Verifiable and auditable multi-authority attribute-based encryption

IF 4.1 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Standards & Interfaces Pub Date : 2025-03-07 DOI:10.1016/j.csi.2025.103991

Xingwang Wang, Peng Zeng, Jiaying Luo

{"title":"Verifiable and auditable multi-authority attribute-based encryption","authors":"Xingwang Wang, Peng Zeng, Jiaying Luo","doi":"10.1016/j.csi.2025.103991","DOIUrl":null,"url":null,"abstract":"<div><div>Attribute-based encryption (ABE) is crucial for cloud computing security as it enables fine-grained non-interactive access control and allows efficient and secure data sharing without relying on trusted third parties. Multi-authority ABE (MABE) is an improvement to traditional single-authority ABE because the former can remove the key escrow problem existed in the latter and thus is more appropriate for access control of some special applications. Recently, Zhou et al. proposed an auditable MABE (A-MABE) scheme in which the authorities are categorized into a trusted authority and several attribute authorities. For the confirmation and protection of data ownership, we propose verifiable A-MABE (VA-MABE) schemes in this paper. The additional feature of verifiability is achieved by our newly proposed zero-knowledge proof protocol which enables a data sender (i.e. data owner) to prove the ownership of the encrypted data without leaking sensitive information. Our proposed VA-MABE schemes also afford authorities the flexibility to join or exit the system with a minimal cost. Addressing concerns about centralized audit power, we incorporate technologies that decentralize this role, thereby enhancing the system’s resilience.</div></div>","PeriodicalId":50635,"journal":{"name":"Computer Standards & Interfaces","volume":"94 ","pages":"Article 103991"},"PeriodicalIF":4.1000,"publicationDate":"2025-03-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Standards & Interfaces","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0920548925000200","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

Attribute-based encryption (ABE) is crucial for cloud computing security as it enables fine-grained non-interactive access control and allows efficient and secure data sharing without relying on trusted third parties. Multi-authority ABE (MABE) is an improvement to traditional single-authority ABE because the former can remove the key escrow problem existed in the latter and thus is more appropriate for access control of some special applications. Recently, Zhou et al. proposed an auditable MABE (A-MABE) scheme in which the authorities are categorized into a trusted authority and several attribute authorities. For the confirmation and protection of data ownership, we propose verifiable A-MABE (VA-MABE) schemes in this paper. The additional feature of verifiability is achieved by our newly proposed zero-knowledge proof protocol which enables a data sender (i.e. data owner) to prove the ownership of the encrypted data without leaking sensitive information. Our proposed VA-MABE schemes also afford authorities the flexibility to join or exit the system with a minimal cost. Addressing concerns about centralized audit power, we incorporate technologies that decentralize this role, thereby enhancing the system’s resilience.

查看原文本刊更多论文

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Standards & Interfaces 工程技术-计算机：软件工程

CiteScore

11.90

自引率

16.00%

发文量

审稿时长

6 months

期刊介绍： The quality of software, well-defined interfaces (hardware and software), the process of digitalisation, and accepted standards in these fields are essential for building and exploiting complex computing, communication, multimedia and measuring systems. Standards can simplify the design and construction of individual hardware and software components and help to ensure satisfactory interworking. Computer Standards & Interfaces is an international journal dealing specifically with these topics. The journal • Provides information about activities and progress on the definition of computer standards, software quality, interfaces and methods, at national, European and international levels • Publishes critical comments on standards and standards activities • Disseminates user''s experiences and case studies in the application and exploitation of established or emerging standards, interfaces and methods • Offers a forum for discussion on actual projects, standards, interfaces and methods by recognised experts • Stimulates relevant research by providing a specialised refereed medium.