A traceable and revocable attribute-based encryption scheme with escrow-free in cloud storage

IF 4.1 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Journal of Systems Architecture Pub Date : 2025-04-30 DOI:10.1016/j.sysarc.2025.103426

Na Wang, Dehua Zhou, Yuchien Huang, Caiwen Liu

{"title":"A traceable and revocable attribute-based encryption scheme with escrow-free in cloud storage","authors":"Na Wang, Dehua Zhou, Yuchien Huang, Caiwen Liu","doi":"10.1016/j.sysarc.2025.103426","DOIUrl":null,"url":null,"abstract":"<div><div>Cloud storage not only saves the cost of local storage space but also facilitates data sharing. In the context of smart healthcare, electronic health records (EHR) are shared in plaintext across various healthcare systems. These systems also store EHR data in cloud servers, which makes it easy to leak user information and brings many security and privacy issues. In addition, malicious users might, for reasons such as personal gain, leak their keys through various means. Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is ideal for enabling detailed access control to cloud storage and protecting user data privacy. However, the extended CP-ABE has a key escrow problem, where some ciphertexts may be decrypted by authorities without user approval. To achieve privacy protection and effectively track malicious users, to revoke user access promptly, and to solve the key escrow challenge in smart healthcare systems, we introduce a privacy-preserving, traceable, revocable, key-escrow-free CP-ABE scheme. Ultimately, through security analysis, security proofs, and experimental results, we validate that the solution is both secure and effective.</div></div>","PeriodicalId":50027,"journal":{"name":"Journal of Systems Architecture","volume":"165 ","pages":"Article 103426"},"PeriodicalIF":4.1000,"publicationDate":"2025-04-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Systems Architecture","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1383762125000980","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

Cloud storage not only saves the cost of local storage space but also facilitates data sharing. In the context of smart healthcare, electronic health records (EHR) are shared in plaintext across various healthcare systems. These systems also store EHR data in cloud servers, which makes it easy to leak user information and brings many security and privacy issues. In addition, malicious users might, for reasons such as personal gain, leak their keys through various means. Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is ideal for enabling detailed access control to cloud storage and protecting user data privacy. However, the extended CP-ABE has a key escrow problem, where some ciphertexts may be decrypted by authorities without user approval. To achieve privacy protection and effectively track malicious users, to revoke user access promptly, and to solve the key escrow challenge in smart healthcare systems, we introduce a privacy-preserving, traceable, revocable, key-escrow-free CP-ABE scheme. Ultimately, through security analysis, security proofs, and experimental results, we validate that the solution is both secure and effective.

查看原文本刊更多论文

一种在云存储中无托管的可跟踪和可撤销的基于属性的加密方案

云存储不仅节省了本地存储空间的成本，而且方便了数据的共享。在智能医疗环境中，电子健康记录（EHR）以明文形式在各种医疗系统之间共享。这些系统还将EHR数据存储在云服务器上，这使得用户信息容易泄露，带来了许多安全和隐私问题。此外，恶意用户可能出于个人利益等原因，通过各种方式泄露密钥。基于密文策略属性的加密（CP-ABE）是实现对云存储的详细访问控制和保护用户数据隐私的理想选择。然而，扩展的CP-ABE有一个密钥托管问题，其中一些密文可能在未经用户批准的情况下被当局解密。为了实现隐私保护和有效跟踪恶意用户，及时撤销用户访问，解决智能医疗系统中的密钥托管挑战，我们引入了一种隐私保护、可追溯、可撤销、无密钥托管的CP-ABE方案。最后，通过安全分析、安全证明和实验结果，验证了该方案的安全性和有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Systems Architecture 工程技术-计算机：硬件

CiteScore

8.70

自引率

15.60%

发文量

226

审稿时长

46 days

期刊介绍： The Journal of Systems Architecture: Embedded Software Design (JSA) is a journal covering all design and architectural aspects related to embedded systems and software. It ranges from the microarchitecture level via the system software level up to the application-specific architecture level. Aspects such as real-time systems, operating systems, FPGA programming, programming languages, communications (limited to analysis and the software stack), mobile systems, parallel and distributed architectures as well as additional subjects in the computer and system architecture area will fall within the scope of this journal. Technology will not be a main focus, but its use and relevance to particular designs will be. Case studies are welcome but must contribute more than just a design for a particular piece of software. Design automation of such systems including methodologies, techniques and tools for their design as well as novel designs of software components fall within the scope of this journal. Novel applications that use embedded systems are also central in this journal. While hardware is not a part of this journal hardware/software co-design methods that consider interplay between software and hardware components with and emphasis on software are also relevant here.