Hidden policy ciphertext-policy attribute-based encryption with keyword search against keyword guessing attack

Qiu, Shuo; Liu, Jiqiang; Shi, Yanfeng; Zhang, Rui

doi:10.1007/s11432-015-5449-9

Cited by 82 publications

(122 citation statements)

References 10 publications

Supporting

Mentioning

122

Contrasting

Order By: Relevance

“…Security is a one of the major challenge in the adoption of cloud computing, in this paper we discussed various security challenges to the stored data in the cloud computing, also we have reviewed cryptography, some cryptographic scheme. This protocol purposed a method of data access control using the Location Based Cryptography-Geo Encryption [12], Attribute-Based Encryption Scheme-CP ABE [2] and the symmetric key cryptography [14]. This protocol ensures that data can be accessed only at the location which is specified by the data owner, so Location based Encryption adds another layer of security beyond the security which is provided using Symmetric Key cryptography and CP-ABE.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Applying Geo-Encryption and Attribute Based Encryption to Implement Secure Access Control in the Cloud

Salim¹,

Tripathi²,

Tiwari³

2019

IJCNC

View full text Add to dashboard Cite

Cloud computing is utility-based computing provides many benefits to its clients but security is one aspect which is delaying its adoptions. Security challenges include data security, network security and infrastructure security. Data security can be achieved using Cryptography. If we include location information in the encryption and decryption process then we can bind access to data with the location so that data can be accessed only from the specified locations. In this paper, we propose a method based on the symmetric cryptography, location-based cryptography and ciphertext policy-Attribute-based encryption (CP-ABE) to implements secure access control to the outsourced data. The Symmetric key is used to encrypt that data whereas CP-ABE is used to encrypt the secret key and the location lock value before uploading on the server. User will download encrypted data and the symmetric secret key XORed with the Location Lock value, using his attributes based secret key he can obtain first XORed value of Symmetric secret key and location lock value. Using anti-spoof GPS Location lock value can be obtained which can be used to retrieve the symmetric secret key. We have adopted Massage Authentication Code (MAC) to ensure Integrity and Availability of the data. This protocol can be used in the Bank, government organization, military services or any other industry those are having their offices/work location at a fixed place, so data access can be bounded to that location.

show abstract

Section: Discussionmentioning

confidence: 99%

“…Many techniques have been purposed by the various researchers for the secure Access control in the cloud [13,14,15], Geo-Encryption technique was first purposed by Logan Scott, Dr. Dorothy Denning [16] to secure digital film distribution. In this paper, they purpose a solution for secure digital film distribution.…”

Section: Related Workmentioning

confidence: 99%

Applying Geo-Encryption and Attribute Based Encryption to Implement Secure Access Control in the Cloud

Salim¹,

Tripathi²,

Tiwari³

2019

IJCNC

View full text Add to dashboard Cite

show abstract

“…Authors in [ 13 ] proposed a searchable encryption scheme with the hidden strategy, and the hidden strategy is a major feature of the scheme. However, we find that the scheme is correct only if the data owner and the data user are the same one, this error is not easy to find as they use the same parameter r for the data owner and data user.…”

Section: Scheme Constructionmentioning

confidence: 99%

“…Miao Y et al[ 12 ] proposed a secure cryptographic primitive called as attribute-based multi-keyword search over encrypted personal health records in multi-owner setting to support both fine-grained access control and multi-keyword search via Ciphertext-Policy Attribute-Based Encryption. In [ 13 ], the authors propose a searchable encryption scheme for keywords in the hidden strategy. If the data user's attributes do not meet the access policy, the user cannot obtain the information of the access policy and cannot search for the encrypted data.…”

Section: Introductionmentioning

confidence: 99%

Searchable and revocable multi-data owner attribute-based encryption scheme with hidden policy in cloud storage

2018

View full text Add to dashboard Cite

With the development of outsourcing data services, data security has become an urgent problem that needs to be solved. Attribute-based encryption is a valid solution to data security in cloud storage. There is no existing scheme that can guarantee the privacy of access structures and achieve attribute-based encryption with keyword search and attribute revocation. In this article, we propose a new searchable and revocable multi-data owner attribute-based encryption scheme with a hidden policy in cloud storage. In the new scheme, the same access policy is used in both the keyword index and message encryption. The advantage of keyword index with access policy is that as long as a user’s attributes satisfy the access policy, the searched ciphertext can be correctly decrypted. This property improves the accuracy of the search results. The hidden policy is used in both the ciphertext and the keyword index to protect users’ privacy. The new scheme contains attribute revocation, which is suitable for the actual situation that a user’s attributes maybe changed over time. In the general bilinear group model, the security of the scheme is demonstrated, and the efficiency of the scheme is analyzed.

show abstract

“…In order to enhance the flexibility of access policy, Wang and He [12] proposed a hidden policy scheme with LSSS matrix access structure. Recent works in this area focused on constructing more efficient ciphertext-policy hidden CP-ABE with short ciphertext size [13][14], developing schemes with additional applications such as keyword search [15][16].…”

Section: Introductionmentioning

confidence: 99%

Improving Security in Ciphertext-Policy Attribute-Based Encryption with Hidden Access Policy and Testing

Yin¹,

Zhang²,

Cui³

2019

KSII TIIS

View full text Add to dashboard Cite

Ciphertext-policy attribute-based encryption (CP-ABE) is one of the practical technologies to share data over cloud since it can protect data confidentiality and support fine-grained access control on the encrypted data. However, most of the previous schemes only focus on data confidentiality without considering data receiver privacy preserving. Recently, Li et al.(in TIIS, 10(7), 2016.7) proposed a CP-ABE with hidden access policy and testing, where they declare their scheme achieves privacy preserving for the encryptor and decryptor, and also has high decryption efficiency. Unfortunately, in this paper, we show that their scheme fails to achieve hidden access policy at first. It means that any adversary can obtain access policy information by a simple decisional Diffie-Hellman test (DDH-test) attack. Then we give a method to overcome this shortcoming. Security and performance analyses show that the proposed scheme not only achieves the privacy protection for users, but also has higher efficiency than the original one.

show abstract

Hidden policy ciphertext-policy attribute-based encryption with keyword search against keyword guessing attack

Cited by 82 publications

References 10 publications

Applying Geo-Encryption and Attribute Based Encryption to Implement Secure Access Control in the Cloud

Applying Geo-Encryption and Attribute Based Encryption to Implement Secure Access Control in the Cloud

Searchable and revocable multi-data owner attribute-based encryption scheme with hidden policy in cloud storage

Improving Security in Ciphertext-Policy Attribute-Based Encryption with Hidden Access Policy and Testing

Contact Info

Product

Resources

About