organizational structures. It offers a secure, flexible, and hierarchical key access mechanism for organizations utilizing mission-critical data. It also minimizes concerns about moving mission-critical data to the public cloud and ensures that only users with sufficient approvals from the same or higher privileged users can access the key by making use of the topological ordering of a directed graph including self-loop. Main overheads such as public and private storage needs are reduced to a tolerable level, the key derivation is computationally efficient. From a security perspective, our scheme is both resistant to collaboration attacks and provides key indistinguishability security. Since the key does not need to be held anywhere, the problem of a data breach based on key disclosure risk is also eliminated.

show abstract

Section: Related Workmentioning

confidence: 99%

A Higher-Level Security Scheme for Key Access on Cloud Computing

2021

View full text Add to dashboard Cite

show abstract

“…In 2011, De Santis et al [30], and in 2012, Hassen et al [31] proposed their schemes with better performance than the previous ones. The schemes in [30] (TBEBF:timebound encryption-based family and TBBEBF:time-bound broadcast encryption-based family) support dynamic updates in the hierarchy without the need of redistribution of private information but at the expense of an increase in the amount of public information.…”

Section: Related Workmentioning

confidence: 99%

“…The scheme's private key storage requirement is small as it needs only one key per class, but the amount of public storage need grows linearly with the number of classes and edges in the graph. On the other hand, the scheme in [31] has very competitive storage, bandwidth, and computation overheads in comparison with previous ones.…”

Section: Related Workmentioning

confidence: 99%

“…There are two types of hierarchical key assignment schemes; indirect access schemes and direct access schemes. In indirect access schemes such as [23], [30], [31], the secret key of the child class can be derived from it by calculating all keys on the path to the child class. In direct access schemes such as [22], [25], [29], [32], it only requires one computational task to derive the secret key of the child class.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

An Inner Product Space-Based Hierarchical Key Assignment Scheme for Access Control

Celiktas¹,

Ozdemır²,

Guzey³

2021

Preprint

View full text Add to dashboard Cite

<div>An inner product space-based hierarchical access control scheme is presented in this work. The proposed scheme can be utilized in any cloud delivery model where the data owner implements a hierarchical access control policy. In other words, the scheme adjusts any hierarchical access control policy to a digital medium. The scheme is based on inner product spaces and the method of orthogonal projection. While distributing a basis for each class by the data owner, left-to-right and bottom-up (LRBU) policy can ensure much more flexibility and efficiency, especially during any change in the structure. For each class, the secret keys can be derived only when a predetermined subspace is available. Our scheme is resistant to collusion attacks and privilege creep problems, as well as providing key recovery and key indistinguishability security. The performance analysis also shows us that the data storage overhead is much more tolerable than other schemes in the literature. In addition, the other advantage of our key access scheme over many others in the literature is that it requires only one operation to derive the secret key of child classes securely and efficiently.</div>

show abstract

“…Thus, we suggest that designers use other ways to represent the level‐based access relations. We would like to refer readers to Hassen's research paper , which uses linear model as shown in Figure . He proposed a hybrid scheme that is very simple, effective, and secure.…”

Section: Collusion Attackmentioning

confidence: 99%

Analyses of several recently proposed group key management schemes

Liu

Tang

et al. 2014

Security Comm Networks

View full text Add to dashboard Cite

Designing group key management schemes is a troubled field. In this paper, we review three schemes recently proposed, including Kayam's scheme for groups with hierarchy, Piao's group key management (KM) scheme, Purushothama's group KM schemes. We point out the problems in each scheme. Kayam's scheme is not secure to collusion attack. Piao's group KM scheme is not secure. The hard problem it bases is not really hard, and the way their scheme uses a hard problem is improper. Purushothama's scheme has an unnecessary design that costs lots of resources and does not give an advantage to the security level and dynamic efficiency of it. We also briefly analyze the underlying reasons why these problems emerge and give suggestions on designing. Copyright © 2014 John Wiley & Sons, Ltd.

show abstract

An efficient key management scheme for content access control for linear hierarchies

Cited by 22 publications

References 35 publications

A Higher-Level Security Scheme for Key Access on Cloud Computing

A Higher-Level Security Scheme for Key Access on Cloud Computing

An Inner Product Space-Based Hierarchical Key Assignment Scheme for Access Control

Analyses of several recently proposed group key management schemes

Contact Info

Product

Resources

About