Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service

Yu, Gang; Wang, Yongjuan; Cao, Zhenfu; Lin, Jian; Wang, Xiangyu

doi:10.1177/1550147719841276

Cited by 19 publications

(18 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The tuCP-ABE Scheme 30 belongs to the CP-ABE scheme. Aiming at the existing security problems of cloud computing, the tuCP-ABE Scheme provides a secure encryption strategy.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

BCAS: A blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data security sharing

Zuo

Kang

et al. 2021

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

It is the most important and challenging problem to share the data safely in cloud computing. Some so-called trusted third parties may also infringe users’ data privacy. It is an urgent problem for data owners to share data safely with the designated users rather than the third party or other users. Traditional encryption schemes utilize different keys to produce multiple encrypted copies of the same data for users. It is no longer applicable for cloud data sharing security. Attribute-based encryption can solve above problems, but it needs to rely on trusted third parties to protect the users’ privacy. In this article, in order to address the above problems, we propose a blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data secure sharing without relying on any trusted third parties. Blockchain-based ciphertext-policy attribute-based encryption scheme can protect the rights and security of data owner. Compared with existing cloud security schemes, the proposed scheme has more advantages in terms of the six aspects: (1) data owners have the authority to decide who can decrypt the data; (2) the operations of users are retained permanently, and all records are tamper-proof; (3) our proposed scheme has the characteristic of “one-to-many” encryption, and data is encrypted only once; (4) our scheme does not rely on any trusted third party; (5) in terms of the discrete logarithm problem and decisional q parallel-bilinear Diffie–Hellman exponent problem, we prove that our proposed scheme is secure; and (6) experiment shows that our proposed scheme is more efficient than the comparative scheme.

show abstract

“…The tuCP-ABE Scheme 30 belongs to the CP-ABE scheme. Aiming at the existing security problems of cloud computing, the tuCP-ABE Scheme provides a secure encryption strategy.…”

Section: Related Workmentioning

confidence: 99%

“…We compared our scheme with the tuCP-ABE scheme 30 through four experiments. When the number of the messages is the same, with the increase in attributes, the time and storage of the whole process in our scheme are obviously less than those in tuCP-ABE scheme.…”

Section: Our Contributionsmentioning

confidence: 99%

BCAS: A blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data security sharing

Zuo

Kang

et al. 2021

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

show abstract

“…Up to date, many encryption schemes against key abuse have been studied in [13]- [20]. Hinek et al's scheme [13] and Li et al's scheme [14] can only support ''AND'' gate with wildcard, thus both of them can not achieve highly expressive and flexible access control.…”

Section: B Related Workmentioning

confidence: 99%

“…More recently, Jiang et al [19] proposed a provably secure and traceable CP-ABE scheme that can against ''key-delegation abuse'' in fog computing. And Yu et al [20] gave a traceable and undeniable CP-ABE, which introduce a public auditor that can judge whether the traced malicious user is innocent or not. But even if the malicious users are traced, these schemes [16]- [20] can not revoke them from the cryptosystem and can not prevent the malicious users from continuing to leak their secret keys.…”

Section: B Related Workmentioning

confidence: 99%

Updatable Ciphertext-Policy Attribute-Based Encryption Scheme With Traceability and Revocability

Liu

Lü

et al. 2019

IEEE Access

View full text Add to dashboard Cite

Ciphertext-policy attribute-based encryption (CP-ABE) can offer fine-grained access control over encrypted data, which is suitable for complex commercial applications. However, since the same decryption privileges could be shared by multiple users in the one-to-many encryption mechanism, it is dangerous that a malicious user misuses his secret key but cannot be traced. In addition to further security, when the malicious user has been caught, it is required to revoke him from the system. To address these problems, we propose a novel updatable CP-ABE scheme supporting white-box traceability and traitor revocation. In the proposed scheme, a ''fixed point'' is embedded into the user's secret key to achieving the traceability and each user is assigned with a unique identifier for revocation. Moreover, the secret exponent used to encrypt a message is divided into two parts: one is assigned to access policy and the other to the revocation list. Therefore, only a part of the ciphertext components needs to be updated when the revocation list is changed, which greatly simplifies the process of ciphertext update. Compared to the previous works, our scheme is more efficient, and can achieve valid revocation and ciphertext update. In addition, the traceability of the proposed scheme is depended on the l-Strong Difffie-Hellman assumption, and the indistinguishability security under selective access policy and chosen-plaintext attacks in the standard model is reduced to the Decisional q-Bilinear Diffie-Hellman assumption. Furthermore, the experimental results show that the proposed scheme is efficient.

show abstract

“…(1) User anonymous ID usage and traceability. Users use anonymous IDs in the cloud environment and there is an object called Trace Authority (TA) in the cloud to track down and identify the user who has been issued the key in the event of a problem with a user’s key [ 24 ]. (2) Output of constant size of ciphertext, regardless of the number of attributes.…”

Section: Introductionmentioning

confidence: 99%

A Study on CP-ABE-Based Medical Data Sharing System with Key Abuse Prevention and Verifiable Outsourcing in the IoMT Environment

Hwang¹,

Lee²

2020

Sensors

View full text Add to dashboard Cite

Recent developments in cloud computing allow data to be securely shared between users. This can be used to improve the quality of life of patients and medical staff in the Internet of Medical Things (IoMT) environment. However, in the IoMT cloud environment, there are various security threats to the patient’s medical data. As a result, security features such as encryption of collected data and access control by legitimate users are essential. Many studies have been conducted on access control techniques using ciphertext-policy attribute-based encryption (CP-ABE), a form of attribute-based encryption, among various security technologies and studies are underway to apply them to the medical field. However, several problems persist. First, as the secret key does not identify the user, the user may maliciously distribute the secret key and such users cannot be tracked. Second, Attribute-Based Encryption (ABE) increases the size of the ciphertext depending on the number of attributes specified. This wastes cloud storage, and computational times are high when users decrypt. Such users must employ outsourcing servers. Third, a verification process is needed to prove that the results computed on the outsourcing server are properly computed. This paper focuses on the IoMT environment for a study of a CP-ABE-based medical data sharing system with key abuse prevention and verifiable outsourcing in a cloud environment. The proposed scheme can protect the privacy of user data stored in a cloud environment in the IoMT field, and if there is a problem with the secret key delegated by the user, it can trace a user who first delegated the key. This can prevent the key abuse problem. In addition, this scheme reduces the user’s burden when decoding ciphertext and calculates accurate results through a server that supports constant-sized ciphertext output and verifiable outsourcing technology. The goal of this paper is to propose a system that enables patients and medical staff to share medical data safely and efficiently in an IoMT environment.

show abstract

Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service

Cited by 19 publications

References 29 publications

BCAS: A blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data security sharing

BCAS: A blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data security sharing

Updatable Ciphertext-Policy Attribute-Based Encryption Scheme With Traceability and Revocability

A Study on CP-ABE-Based Medical Data Sharing System with Key Abuse Prevention and Verifiable Outsourcing in the IoMT Environment

Contact Info

Product

Resources

About