Extended Proxy-Assisted Approach: Achieving Revocable Fine-Grained Encryption of Cloud Data

Yang, Yanjiang; Liu, Joseph K.; Liang, Kaitai; Choo, Kim Kwang Raymond; Zhou, Jianying

doi:10.1007/978-3-319-24177-7_8

Cited by 66 publications

(22 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example when one wishes to share data such as multimedia content with different groups of users whose access rights may dynamically change. Therefore, to provide the scalability and flexibility of real-time multimedia data sharing, the fine-grained access control such as using delegation and secure sharing approaches are required (see [7,18,20,25]). …”

Section: Cryptographic Solutionsmentioning

confidence: 99%

Guest Editorial: Multimedia Social Network Security and Applications

Zhang

Choo

2016

Multimed Tools Appl

Self Cite

View full text Add to dashboard Cite

In the increasingly inter-connected society, multimedia social networks (MSN) have become a 'mainstream' tool used by online users to connect and share contents with other users 24/7 in real-time. It is, therefore, unsurprising that MSNs have become a salient area of inquiry by computer scientists and computer security researchers. For example, researchers need to design intelligent computing and soft computing technologies to improve multimedia system functions, efficiency and performance, as well as improving user's sharing experiences (e.g. using recommendation systems and more effective algorithms). Ensuring the security of users and data are also an ongoing topic of interest and importance due to the ease in producing and sharing user and multimedia content using MSNs. In recent years, we have seen advances in multimedia system security and soft computing for MSN applications, such as Bhard^security mechanisms (e.g. protocols and methodologies) and Bsoft^computing methods (e.g. machine learning and rough set), as well as research efforts in trust assessment, risk management and social factors to understand the trade-off between the effectiveness and security in MSNs.This special issue is dedicated to the reporting of state-of-the-art and recent advancements in this emerging area of enquiry. We received 26 submissions for this special issue, of which 12 were accepted for publication (i.e. 46 % acceptance rate). Each paper went through a rigorous peer review process, in addition to multiple follow-up rounds with the authors. A summary of the papers is categorized and presented below.

show abstract

Section: Cryptographic Solutionsmentioning

confidence: 99%

Guest Editorial: Multimedia Social Network Security and Applications

Zhang

Choo

2016

Multimed Tools Appl

Self Cite

View full text Add to dashboard Cite

show abstract

“…However, the same data must be encrypted several times individually for each user, which may result in huge storage costs and calculation costs. Hence AttributeBased Encryption (ABE) has been attracting attention as the access control method in cloud [7]- [16]. Sahai et al [17] have proposed ABE as the method that extends the Identity-based encryption [18] which distinguish individuals on strings.…”

Section: Introductionmentioning

confidence: 99%

“…Thus, CP-ABE is more appropriate to cloud storage than KP-ABE. CP-ABE schemes for cloud storage have proposed [7]- [9], [11]- [16]. Initially, in ABE schemes, a single authority generate the whole secret keys of users [17], [20]- [24].…”

Section: Introductionmentioning

confidence: 99%

Attribute Revocable Multi-Authority Attribute-Based Encryption with Forward Secrecy for Cloud Storage

Nomura

Mohri

Shiraishi

et al. 2017

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYInternet of Things (IoT) has been widely applied in various fields. IoT data can also be put to cloud, but there are still concerns regarding security and privacy. Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is attracted attention in cloud storage as a suitable encryption scheme for confidential data share and transmission. In CP-ABE, the secret key of a user is associated with a set of attributes; when attributes satisfy the access structure, the ciphertext is able to be decrypted. It is necessary that multiple authorities issue and manage secret keys independently. Authorities that generate the secret key can be regarded as managing the attributes of a user in CP-ABE. CP-ABE schemes that have multiple authorities have been proposed. The other hand, it should consider that a user's operation at the terminals is not necessary when a user drop an attribute and key is updated and the design of the communication system is a simple. In this paper, we propose CP-ABE scheme that have multiple key authorities and can revoke attribute immediately with no updating user's secret key for attribute revocation. In addition, the length of ciphertext is fixed. The proposed scheme is IND-CPA secure in DBDH assumption under the standard model. We compare the proposed scheme and the other CP-ABE schemes and show that the proposed scheme is more suitable for cloud storage. key words: ciphertext-policy attribute-based encryption, multiple key authorities, attribute revocation, forward secrecy

show abstract

“…Incident handling is a general strategy that guides an organisation in dealing with crises, and generally describes the types of incident, identifies the relevant person in‐charge, and outlines the action strategy. Both Cloud Service Providers (CSP) and Cloud Service Users (CSU) may find that ‘traditional’ incident handling procedures are not fit‐for‐purpose because of the challenges posed by the nature of cloud infrastructure . Furthermore, the requirements and challenges of the incident handling principles faced by CSUs and CSPs are likely to differ (e.g.…”

Section: Introductionmentioning

confidence: 99%

Cloud incident handling and forensic‐by‐design: cloud storage as a case study

Rahman

Cahyani

Choo

2016

Concurrency and Computation

Self Cite

View full text Add to dashboard Cite

Summary Information security incident handling strategies or models are important to ensure the security of organisations, particularly in cloud and big data environments. However, existing strategies or models may not adequate as cloud data are generally virtualised, geographically distributed and ephemeral, presenting both technical and jurisdictional challenges. We present an integrated cloud incident handling and forensic‐by‐design model. We then seek to validate the model using a set of controlled experiments on a cloud‐related incident. Three popular cloud storage applications were deployed namely, Dropbox, Google Drive, and OneDrive. This study demonstrates the utility of the model for organisational cloud users to undertake incident investigations (e.g. collect and analyse residual data from cloud storage applications). Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

Extended Proxy-Assisted Approach: Achieving Revocable Fine-Grained Encryption of Cloud Data

Cited by 66 publications

References 28 publications

Guest Editorial: Multimedia Social Network Security and Applications

Guest Editorial: Multimedia Social Network Security and Applications

Attribute Revocable Multi-Authority Attribute-Based Encryption with Forward Secrecy for Cloud Storage

Cloud incident handling and forensic‐by‐design: cloud storage as a case study

Contact Info

Product

Resources

About