An efficient hierarchical attribute-based encryption scheme with cross-domain data sharing

IF 4.4 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Networks Pub Date : 2024-10-19 DOI:10.1016/j.comnet.2024.110863

Guangcan Yang , Peixuan Li , Yang Xin , Yunhua He , Chao Wang , Xiubo Chen

{"title":"An efficient hierarchical attribute-based encryption scheme with cross-domain data sharing","authors":"Guangcan Yang , Peixuan Li , Yang Xin , Yunhua He , Chao Wang , Xiubo Chen","doi":"10.1016/j.comnet.2024.110863","DOIUrl":null,"url":null,"abstract":"<div><div>With the rapid advancement of data sharing technology, an increasing amount of data is being stored on cloud servers. To enable fine-grained access control over the data stored on cloud servers, the Ciphertext-Policy Attribute-Based Encryption (CP-ABE) technology has been widely adopted. Recognizing that shared data and files often possess a hierarchical structure, hierarchical CP-ABE technology has been proposed recently. However, most existing schemes are restricted to single-domain data access, which limits their flexibility and universal applicability in practical applications. To address this limitation, an access control scheme based on hierarchical CP-ABE, named CDS-CP-ABE, is proposed to facilitate secure and efficient cross-domain data sharing. The scheme is capable of not only realizing fine-grained hierarchical access control within a single domain but also enabling cross-domain data sharing. Security analysis confirms that our scheme effectively resists chosen-plaintext attack. Furthermore, empirical results indicate that the time consumption associated with our scheme is lower compared to other existing schemes.</div></div>","PeriodicalId":50637,"journal":{"name":"Computer Networks","volume":"255 ","pages":"Article 110863"},"PeriodicalIF":4.4000,"publicationDate":"2024-10-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Networks","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1389128624006959","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

With the rapid advancement of data sharing technology, an increasing amount of data is being stored on cloud servers. To enable fine-grained access control over the data stored on cloud servers, the Ciphertext-Policy Attribute-Based Encryption (CP-ABE) technology has been widely adopted. Recognizing that shared data and files often possess a hierarchical structure, hierarchical CP-ABE technology has been proposed recently. However, most existing schemes are restricted to single-domain data access, which limits their flexibility and universal applicability in practical applications. To address this limitation, an access control scheme based on hierarchical CP-ABE, named CDS-CP-ABE, is proposed to facilitate secure and efficient cross-domain data sharing. The scheme is capable of not only realizing fine-grained hierarchical access control within a single domain but also enabling cross-domain data sharing. Security analysis confirms that our scheme effectively resists chosen-plaintext attack. Furthermore, empirical results indicate that the time consumption associated with our scheme is lower compared to other existing schemes.

Abstract Image

查看原文本刊更多论文

基于属性的高效分层加密方案与跨域数据共享

随着数据共享技术的快速发展，越来越多的数据被存储在云服务器上。为了对存储在云服务器上的数据进行细粒度访问控制，基于属性的密文策略加密（CP-ABE）技术已被广泛采用。由于共享数据和文件通常具有分层结构，最近有人提出了分层 CP-ABE 技术。然而，现有的大多数方案仅限于单域数据访问，这限制了它们在实际应用中的灵活性和普遍适用性。针对这一局限，本文提出了一种基于分层 CP-ABE 的访问控制方案，命名为 CDS-CP-ABE，以促进安全高效的跨域数据共享。该方案不仅能在单个域内实现细粒度分层访问控制，还能实现跨域数据共享。安全分析证实，我们的方案能有效抵御选择纯文本攻击。此外，实证结果表明，与其他现有方案相比，我们的方案耗时更少。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Networks 工程技术-电信学

CiteScore

10.80

自引率

3.60%

发文量

434

审稿时长

8.6 months

期刊介绍： Computer Networks is an international, archival journal providing a publication vehicle for complete coverage of all topics of interest to those involved in the computer communications networking area. The audience includes researchers, managers and operators of networks as well as designers and implementors. The Editorial Board will consider any material for publication that is of interest to those groups.