Efficient distributed access control for big data in clouds
作者: Min Xiao , Mingxin Wang , Xuejiao Liu , Junmei Sun
DOI: 10.1109/INFCOMW.2015.7179385
关键词: Revocation 、 Computer network 、 Cryptographic primitive 、 Computer security 、 Cryptography 、 Computer science 、 Encryption 、 Big data 、 Access control 、 Scalability 、 Cloud computing
摘要: The term big data refers to the massive amounts of digital information, which can be efficiently stored and processed on a cloud computing platform. However, security privacy issues are magnified by high volume, variety, velocity data. Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is promising cryptographic primitive for storage system bring together leakage prevention fine-grained access control. existing researches applying CP-ABE mainly focus efficiency decryption user revocation, some special improvements have been done alleviate workloads owners users, such as proxy re-encryption outsourcing. complexity revocation still linearly correlated with number ciphertexts users in system. Therefore, environment mass challenge. In this paper, we propose distributed, scalable control scheme efficient clouds. We also present new multi-authority supporting outsourcing, dynamically joining exiting attribute authorities. our scheme, only related revoked achieve both forward backward security. analysis shows that provably secure generic group model.
sci-hub.se 参考文章(16)
Amit Sahai, Hakan Seyalioglu, Brent Waters, Dynamic Credentials and Ciphertext Delegation for Attribute-Based Encryption international cryptology conference. ,vol. 2012, pp. 199- 217 ,(2012) , 10.1007/978-3-642-32009-5_13
Brent Waters, Ciphertext-policy attribute-based encryption: an expressive, efficient, and provably secure realization public key cryptography. pp. 53- 70 ,(2011) , 10.1007/978-3-642-19379-8_4
Allison Lewko, Brent Waters, Decentralizing attribute-based encryption international cryptology conference. pp. 568- 588 ,(2011) , 10.1007/978-3-642-20465-4_31
Melissa Chase, Multi-authority Attribute Based Encryption Theory of Cryptography. pp. 515- 534 ,(2007) , 10.1007/978-3-540-70936-7_28
Susan Hohenberger, Brent Waters, Online/Offline Attribute-Based Encryption public key cryptography. pp. 293- 310 ,(2014) , 10.1007/978-3-642-54631-0_17
Huiling Qian, Jiguo Li, Yichen Zhang, Privacy-Preserving Decentralized Ciphertext-Policy Attribute-Based Encryption with Fully Hidden Access Structure international conference on information and communication security. pp. 363- 372 ,(2013) , 10.1007/978-3-319-02726-5_26
Melissa Chase, Sherman S.M. Chow, Improving privacy and security in multi-authority attribute-based encryption computer and communications security. pp. 121- 130 ,(2009) , 10.1145/1653662.1653678
Kan Yang, Xiaohua Jia, Kui Ren, Attribute-based fine-grained access control with efficient revocation in cloud storage systems computer and communications security. pp. 523- 528 ,(2013) , 10.1145/2484313.2484383
Huiling Qian, Jiguo Li, Yichen Zhang, Jinguang Han, Privacy-preserving personal health record using multi-authority attribute-based encryption with revocation International Journal of Information Security. ,vol. 14, pp. 487- 497 ,(2015) , 10.1007/S10207-014-0270-9
Kan Yang, Xiaohua Jia, Kui Ren, Ruitao Xie, Liusheng Huang, Enabling efficient access control with dynamic policy updating for big data in the cloud international conference on computer communications. pp. 2013- 2021 ,(2014) , 10.1109/INFOCOM.2014.6848142