Secure and efficient access to outsourced data

Wang, Weichao; Li, Zhiwei; Owens, Rodney; Bhargava, Bharat

doi:10.1145/1655008.1655016

Cited by 183 publications

(112 citation statements)

References 22 publications

Supporting

Mentioning

107

Contrasting

Unclassified

Order By: Relevance

“…However, user revocation is not supported. In [9], an owner's data is encrypted block-by-block, and a binary key tree is constructed over the block keys to reduce the number of keys given to each user. The SKC-based solutions have several key limitations.…”

Section: A Symmetric Key Cryptography (Skc) Based Solutionsmentioning

confidence: 99%

ABE Based Online Personal Health Record System Using Cloud Computing

Mary¹

2015

IJIRCCE

View full text Add to dashboard Cite

:Online PHR system enables the user's to share the personal health records via the internet. PHRs grant patients access to a wide range of health information sources. In this system PHR owner is responsible for create, manage and control the personal health data in a centralized place using the web. Due to the high cost of building and maintaining a specialized data centers the PHRs are outsourced to store at a third party such as cloud servers. Cloud computing servers provides the platform for storage of data. The confidentiality of the PHR is the major problem when patients use commercial cloud servers to store their records because it can be view by everyone. The third party servers are semi-trusted servers and hence it is important to provide encryption before outsource the PHR to the third party servers, which ensures the patient's full control over their PHR. The Attribute Based Encryption(ABE) technique is used to encrypts patient's health records and also provides break glass access under emergency scenarios. The security problems of break glass access can be resolved by using hardware token security.

show abstract

Section: A Symmetric Key Cryptography (Skc) Based Solutionsmentioning

confidence: 99%

ABE Based Online Personal Health Record System Using Cloud Computing

Mary¹

2015

IJIRCCE

View full text Add to dashboard Cite

show abstract

“…Different techniques have been proposed to protect data outsourced to the cloud [3], [4], [5]. Among them, attribute-based access control has been given a lot of attention in recent years [6], [7], [8], [9].…”

Section: Introductionmentioning

confidence: 99%

On the Insecurity of a Method for Providing Secure and Private Fine-Grained Access to Outsourced Data

Rial

2016

2016 IEEE International Conference on Cloud Computing Technology and Science (CloudCom)

View full text Add to dashboard Cite

Abstract-The protection of sensitive data stored in the cloud is paramount. Among the techniques proposed to provide protection, attribute-based access control, which frequently uses ciphertext-policy attribute-based encryption (CPABE), has received a lot of attention in the last years. Recently, Jahan et al. (IEEE 40th Conference on Local Computer Networks, 2015) propose a scheme based on CPABE where users have reading and writing access to the outsourced data. We analyze the scheme by Jahan et al. and we show that it has several security vulnerabilities. For instance, the cloud server can get information about encrypted messages by using a stored ciphertext and an update of that ciphertext. As another example, users with writing access are able to decrypt all the messages regardless of their attributes. We discuss the security claims made by Jahan et al. and point out the reasons why they do not hold. We also explain that existing schemes can already provide the advantages claimed by Jahan et al.

show abstract

“…With the tree-based ideas, some key management methods of access hierarchies for data outsourcing have been proposed [4,5,6,7,8]. These methods provide some useful solutions to minimize the number of cryptographic keys, which have to be managed and stored.…”

Section: Introductionmentioning

confidence: 99%

“…These methods provide some useful solutions to minimize the number of cryptographic keys, which have to be managed and stored. Aiming to provide secure and efficient access to outsourced data, Wang, Li et al [4] proposed a tree-based cryptographic key management scheme for data storages in the cloud. They referred the scenario to as "owner-write-users-read".…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Privacy enhanced data outsourcing in the cloud

Zhou

Susilo

et al. 2012

Journal of Network and Computer Applications

View full text Add to dashboard Cite

How to secure outsourcing data in cloud computing is a challenging problem, since a cloud environment cannot been considered to be trusted. The situation becomes even more challenging when outsourced data sources in a cloud environment are managed by multiple outsourcers who hold different access rights. In this paper, we introduce an efficient and novel tree-based key management scheme that allows a data source to be accessed by multiple parties who hold different rights. We ensure that the database remains secure, while some selected data sources can be securely shared with other authorized parties. AbstractHow to secure outsourcing data in cloud computing is a challenging problem, since a cloud environment cannot been considered to be trusted. The situation becomes even more challenging when outsourced data sources in a cloud environment are managed by multiple outsourcers who hold different access rights. In this paper, we introduce an efficient and novel tree-based key management scheme that allows a data source to be accessed by multiple parties who hold different rights. We ensure that the database remains secure, while some selected data sources can be securely shared with other authorized parties.

show abstract

Secure and efficient access to outsourced data

Cited by 183 publications

References 22 publications

ABE Based Online Personal Health Record System Using Cloud Computing

ABE Based Online Personal Health Record System Using Cloud Computing

On the Insecurity of a Method for Providing Secure and Private Fine-Grained Access to Outsourced Data

Privacy enhanced data outsourcing in the cloud

Contact Info

Product

Resources

About