Secure and Efficient Attribute-Based Access Control for Multiauthority Cloud Storage

Wei, Jianghong; Liu, Wenfen; Hu, Xuexian

doi:10.1109/jsyst.2016.2633559

Cited by 58 publications

(29 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This scheme guarantees users' revocation relying on the attribute authority to re-issue secret keys to remaining non-revoked users. Wei et al [31] have designed a decentralized cloud data sharing solution based on a multi-authority attribute based encryption scheme. Yang et al [32] have proposed a similar data sharing solution for cloud computing which is based on multi-authority attribute based encryption.…”

Section: A Attribute Based Encryption (Abe)mentioning

confidence: 99%

Accountable privacy preserving attribute based framework for authenticated encrypted access in clouds

Belguith

Kaaniche

Laurent

et al. 2020

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

In this paper, we propose an accountable privacy preserving attribute-based framework, called Ins-PAbAC, that combines attribute based encryption and attribute based signature techniques for securely sharing outsourced data contents via public cloud servers. The proposed framework presents several advantages. First, it provides an encrypted access control feature, enforced at the data owner's side, while providing the desired expressiveness of access control policies. Second, Ins-PAbAC preserves users' privacy, relying on an anonymous authentication mechanism, derived from a privacy preserving attribute based signature scheme that hides the users' identifying information. Furthermore, our proposal introduces an accountable attribute based signature that enables an inspection authority to reveal the identity of the anonymously-authenticated user if needed. Third, Ins-PAbAC is provably secure, as it is resistant to both curious cloud providers and malicious users adversaries. Finally, experimental results, built upon OpenStack Swift testbed, point out the applicability of the proposed scheme in real world scenarios.

show abstract

Section: A Attribute Based Encryption (Abe)mentioning

confidence: 99%

Accountable privacy preserving attribute based framework for authenticated encrypted access in clouds

Belguith

Kaaniche

Laurent

et al. 2020

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

show abstract

“…The scheme is secure and efficient when applied in a real-world environment. Due to not complete trustworthiness for a cloud server Wei et al [29] proposed a secure and cost-effective access control scheme for multi-authority cloud storage system based on CP-ABE. The cloud storage access model supports scalable user revocation and dynamic ciphertext updating.…”

Section: Related Workmentioning

confidence: 99%

SEM-ACSIT: Secure and Efficient Multiauthority Access Control for IoT Cloud Storage

Xiong

Wang

et al. 2020

IEEE Internet Things J.

View full text Add to dashboard Cite

Data access control in a cloud storage system is regarded as a promising technique for enhanced efficiency and security utilizing ciphertext-policy attribute-based encryption (CP-ABE) approach. However, due to large number of data users as well as limited resources and heterogeneity of data devices in Internet of Things (IoT), existing access control schemes for the cloud storage are not effectively applicable to IoT applications. In this paper, we construct a new CP-ABE based storage model for data storing and secure access in a cloud for IoT applications. Our new framework introduces an attribute authority management (AAM) module in the cloud storage system functioned as an agent that provides a userfriendly access control and highly reduces the storage overhead of public keys. Then, we propose a novel secure and efficient multiauthority access control scheme of the cloud storage system for IoT, namely SEM-ACSIT, which obtains both backward security and forward security when an attribute of a user is revoked. By exploiting encryption outsourcing, simplified key structuring and the AAM module, computational overhead of a user is immensely decreased. Moreover, a user access control list (UACL) in the cloud server is constructed newly to support authorization access for a specific user. The analysis and simulation results demonstrate that our SEM-ACSIT scheme achieves powerful security with less computational overhead and lower storage cost than existing schemes.

show abstract

“…The factor of time was introduced to realize time-release encryption. 6,15 In some existing studies, [16][17][18][19] user revocation was supported in their CP-ABE schemes. In studies by Ning et al, 20,21 illegitimate access could be traced.…”

Section: R1mentioning

confidence: 99%

An enhanced media ciphertext-policy attribute-based encryption algorithm on media cloud

Deng

Yang

2020

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

With the development of cloud computing, more and more video services are moving to the cloud. How to realize fine-grained access control of those data on cloud becomes an urgent problem. Attribute-based encryption provides a solution. However, heavy computation is still a bottleneck restricting the wider application of attribute-based encryption in cloud computing. In addition, we find that expression of the access control structure on media cloud can be further improved. To solve these problems, we propose an enhanced media ciphertext-policy attribute-based encryption algorithm and introduce its two key components, the multiple access tree and the key chain. To increase the scalability of the proposed algorithm, we discussed the issues of multi-authorization, user revocation, and 1 − n multiple access tree. Security analysis shows that enhanced media ciphertext-policy attribute-based encryption can successfully resist chosen-plaintext attacks under the decisional bilinear Diffie–Hellman assumption. Performance analysis proves both theoretically and practically that the proposed algorithm incurs less computational cost than the traditional ciphertext-policy attribute-based encryption, multi-message ciphertext-policy attribute-based encryption, and scalable ciphertext-policy attribute-based encryption by optimizing the access control structure. Our proposed algorithm has strong practical significance in media cloud.

show abstract

Secure and Efficient Attribute-Based Access Control for Multiauthority Cloud Storage

Cited by 58 publications

References 31 publications

Accountable privacy preserving attribute based framework for authenticated encrypted access in clouds

Accountable privacy preserving attribute based framework for authenticated encrypted access in clouds

SEM-ACSIT: Secure and Efficient Multiauthority Access Control for IoT Cloud Storage

An enhanced media ciphertext-policy attribute-based encryption algorithm on media cloud

Contact Info

Product

Resources

About