Decentralized, Revocable and Verifiable Attribute-Based Encryption in Hybrid Cloud System

Yu, P; Wen, Q; Ni, W; Li, W; Sun, C; Zhang, H; Jin, Z

Decentralized, Revocable and Verifiable Attribute-Based Encryption in Hybrid Cloud System

Yu, P Wen, Q Ni, W Li, W Sun, C Zhang, H Jin, Z

Permalink

Publication Type:: Journal Article
Citation:: Wireless Personal Communications, 2019, 106 (2), pp. 719 - 738
Issue Date:: 2019-05-01

Closed Access

	Filename	Description	Size
	Yu2019_Article_DecentralizedRevocableAndVerif.pdf	Published Version	2.22 MB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Yu, P	en_US
dc.contributor.author	Wen, Q	en_US
dc.contributor.author	Ni, W	en_US
dc.contributor.author	Li, W	en_US
dc.contributor.author	Sun, C	en_US
dc.contributor.author	Zhang, H	en_US
dc.contributor.author	Jin, Z	en_US
dc.date.accessioned	2020-03-13T05:31:23Z
dc.date.available	2020-03-13T05:31:23Z
dc.date.issued	2019-05-01	en_US
dc.identifier.citation	Wireless Personal Communications, 2019, 106 (2), pp. 719 - 738	en_US
dc.identifier.issn	0929-6212	en_US
dc.identifier.uri	http://hdl.handle.net/10453/139300
dc.description.abstract	© 2019, Springer Science+Business Media, LLC, part of Springer Nature. Cloud can provide storage space and services for data owners to host their data, where data privacy and confidentiality become critical issues. Ciphertext policy attribute-based encryption (CP-ABE) is one of the most suitable methods to protect data privacy and provide structured access control. In this paper, we propose a multi-authority CP-ABE scheme with a direct attribute revocation mechanism, cause revocation is an inevitable problem in the application process. Under our proposed revocation mechanism, the remaining users need not to update their secret keys when revocation happens. It relies on the matching of public keys’ version and ciphertext’ version. In a cloud storage model, the update of ciphertext is executed by public cloud, which cannot be fully trusted by data owners. In this case, we propose a hybrid CP-ABE cloud storage model aiming at solving the public cloud trust management problem. The data owners can authorize private cloud to verify whether their ciphertexts have been updated to the newest version. In addition, we prove our construction secure in selective-CPA model. Finally, we compare our scheme with similar multi-authority CP-ABE schemes from functionality, communication overhead and computation cost. The simulation results show that our scheme is more efficient than similar works in encryption, decryption and revocation stages.	en_US
dc.relation.ispartof	Wireless Personal Communications	en_US
dc.relation.isbasedon	10.1007/s11277-019-06187-3	en_US
dc.rights	info:eu-repo/semantics/closedAccess
dc.subject.classification	Networking & Telecommunications	en_US
dc.title	Decentralized, Revocable and Verifiable Attribute-Based Encryption in Hybrid Cloud System	en_US
dc.type	Journal Article
utslib.citation.volume	2	en_US
utslib.citation.volume	106	en_US
utslib.for	0805 Distributed Computing	en_US
utslib.for	0906 Electrical and Electronic Engineering	en_US
utslib.for	1005 Communications Technologies	en_US
pubs.embargo.period	Not known	en_US
utslib.copyright.status	closed_access	*
pubs.declined	2020-03-13T16:31:23.382+1100
pubs.issue	2	en_US
pubs.publication-status	Published	en_US
pubs.volume	106	en_US

Abstract:

© 2019, Springer Science+Business Media, LLC, part of Springer Nature. Cloud can provide storage space and services for data owners to host their data, where data privacy and confidentiality become critical issues. Ciphertext policy attribute-based encryption (CP-ABE) is one of the most suitable methods to protect data privacy and provide structured access control. In this paper, we propose a multi-authority CP-ABE scheme with a direct attribute revocation mechanism, cause revocation is an inevitable problem in the application process. Under our proposed revocation mechanism, the remaining users need not to update their secret keys when revocation happens. It relies on the matching of public keys’ version and ciphertext’ version. In a cloud storage model, the update of ciphertext is executed by public cloud, which cannot be fully trusted by data owners. In this case, we propose a hybrid CP-ABE cloud storage model aiming at solving the public cloud trust management problem. The data owners can authorize private cloud to verify whether their ciphertexts have been updated to the newest version. In addition, we prove our construction secure in selective-CPA model. Finally, we compare our scheme with similar multi-authority CP-ABE schemes from functionality, communication overhead and computation cost. The simulation results show that our scheme is more efficient than similar works in encryption, decryption and revocation stages.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/139300