TAFC: Time and Attribute Factors Combined Access Control for Time-Sensitive Data in Public Cloud

Hong, Jianan; Xue, Kaiping; Xue, Yingjie; Chen, Weikeng; Wei, Dennis; Yu, Nenghai; Hong, Peilin

doi:10.1109/tsc.2017.2682090

Cited by 48 publications

(16 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Although the scheme eliminates much of work for data owner, it brings extra overhead for authority. Recently, the work in [12] proposes a time-sensitive CP-ABE scheme with high efficiency and fine-grained access control.…”

Section: Hierarchical Abe and Time-release Encryptionmentioning

confidence: 99%

See 1 more Smart Citation

Efficient Hierarchical and Time-Sensitive Data Sharing with User Revocation in Mobile Crowdsensing

Zhang

Teng

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

Recently, cloud-based mobile crowdsensing (MCS) has developed into a promising paradigm which can provide convenient data sensing, collection, storage, and sharing services for resource-constrained terminates. Nevertheless, it also inflicts many security concerns such as illegal access toward user secret and privacy. To protect shared data against unauthorized accesses, many studies on Ciphertext-Policy Attribute-Based Encryption (CP-ABE) have been proposed to achieve data sharing granularity. However, providing a scalable and time-sensitive data-sharing scheme across hierarchical users with compound attribute sets and revocability remains a big issue. In this paper, we investigate this challenge and propose a hierarchical and time-sensitive CP-ABE scheme, named HTR-DAC, which is characteristics of time-sensitive data access control with scalability, revocability, and high efficiency. Particularly, we propose a time-sensitive CP-ABE for hierarchical structured users with recursive attribute sets. Moreover, we design a robust revocable mechanism to achieve direct user revocation in our scheme. We also integrate verifiable outsourced decryption to improve efficiency and guarantee correctness in decryption procedure. Extensive security and performance analysis is presented to demonstrate the security requirement satisfaction and high efficiency for our data-sharing scheme in MCS.

show abstract

Section: Hierarchical Abe and Time-release Encryptionmentioning

confidence: 99%

“…Although these days, the authors in [11] have solved the issues of hierarchical users with compound key structure in CP-ABE by combining the scheme of HIBE and ASBE, and the scheme in [12] proposed a time-based ABE by introducing time-releasing encryption (TRE) into CP-ABE. However, these schemes cannot support user dynamicity.…”

Section: Introductionmentioning

confidence: 99%

Efficient Hierarchical and Time-Sensitive Data Sharing with User Revocation in Mobile Crowdsensing

Zhang

Teng

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…The factor of time was introduced to realize time-release encryption. 6,15 In some existing studies, [16][17][18][19] user revocation was supported in their CP-ABE schemes. In studies by Ning et al, 20,21 illegitimate access could be traced.…”

Section: R1mentioning

confidence: 99%

An enhanced media ciphertext-policy attribute-based encryption algorithm on media cloud

Deng

Yang

2020

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

With the development of cloud computing, more and more video services are moving to the cloud. How to realize fine-grained access control of those data on cloud becomes an urgent problem. Attribute-based encryption provides a solution. However, heavy computation is still a bottleneck restricting the wider application of attribute-based encryption in cloud computing. In addition, we find that expression of the access control structure on media cloud can be further improved. To solve these problems, we propose an enhanced media ciphertext-policy attribute-based encryption algorithm and introduce its two key components, the multiple access tree and the key chain. To increase the scalability of the proposed algorithm, we discussed the issues of multi-authorization, user revocation, and 1 − n multiple access tree. Security analysis shows that enhanced media ciphertext-policy attribute-based encryption can successfully resist chosen-plaintext attacks under the decisional bilinear Diffie–Hellman assumption. Performance analysis proves both theoretically and practically that the proposed algorithm incurs less computational cost than the traditional ciphertext-policy attribute-based encryption, multi-message ciphertext-policy attribute-based encryption, and scalable ciphertext-policy attribute-based encryption by optimizing the access control structure. Our proposed algorithm has strong practical significance in media cloud.

show abstract

“…But with the changing of the time periods, it needs to re-encrypt the same data into different versions. Hong et al [35] designed an access control scheme based on both time and attributes. If an attribute has a time restriction, the cloud obtains a token and updates the ciphertext online at the beginning of the time period.…”

Section: Related Workmentioning

confidence: 99%

TMO: Time Domain Outsourcing Attribute-Based Encryption Scheme for Data Acquisition in Edge Computing

Dong

Sha

et al. 2019

IEEE Access

View full text Add to dashboard Cite

With the rapid development of the Internet of Things and the ever-increasing demands of advanced services and applications, edge computing is proposed to move the computing and storage resources near the data source, which improves the response time and saves the bandwidth. However, due to the limited available resources and massive privacy-sensitive user data in edge nodes, there are huge challenges in data security and privacy protection in the edge computing environment. Hence, we propose an efficient time-domain multi-authority outsourcing attribute-based encryption (ABE) scheme (TMO) with a dynamic policy updating method for secure data acquisition and sharing in the edge computing. Specifically, considering that the time is a crucial factor in many real-world application scenarios, we add time-domain information in the encryption algorithm. Besides, to take full advantage of edge computing, TMO extends the multi-authority ABE approach by outsourcing the computation to edge nodes to enhance security and performance. Moreover, to tackle the mobility and frequently changing edge environment, TMO also provides an efficient online policy updating method to manage attribute information and to access policy with low overhead. The security analysis and the experimental results show that TMO can indeed efficiently enhance data security with low overhead in the edge computing environment. INDEX TERMS Multi-authority, CP-ABE, time-based, security, edge computing.

show abstract

TAFC: Time and Attribute Factors Combined Access Control for Time-Sensitive Data in Public Cloud

Cited by 48 publications

References 34 publications

Efficient Hierarchical and Time-Sensitive Data Sharing with User Revocation in Mobile Crowdsensing

Efficient Hierarchical and Time-Sensitive Data Sharing with User Revocation in Mobile Crowdsensing

An enhanced media ciphertext-policy attribute-based encryption algorithm on media cloud

TMO: Time Domain Outsourcing Attribute-Based Encryption Scheme for Data Acquisition in Edge Computing

Contact Info

Product

Resources

About