Security analysis of a privacy‐preserving decentralized ciphertext‐policy attribute‐based encryption scheme

Wang, Minqian; Zhang, Zhenfeng; Chen, Cheng

doi:10.1002/cpe.3623

Cited by 18 publications

(10 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It becomes a laborious task to reverse engineer the constructions and assert their security. Unfortunately, some are later shown to be insecure [10,14,27,22] …”

Section: Our Contributionsmentioning

confidence: 99%

A Framework of Multi-Authority Attribute-Based Encryption with Outsourcing and Revocation

Chow

2016

Proceedings of the 21st ACM on Symposium on Access Control Models and Technologies

View full text Add to dashboard Cite

Attribute-based encryption (ABE) is a cryptographic tool for fine-grained data access control. For practical needs, an ABE scheme should support multiple authority and revocation. Furthermore, decryption should also be outsourced for higher efficiency. Researchers have been extending existing ABE schemes for these goals. Yet, the rationales are often hidden behind tailor-made number-theoretic constructions.This paper proposes a framework for constructing multiauthority ABE schemes with attribute revocation and outsourced decryption, from any pairing-based single-authority ABE scheme which satisfies a set of properties we identified.

show abstract

“…It becomes a laborious task to reverse engineer the constructions and assert their security. Unfortunately, some are later shown to be insecure [10,14,27,22] …”

Section: Our Contributionsmentioning

confidence: 99%

A Framework of Multi-Authority Attribute-Based Encryption with Outsourcing and Revocation

Chow

2016

Proceedings of the 21st ACM on Symposium on Access Control Models and Technologies

View full text Add to dashboard Cite

show abstract

“…Commitment schemes and zero-knowledge proof technology are introduced to protect the user's GID and attributes. However, note that it has been proved not to protect the user's attributes effectively in scheme [12]. Qian et al [13] proposed a privacypreserving personal health record scheme using multi-authority attribute-based encryption with revocation.…”

Section: Related Workmentioning

confidence: 99%

“…The schemes in [8,10,11] have privacy protection but they can't support policy updating. In the schemes in [8,12,17], only the privacy of the GID has been considered. Obviously, they can't protect the privacy of attributes.…”

Section: Performance Analysismentioning

confidence: 99%

“…This is the first scheme that considers the privacy of attributes. However, it has been proved in the scheme in [12] that the scheme proposed in [11] can't effectively protect the user's attributes. In our scheme, not only the privacy of GID has been considered, but also the attribute values are hidden in the access structure to prevent the attributes from being revealed to others.…”

Section: Performance Analysismentioning

confidence: 99%

See 1 more Smart Citation

Privacy-preserving multi-authority attribute-based encryption with dynamic policy updating in PHR

Yan

Liu

et al. 2019

COMSIS J

View full text Add to dashboard Cite

As a new kind of patient-centred health-records model, the personal health record (PHR) system can support the patient in sharing his/her health information online. Attribute-Based Encryption (ABE), as a new public key cryptosystem that guarantees fine-grained access control of outsourced encrypted data, has been used to design the PHR system. Considering that privacy preservation and policy updating are the key problems in PHR, a privacy-preserving multiauthority attribute-based encryption scheme with dynamic policy updating in PHR was proposed. In the scheme, each of the patient's attributes is divided into two parts: attribute name and attribute value. The values of the user's attributes will be hidden to prevent them from being revealed to any third parties. In addition, the Linear Secret-Sharing Scheme (LSSS) access structure and policy-updating algorithms are designed to support all types of policy updating (based on "and", "or", and "not" operations). Finally, the scheme is demonstrated to be secure against chosen-plaintext attack under the standard model. Compared to the existing related schemes, the sizes of the user's secret key and ciphertext are reduced, and the lower computing cost makes it more effective in the PHR system.

show abstract

“…Han et al [15] first proposed a scheme to address the privacy of attributes via anonymous protocol. Nevertheless, Wang et al [16] pointed out such solution was vulnerable to collusion attack and showed that the privacy-preserving key extract protocol from [15] didn't provide the privacy protection of attributes. Wang et al [16] didn't propose an improved scheme.…”

Section: Introductionmentioning

confidence: 99%

Improving Security and Privacy-Preserving in Multi-Authorities Ciphertext-Policy Attribute-Based Encryption

2018

KSII TIIS

View full text Add to dashboard Cite

Most of existing privacy-preserving multi-authorities attribute-based encryption schemes (PP-MA-ABE) only considers the privacy of the user identity (ID). However, in many occasions information leakage is caused by the disclosing of his/her some sensitive attributes. In this paper, we propose a collusion-resisting ciphertext-policy PP-MA-ABE (CRPP-MACP-ABE) scheme with hiding both user's ID and attributes in the cloud storage system. We present a method to depict anonymous users and introduce a managerial role denoted by IDM for the management of user's anonymous identity certificate (Cred AID). The scheme uses Cred AID to realize privacy-preserving of the user, namely, by verifying which attribute authorities (AAs) obtain the blinded public attribute keys, pseudonyms involved in the Cred AID and then distributes corresponding private keys for the user. We use different pseudonyms of the user to resist the collusion attack launched by vicious AAs. In addition, we utilize IDM to cooperate with multiple authorities in producing consistent private key for the user to avoid the collusion attack launched by vicious users. The proposed CRPP-MACP-ABE scheme is proved secure. Some computation and communication costs in our scheme are finished in preparation phase (i.e. user registration). Compared with the existing schemes, our scheme is more efficient.

show abstract

Security analysis of a privacy‐preserving decentralized ciphertext‐policy attribute‐based encryption scheme

Cited by 18 publications

References 7 publications

A Framework of Multi-Authority Attribute-Based Encryption with Outsourcing and Revocation

A Framework of Multi-Authority Attribute-Based Encryption with Outsourcing and Revocation

Privacy-preserving multi-authority attribute-based encryption with dynamic policy updating in PHR

Improving Security and Privacy-Preserving in Multi-Authorities Ciphertext-Policy Attribute-Based Encryption

Contact Info

Product

Resources

About