Cloud-aided attribute-based encryption with efficient tracing and accountability auditing

IF 3.7 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Journal of Systems Architecture Pub Date : 2025-04-12 DOI:10.1016/j.sysarc.2025.103407

Fei Meng , Leixiao Cheng

{"title":"Cloud-aided attribute-based encryption with efficient tracing and accountability auditing","authors":"Fei Meng , Leixiao Cheng","doi":"10.1016/j.sysarc.2025.103407","DOIUrl":null,"url":null,"abstract":"<div><div>How to ensure data confidentiality and prevent data abuse has been a major challenge of cloud storage services. Attribute-based encryption (ABE) provides a solution for this problem by allowing authorized users with proper attributes to decrypt the ciphertext. Traceability and accountability are indispensable requirements for an ABE system to trace users leaking their private keys and to audit the accountability of authority in framing innocent users. However, in existing related works, user has a typically large private key, the size of which depends on the number of user’s attributes. Accordingly, the tracing and auditing costs are computationally expensive. To alleviate the cost of tracing and auditing, we construct a cloud-aided ABE scheme with efficient tracing and auditing. Specifically, we replace the ABE-type private key in previous works by the “transform key”. Given an ABE ciphertext, if the user is authorized to decrypt it, the cloud could use the transform key to transform the ABE ciphertext to a simpler one related to user’s identity. In this case, the user only needs to keep a fairly short and constant-size private key. As a result, it is much more efficient to trace and audit such a short private key in our scheme.</div></div>","PeriodicalId":50027,"journal":{"name":"Journal of Systems Architecture","volume":"163 ","pages":"Article 103407"},"PeriodicalIF":3.7000,"publicationDate":"2025-04-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Systems Architecture","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1383762125000797","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

How to ensure data confidentiality and prevent data abuse has been a major challenge of cloud storage services. Attribute-based encryption (ABE) provides a solution for this problem by allowing authorized users with proper attributes to decrypt the ciphertext. Traceability and accountability are indispensable requirements for an ABE system to trace users leaking their private keys and to audit the accountability of authority in framing innocent users. However, in existing related works, user has a typically large private key, the size of which depends on the number of user’s attributes. Accordingly, the tracing and auditing costs are computationally expensive. To alleviate the cost of tracing and auditing, we construct a cloud-aided ABE scheme with efficient tracing and auditing. Specifically, we replace the ABE-type private key in previous works by the “transform key”. Given an ABE ciphertext, if the user is authorized to decrypt it, the cloud could use the transform key to transform the ABE ciphertext to a simpler one related to user’s identity. In this case, the user only needs to keep a fairly short and constant-size private key. As a result, it is much more efficient to trace and audit such a short private key in our scheme.

查看原文本刊更多论文

云辅助的基于属性的加密，具有高效的跟踪和责任审计

如何确保数据的保密性和防止数据滥用一直是云存储服务面临的主要挑战。基于属性的加密（ABE）通过允许具有适当属性的授权用户解密密文，为这个问题提供了一种解决方案。可追溯性和问责性是ABE系统追踪用户泄露私钥和审计当局在陷害无辜用户时的问责性不可或缺的要求。但是，在现有的相关工作中，用户通常拥有一个较大的私钥，其大小取决于用户属性的数量。因此，跟踪和审计成本在计算上是昂贵的。为了降低跟踪和审计的成本，我们构建了一个具有高效跟踪和审计功能的云辅助ABE方案。具体来说，我们用“变换密钥”代替了之前作品中的abe型私钥。给定一个ABE密文，如果授权用户解密它，则云可以使用转换密钥将ABE密文转换为与用户身份相关的更简单的密文。在这种情况下，用户只需要保持一个相当短且固定大小的私钥。因此，在我们的方案中，跟踪和审计这种短私钥的效率要高得多。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Systems Architecture 工程技术-计算机：硬件

CiteScore

8.70

自引率

15.60%

发文量

226

审稿时长

46 days

期刊介绍： The Journal of Systems Architecture: Embedded Software Design (JSA) is a journal covering all design and architectural aspects related to embedded systems and software. It ranges from the microarchitecture level via the system software level up to the application-specific architecture level. Aspects such as real-time systems, operating systems, FPGA programming, programming languages, communications (limited to analysis and the software stack), mobile systems, parallel and distributed architectures as well as additional subjects in the computer and system architecture area will fall within the scope of this journal. Technology will not be a main focus, but its use and relevance to particular designs will be. Case studies are welcome but must contribute more than just a design for a particular piece of software. Design automation of such systems including methodologies, techniques and tools for their design as well as novel designs of software components fall within the scope of this journal. Novel applications that use embedded systems are also central in this journal. While hardware is not a part of this journal hardware/software co-design methods that consider interplay between software and hardware components with and emphasis on software are also relevant here.