Updatable Ciphertext-Policy Attribute-Based Encryption Scheme With Traceability and Revocability

Liu, Zhenhua; Xu, Jing; Lü, Yan; Wang, Baocang

doi:10.1109/access.2019.2918434

Cited by 25 publications

(38 citation statements)

References 42 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since the malicious user witness is not updated, their authentication fails whenever they try to access the data further. Our DTCP-ABE scheme only requires to update the witness of the user rather than updating either ciphertext or secret key like other existing schemes, [40][41][42] which reduces the computation overhead during revocation. 5.…”

Section: Contributionsmentioning

confidence: 99%

See 1 more Smart Citation

Dynamic traceable CP‐ABE with revocation for outsourced big data in cloud storage

Premkamal

Pasupuleti

Alphonse

2020

Int J Communication

View full text Add to dashboard Cite

Summary Ciphertext‐policy attribute‐based encryption (CP‐ABE) is the recommended best practice for outsourced big data access control in the cloud environment. However, most of the existing CP‐ABE schemes do not address the issue of tracing and revoking the malicious user who leaks the secret key for profit, which in turn reduces the security of the CP‐ABE schemes. In this paper, we propose a dynamic traceable CP‐ABE with revocation (DTCP‐ABE) for outsourced big data in cloud storage. DTCP‐ABE scheme dynamically traces who decrypts the ciphertext during the outsourced decryption process, which helps to find the malicious user who leaks the secret key. Our scheme also automatically revokes the malicious users once they are identified. We prove that our scheme is secure against chosen‐plaintext, secret key forging, user collision, and proxy attacks. Furthermore, our scheme also achieves backward revocation security. Performance evaluation proves that our DTCP‐ABE scheme is efficient than other existing schemes.

show abstract

Section: Contributionsmentioning

confidence: 99%

“…To achieve traceability with revocation, various CP-ABE schemes [40][41][42] are proposed. However, these schemes suffer from the following issues: (a) they extracted the user identity from a secret key with the assumption that the data is accessed abnormally.…”

Section: Introductionmentioning

confidence: 99%

Dynamic traceable CP‐ABE with revocation for outsourced big data in cloud storage

Premkamal

Pasupuleti

Alphonse

2020

Int J Communication

View full text Add to dashboard Cite

show abstract

“…However, the authors only gave the performance results, and the functional characteristics were lacking. Also based on attribute policies, the paper [20] designed an updateable attribute-based encryption scheme by adding a fixed identifier to the encryption key. The difference is that this method was used for traceability and revocability.…”

Section: A Encryption/decryption Technologymentioning

confidence: 99%

“…The difference is that this method was used for traceability and revocability. Unlike the paper [20], Huang et al [21] presented a deniable authentication encryption scheme for privacy protection by making it impossible for the receiver to provide message proof. The authors considered some awkward conversations over the internet, including doctor-patient medical conversations or lawyer-criminal discussions.…”

Section: A Encryption/decryption Technologymentioning

confidence: 99%

A Smart Collaborative Authentication Framework for Multi-Dimensional Fine-Grained Control

Liu

et al. 2020

IEEE Access

View full text Add to dashboard Cite

The emergence of the 5G network has brought broad prospects for the massive terminal access and ubiquitous Internet of Things (IoTs). Potential attacking opportunities triggered by this progress are severely impacting the security fortress of current networks, especially in the edge access part. However, due to the unitary protection and inferior isolation, available security schemes are incapable of effectively eliminating these hidden perils. Motivated by these facts, we propose a Multi-dimensional Fine-grained Control (MFC) framework to strengthen safety and reliability in Radio Access Networks (RANs). First, we comprehensively survey and summarize the existing security schemes to grasp respective effects and limitations. Second, the MFC framework is established to describe the model structure and implementation processes. An identifier mapping mechanism is designed to achieve network isolation. We perform the security analysis of MFC by theoretically comparing diversified policies. Third, an integrated set of the authentication prototype system is created with wireless environment parameters settings. Specific verification scenarios are illustrated. Finally, we test the performances of the MFC framework. Validation results demonstrate that the proposed scheme can accomplish reliable security control at the access side. Comparing to multiple schemes, the performances, in terms of time and concurrency, are optimized. Therefore, the MFC framework is feasible for applications in 5G or IoT.

show abstract

“…Li et al [35] constructed a large universe and traceable CP-ABE scheme on prime order groups for eHealth. The schemes [36]- [38] also addressed the traceability in cloud storage systems. However, the schemes [35]- [38] are proved in the selective security model.…”

Section: Introductionmentioning

confidence: 99%

HTAC: Fine-Grained Policy-Hiding and Traceable Access Control in mHealth

Zhang

et al. 2020

IEEE Access

View full text Add to dashboard Cite

As an emerging cryptographic primitive, Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is suitable for the owner to share his personal health records (PHRs) in mobile healthcare systems (mHealth). Before deploying traditional CP-ABE in real mHealth applications, there are three concerns worth considering. First, the scale of pre-defined attribute universe is lack of scalability. Second, the plaintext access policy sent along with the ciphertext would leak the PHR owner's privacy. Third, it is difficult to identify the malicious user who intentionally disclosed his (partial or modified) private key. In this paper, we present HTAC, a fine-grained policy-hiding and traceable access control scheme for mHealth. In HTAC, the attribute universe is exponentially large and unbounded. Each attribute is expressed by an attribute name and an attribute value. In the encryption phase, the value is hidden in the ciphertext and only the generic attribute name is exposed. The malicious user will be precisely identified by searching the identity linked with the suspicious private key in an identity table. We further extend HTAC by removing the identity table and assigning more explicitly responsibility for the authority and the trace center. Then the storage overhead of tracing the malicious users is constant. The security analysis and performance comparison indicate that HTAC and the extended scheme are secure and practicable for real mHealth. INDEX TERMS large universe, partially hidden access policy, traceable CP-ABE, adaptive security.

show abstract

Updatable Ciphertext-Policy Attribute-Based Encryption Scheme With Traceability and Revocability

Cited by 25 publications

References 42 publications

Dynamic traceable CP‐ABE with revocation for outsourced big data in cloud storage

Dynamic traceable CP‐ABE with revocation for outsourced big data in cloud storage

A Smart Collaborative Authentication Framework for Multi-Dimensional Fine-Grained Control

HTAC: Fine-Grained Policy-Hiding and Traceable Access Control in mHealth

Contact Info

Product

Resources

About