{"title":"云存储多授权系统的撤销基础和证明访问控制","authors":"Khaled Riad","doi":"10.1109/ICAIPR.2016.7585223","DOIUrl":null,"url":null,"abstract":"Multi-Authority Ciphertext-Policy Attribute-Based Encryption (MA-CP-ABE) is a rising cryptographic primitive for implementing fine-grained attribute-based access control on the outsourced data in cloud storage. However, most of the previous multi-authority attribute-based systems area unit either proved to be secure in a very weak model or lack of potency in user revocation. In this paper, we have introduced the formal definition of the attributes' trust. Also, a new Revocation Basis and Proofs Access Control (RB-PAC) model for cloud storage multi-authority systems has been proposed. Our RB-PAC model ensures secure resource sharing among potential untrusted tenants, supports different access permissions to the same user at the same session, and effectively satisfies both the backward and forward secrecy security requirements. Also, RB-PAC is proven secure against the users' collusion attack. Finally, The experimental results have indicated through the trust dynamics that the trust level for each user is decaying over time. The decryption overhead is largely eliminated and not related to the number of system authorities. Also, a low overhead and short ciphertext update time at different numbers of revoked attributes and revoked users has been achieved.","PeriodicalId":127231,"journal":{"name":"2016 Third International Conference on Artificial Intelligence and Pattern Recognition (AIPR)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Revocation basis and proofs access control for cloud storage multi-authority systems\",\"authors\":\"Khaled Riad\",\"doi\":\"10.1109/ICAIPR.2016.7585223\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Multi-Authority Ciphertext-Policy Attribute-Based Encryption (MA-CP-ABE) is a rising cryptographic primitive for implementing fine-grained attribute-based access control on the outsourced data in cloud storage. However, most of the previous multi-authority attribute-based systems area unit either proved to be secure in a very weak model or lack of potency in user revocation. In this paper, we have introduced the formal definition of the attributes' trust. Also, a new Revocation Basis and Proofs Access Control (RB-PAC) model for cloud storage multi-authority systems has been proposed. Our RB-PAC model ensures secure resource sharing among potential untrusted tenants, supports different access permissions to the same user at the same session, and effectively satisfies both the backward and forward secrecy security requirements. Also, RB-PAC is proven secure against the users' collusion attack. Finally, The experimental results have indicated through the trust dynamics that the trust level for each user is decaying over time. The decryption overhead is largely eliminated and not related to the number of system authorities. Also, a low overhead and short ciphertext update time at different numbers of revoked attributes and revoked users has been achieved.\",\"PeriodicalId\":127231,\"journal\":{\"name\":\"2016 Third International Conference on Artificial Intelligence and Pattern Recognition (AIPR)\",\"volume\":\"14 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 Third International Conference on Artificial Intelligence and Pattern Recognition (AIPR)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICAIPR.2016.7585223\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 Third International Conference on Artificial Intelligence and Pattern Recognition (AIPR)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICAIPR.2016.7585223","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Revocation basis and proofs access control for cloud storage multi-authority systems
Multi-Authority Ciphertext-Policy Attribute-Based Encryption (MA-CP-ABE) is a rising cryptographic primitive for implementing fine-grained attribute-based access control on the outsourced data in cloud storage. However, most of the previous multi-authority attribute-based systems area unit either proved to be secure in a very weak model or lack of potency in user revocation. In this paper, we have introduced the formal definition of the attributes' trust. Also, a new Revocation Basis and Proofs Access Control (RB-PAC) model for cloud storage multi-authority systems has been proposed. Our RB-PAC model ensures secure resource sharing among potential untrusted tenants, supports different access permissions to the same user at the same session, and effectively satisfies both the backward and forward secrecy security requirements. Also, RB-PAC is proven secure against the users' collusion attack. Finally, The experimental results have indicated through the trust dynamics that the trust level for each user is decaying over time. The decryption overhead is largely eliminated and not related to the number of system authorities. Also, a low overhead and short ciphertext update time at different numbers of revoked attributes and revoked users has been achieved.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
