Expressive, Efficient, and Revocable Data Access Control for Multi-Authority Cloud Storage

Yang, Kan; Jia, Xiaohua

doi:10.1109/tpds.2013.253

Cited by 220 publications

(136 citation statements)

References 9 publications

Supporting

Mentioning

135

Contrasting

Order By: Relevance

“…Among them, Muller proposed another MA-ABE scheme which is realized on any access structure with an authentication center. Yang and Jia [18] proposed a variant CP-ABE scheme to support multiauthority, but it still requires an additional authentication center to generate user secret key and authority secret key. Moreover, it is weak in revocation security.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Modified Ciphertext-Policy Attribute-Based Encryption Scheme with Efficient Revocation for PHR System

Zheng

Jie-ming

Wang

et al. 2017

Mathematical Problems in Engineering

View full text Add to dashboard Cite

Attribute-based encryption (ABE) is considered a promising technique for cloud storage where multiple accessors may read the same file. For storage system with specific personal health record (PHR), we propose a modified ciphertext-policy attribute-based encryption scheme with expressive and flexible access policy for public domains. Our scheme supports multiauthority scenario, in which the authorities work independently without an authentication center. For attribute revocation, it can generate different update parameters for different accessors to effectively resist both accessor collusion and authority collusion. Moreover, a blacklist mechanism is designed to resist role-based collusion. Simulations show that the proposed scheme can achieve better performance with less storage occupation, computation assumption, and revocation cost compared with other schemes.

show abstract

Section: Related Workmentioning

confidence: 99%

“…There exist several MA-CP-ABE schemes [11,13,[15][16][17][18]], but they are not designed for PUD's scenario. Commented by paper [14], CC MA-ABE [13,17] is limited by the strict "AND" policy.…”

Section: Introductionmentioning

confidence: 99%

Modified Ciphertext-Policy Attribute-Based Encryption Scheme with Efficient Revocation for PHR System

Zheng

Jie-ming

Wang

et al. 2017

Mathematical Problems in Engineering

View full text Add to dashboard Cite

show abstract

“…Multiauthority ciphertext policy ABE (MACP-ABE) scheme is constructed on the basis of standard model by Lin et al [5] [6]. Further, to reduce the trust on central authority Chase [8] proposed a new scheme Multiple Authority Based Encryption (MABE).…”

Section: Multi-authority Attribute Based Encryptionmentioning

confidence: 99%

Privacy Preserving Through Mediator in Decentralized Ciphertext Policy Attribute Based Encryption

.¹

2016

IJRET

View full text Add to dashboard Cite

In the previous cryptographic approach, network security is vigorously relied on user attribute based encryption, multiple authorities and cipher text policies to make it more sheltered to some extent. But to seal the lack of security level, cryptography shows keen to enhance the protective approach. Cipher text policy is one of the best cryptographic methods added to enhance the security level in recent networking trends. In this paper, both user attributes and data attributes are used as security credentials. File security is maintained by protecting data and its location. Multiple trusted authorities and Mediators are considered as validation users to make system more secure and reliable. Mediator concept is added to the proposed approach whose role is acting as a middleware between authorities and users for managing user rights. Data is stored in encrypted format and its regarding information can be accessed through the secrete key which is a combination of authority key and mediator key.Decryption speed is enhanced to balance the user waiting and response time. Since there is no storage of any user and data information in authority and mediator the entire data will be hidden. All these approaches enhance the encryption level to make system more secure and highly reliable.

show abstract

“…The immediate revocable schemes have proposed. The immediate system-level user revocation method [16], [21], [34], [35] and the immediate attributelevel key revocation method [12], [15], [30], [36], [37] have proposed. The concept of negative attribute enable to revoke the user at the system level.…”

Section: Introductionmentioning

confidence: 99%

“…The dynamic attribute does not mean that attribute fields are newly added or deleted but mean that some specific attribute field value can be changed. CP-ABE schemes which have capability of revoking some current attributes have been proposed [12], [15], [29]- [32], [37]. In these schemes, the secret keys are needed to update when an attribute revocation happens.…”

Section: Introductionmentioning

confidence: 99%

Attribute Revocable Multi-Authority Attribute-Based Encryption with Forward Secrecy for Cloud Storage

Nomura

Mohri

Shiraishi

et al. 2017

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYInternet of Things (IoT) has been widely applied in various fields. IoT data can also be put to cloud, but there are still concerns regarding security and privacy. Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is attracted attention in cloud storage as a suitable encryption scheme for confidential data share and transmission. In CP-ABE, the secret key of a user is associated with a set of attributes; when attributes satisfy the access structure, the ciphertext is able to be decrypted. It is necessary that multiple authorities issue and manage secret keys independently. Authorities that generate the secret key can be regarded as managing the attributes of a user in CP-ABE. CP-ABE schemes that have multiple authorities have been proposed. The other hand, it should consider that a user's operation at the terminals is not necessary when a user drop an attribute and key is updated and the design of the communication system is a simple. In this paper, we propose CP-ABE scheme that have multiple key authorities and can revoke attribute immediately with no updating user's secret key for attribute revocation. In addition, the length of ciphertext is fixed. The proposed scheme is IND-CPA secure in DBDH assumption under the standard model. We compare the proposed scheme and the other CP-ABE schemes and show that the proposed scheme is more suitable for cloud storage. key words: ciphertext-policy attribute-based encryption, multiple key authorities, attribute revocation, forward secrecy

show abstract

Expressive, Efficient, and Revocable Data Access Control for Multi-Authority Cloud Storage

Cited by 220 publications

References 9 publications

Modified Ciphertext-Policy Attribute-Based Encryption Scheme with Efficient Revocation for PHR System

Modified Ciphertext-Policy Attribute-Based Encryption Scheme with Efficient Revocation for PHR System

Privacy Preserving Through Mediator in Decentralized Ciphertext Policy Attribute Based Encryption

Attribute Revocable Multi-Authority Attribute-Based Encryption with Forward Secrecy for Cloud Storage

Contact Info

Product

Resources

About