Privacy-Aware Attribute-Based Encryption with User Accountability

Li, Jin; Ren, Kui; Zhu, Bo; Wan, Zhiguo

doi:10.1007/978-3-642-04474-8_28

Cited by 142 publications

(95 citation statements)

References 17 publications

(30 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…To address this problem, there are two main ideas: one is to prevent the key from being cloned and misused, just like [15][16][17][18][19], the other one is to provide traceability, proposed and improved in [20][21][22][23][24][25]. In [20], the scheme proposes methods to trace the source of leaks and traitors in broadcast encryption; an index identifying a user is the foundation of realizing traceability.…”

Section: Related Workmentioning

confidence: 99%

An efficient traceable access control scheme with reliable key delegation in mobile cloud computing

Guan

Zhang

et al. 2016

J Wireless Com Network

View full text Add to dashboard Cite

With the increasing number of mobile applications and the popularity of cloud computing, the combination of these two techniques that named mobile cloud computing (MCC) attracts great attention in recent years. However, due to the risks associated with security and privacy, mobility security protection in MCC has become an important issue. In this paper, we propose an efficient traceable access control scheme with reliable key delegation named KD-TABE in MCC. Firstly, we present a traceable CP-ABE system and realize key delegation without loss of traceability. Secondly, a new type of re-encryption method is proposed, which is based on an intuitive method that supports any monotonic access tree instead of the re-encryption key. Lastly, to reduce trust on authority, we separate the authority into three parts, and each authority is responsible for generating different components of the key. The analysis shows that the proposed scheme can meet the security requirement of MCC. In addition, it cost less compared with the other popular models.

show abstract

Section: Related Workmentioning

confidence: 99%

An efficient traceable access control scheme with reliable key delegation in mobile cloud computing

Guan

Zhang

et al. 2016

J Wireless Com Network

View full text Add to dashboard Cite

show abstract

“…Later on, Waters [26] proposed the first deterministic finite automata-based functional encryption system in which access policy can be expressed by arbitrary-size regular language. Note that there are also some variants of traditional ABE in the literature, such as [21,20,13,27].…”

Section: Related Workmentioning

confidence: 99%

Ciphertext-Policy Attribute Based Encryption Supporting Access Policy Update

Jiang

Susilo

et al. 2016

Provable Security

View full text Add to dashboard Cite

Attribute-based encryption (ABE) allows one-to-many encryption with static access control. In many occasions, the access control policy must be updated and the original encryptor might be required to reencrypt the message, which is impractical, since the encryptor might be unavailable. Unfortunately, to date the work in ABE does not consider this issue yet, and hence this hinders the adoption of ABE in practice. In this work, we consider how to efficiently update access policies in Ciphertext-policy Attribute-based Encryption (CP-ABE) systems without re-encryption. We introduce a new notion of CP-ABE supporting access policy update that captures the functionalities of attribute addition and revocation to access policies. We formalize the security requirements for this notion, and subsequently construct two provably secure CP-ABE schemes supporting AND-gate access policy with constant-size ciphertext for user decryption. The security of our schemes are proved under the Augmented Multi-sequences of Exponents Decisional Diffie-Hellman assumption. Abstract. Attribute-based encryption (ABE) allows one-to-many encryption with static access control. In many occasions, the access control policy must be updated and the original encryptor might be required to re-encrypt the message, which is impractical, since the encryptor might be unavailable. Unfortunately, to date the work in ABE does not consider this issue yet, and hence this hinders the adoption of ABE in practice. In this work, we consider how to efficiently update access policies in Ciphertext-policy Attribute-based Encryption (CP-ABE) systems without re-encryption. We introduce a new notion of CP-ABE supporting access policy update that captures the functionalities of attribute addition and revocation to access policies. We formalize the security requirements for this notion, and subsequently construct two provably secure CP-ABE schemes supporting AND-gate access policy with constant-size ciphertext for user decryption. The security of our schemes are proved under the Augmented Multi-sequences of Exponents Decisional Diffie-Hellman assumption.

show abstract

“…However, it is difficult to implement due to the complexity of the computational process required from the third party. Finally, Li et al [15] proposed encryption scheme crowded included in the ID of the user attribute, decrypts it when ID authentication is also carried out at the same time, although this scheme can improve the safety, but the public key distribution center will increase the workload. Hinek et al [16] proposed a tk-ABE(token-based attribute-based encryption) scheme that includes a token server to issue a token for a user to decrypt the cipher text, thus making the key cloning meaningless.…”

Section: Cp-abementioning

confidence: 99%

Hybrid Encryption Scheme Using Terminal Fingerprint and Its Application to Attribute-Based Encryption Without Key Misuse

Chen

Anada

Kawamoto

et al. 2015

Information and Communication Technology

View full text Add to dashboard Cite

Part 9: CryptographyInternational audienceInternet services make sharing digital contents faster and easier but raise an issue of illegal copying and distribution of those digital contents at the same time. A lot of public key encryption schemes solve this issue. However, the secret key is not completely protected i.e. these kinds of encryption methods do not prevent illegal copying and distribution of secret keys. In this paper, we propose a hybrid encryption scheme that employ terminal fingerprints. This scheme is a template to avoid such misuse of secret keys, and can be applied to, for example, attribute-based encryption schemes. There terminal fingerprint information is used to create a second encryption key and secret key. Since the terminal fingerprint is assumed to be unchangeable and unknowable, we ensure that our secret keys are valid in the terminal where such secret keys were created

show abstract

Privacy-Aware Attribute-Based Encryption with User Accountability

Cited by 142 publications

References 17 publications

An efficient traceable access control scheme with reliable key delegation in mobile cloud computing

An efficient traceable access control scheme with reliable key delegation in mobile cloud computing

Ciphertext-Policy Attribute Based Encryption Supporting Access Policy Update

Hybrid Encryption Scheme Using Terminal Fingerprint and Its Application to Attribute-Based Encryption Without Key Misuse

Contact Info

Product

Resources

About