Attribute Revocable Multi-Authority Attribute-Based Encryption with Forward Secrecy for Cloud Storage

Nomura, Kenta; Mohri, Masami; Shiraishi, Yoshiaki; Morii, Masakatu

doi:10.1587/transinf.2016ofp0004

Cited by 6 publications

(5 citation statements)

References 38 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The scheme can efficiently attain multi-level privacy preservation without extra signatures. Nomura et al [25] proposed a multi-authority attribute-based encryption scheme with attribute revocation for cloud storage. It can revoke an attribute without updating a user's secret key.…”

Section: Related Workmentioning

confidence: 99%

SEM-ACSIT: Secure and Efficient Multiauthority Access Control for IoT Cloud Storage

Xiong

Wang

et al. 2020

IEEE Internet Things J.

View full text Add to dashboard Cite

Data access control in a cloud storage system is regarded as a promising technique for enhanced efficiency and security utilizing ciphertext-policy attribute-based encryption (CP-ABE) approach. However, due to large number of data users as well as limited resources and heterogeneity of data devices in Internet of Things (IoT), existing access control schemes for the cloud storage are not effectively applicable to IoT applications. In this paper, we construct a new CP-ABE based storage model for data storing and secure access in a cloud for IoT applications. Our new framework introduces an attribute authority management (AAM) module in the cloud storage system functioned as an agent that provides a userfriendly access control and highly reduces the storage overhead of public keys. Then, we propose a novel secure and efficient multiauthority access control scheme of the cloud storage system for IoT, namely SEM-ACSIT, which obtains both backward security and forward security when an attribute of a user is revoked. By exploiting encryption outsourcing, simplified key structuring and the AAM module, computational overhead of a user is immensely decreased. Moreover, a user access control list (UACL) in the cloud server is constructed newly to support authorization access for a specific user. The analysis and simulation results demonstrate that our SEM-ACSIT scheme achieves powerful security with less computational overhead and lower storage cost than existing schemes.

show abstract

Section: Related Workmentioning

confidence: 99%

SEM-ACSIT: Secure and Efficient Multiauthority Access Control for IoT Cloud Storage

Xiong

Wang

et al. 2020

IEEE Internet Things J.

View full text Add to dashboard Cite

show abstract

“…Let l denote the number of rows of the access matrix, |I| (|I| ≤ l) denote the number of rows used for decryption in the access matrix, P denote bilinear pair operation, and E denote exponential operation. In TABLE II, we found that the schemes in [16]- [18], [22] have no offline encryption mechanism, which cause the number of operations in encryption phase linearly increasing with l. In [16], [18], [22], the user directly decrypts the original ciphertext, so the exponential operations and the number of bilinear pair operations also linearly increase with |I| in the decryption phase, leading to high computational complexity. In the decryption process of vFAC, only one exponent operation is involved.…”

Section: Performance Analyses 1) Comparison Of Featuresmentioning

confidence: 99%

“…Therefore, the length of public/private key of AA is linearly related to |U |. The users private key in [16], [18], [20], [22] is directly generated by AA based on the user's attributes, so the length of private key is linearly related to |S|. When the number of attributes increases, the user's storage cost increases too.…”

Section: Performance Analyses 1) Comparison Of Featuresmentioning

confidence: 99%

“…YMCZZ in [18] is accountable, but its method of solving the key escrow problem will cause the waste of resources, which is difficult to implement under actual conditions. Besides, the schemes in [18], [20], [22] may have the problem of system construction if too many attributes are added to attribute authorities due to lack in the feature of large universe. Because our proposed vFAC provides all the features listed in table I, it is more comprehensive than other schemes.…”

Section: Performance Analyses 1) Comparison Of Featuresmentioning

confidence: 99%

“…In [20], [22], the length of the public/private key of each AA is linearly related to the number of its attributes. Therefore, the length of public/private key of AA is linearly related to |U |.…”

Section: Performance Analyses 1) Comparison Of Featuresmentioning

confidence: 99%

See 2 more Smart Citations

vFAC: Fine-Grained Access Control with Versatility for Cloud Storage

Liu

Tang

et al. 2018

2018 IEEE Global Communications Conference (GLOBECOM)

View full text Add to dashboard Cite

In recent years, cloud storage technology has been widely used in many fields such as education, business, medical and more because of its convenience and low cost. With the widespread applications of cloud storage technology, data access control methods become more and more important in cloudbased network. The ciphertext policy attribute-based encryption (CP-ABE) scheme is very suitable for access control of data in cloud storage. However, in many practical scenarios, all attributes of a user cannot be managed by one authority, so many multi-authority CP-ABE schemes have emerged. Moreover, cloud servers are usually semi-trusted, which may leak user information. Aiming at the above problems, we propose a finegrained access control scheme with versatility for cloud storage based on multi-authority CP-ABE, named vFAC. The proposed vFAC has the features of large universe, no key escrow problem, online/offline mechanism, hidden policy, verifiability and user revocation. Finally, we demonstrate vFAC is static security under the random oracle model. Through the comparison of several existing schemes in terms of features, computational overhead and storage cost, we can draw a conclusion that vFAC is more comprehensive and scalable.

show abstract

Unbounded Revocable Decentralized Multi-Authority Attribute-Based Encryption Supporting Non-monotone Access Structures

Ishibashi

Ohigashi

Tsuchida

2023

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Attribute Revocable Multi-Authority Attribute-Based Encryption with Forward Secrecy for Cloud Storage

Cited by 6 publications

References 38 publications

SEM-ACSIT: Secure and Efficient Multiauthority Access Control for IoT Cloud Storage

SEM-ACSIT: Secure and Efficient Multiauthority Access Control for IoT Cloud Storage

vFAC: Fine-Grained Access Control with Versatility for Cloud Storage

Unbounded Revocable Decentralized Multi-Authority Attribute-Based Encryption Supporting Non-monotone Access Structures

Contact Info

Product

Resources

About