Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service
Ciphertext-policy attribute-based encryption is a promising mechanism with fine-grained access control for cloud storage system. However, there is a long-lasting problem of key abuse that a user may share its decryption key and a semi-honest authority may illegally issue decryption keys for unauthor...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2019-04-01
|
| Series: | International Journal of Distributed Sensor Networks |
| Online Access: | https://doi.org/10.1177/1550147719841276 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832556719911206912 |
|---|---|
| author | Gang Yu Yongjuan Wang Zhenfu Cao Jian Lin Xiangyu Wang |
| author_facet | Gang Yu Yongjuan Wang Zhenfu Cao Jian Lin Xiangyu Wang |
| author_sort | Gang Yu |
| collection | DOAJ |
| description | Ciphertext-policy attribute-based encryption is a promising mechanism with fine-grained access control for cloud storage system. However, there is a long-lasting problem of key abuse that a user may share its decryption key and a semi-honest authority may illegally issue decryption keys for unauthorized users for profits. To address this problem, we propose an accountable ciphertext-policy attribute-based encryption scheme. In our construction, there are two authorities to issue keys for users, but they cannot decrypt any ciphertexts without collusion. A shared key can be effectively traced, and if the traced identity claims that it is innocent, an auditor can publicly audit who will be responsible for the shared key. Compared with existing accountable ciphertext-policy attribute-based encryption schemes, the proposed scheme is more practical from the two aspects: (1) a user can normally request for a decryption key along with a short signature, and no additional interaction between users and authorities is needed; and (2) the complexity of tracing a masked secret key is reduced to | U | exponent computation, where | U | denotes the number of users in the system. At last, we give the security and experimental analysis. |
| format | Article |
| id | doaj-art-f9f6d1be5791455c8d7c8919e907a50d |
| institution | Kabale University |
| issn | 1550-1477 |
| language | English |
| publishDate | 2019-04-01 |
| publisher | Wiley |
| record_format | Article |
| series | International Journal of Distributed Sensor Networks |
| spelling | doaj-art-f9f6d1be5791455c8d7c8919e907a50d2025-02-03T05:44:34ZengWileyInternational Journal of Distributed Sensor Networks1550-14772019-04-011510.1177/1550147719841276Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage serviceGang Yu0Yongjuan Wang1Zhenfu Cao2Jian Lin3Xiangyu Wang4State Key Laboratory of Mathematical Engineering and Advanced Computing and Henan Key Laboratory of Network Cryptography Technology, Information Science and Technology Institute, Zhengzhou, ChinaState Key Laboratory of Mathematical Engineering and Advanced Computing and Henan Key Laboratory of Network Cryptography Technology, Information Science and Technology Institute, Zhengzhou, ChinaShanghai Key Lab for Trustworthy Computing, East China Normal University, Shanghai, ChinaState Key Laboratory of Mathematical Engineering and Advanced Computing and Henan Key Laboratory of Network Cryptography Technology, Information Science and Technology Institute, Zhengzhou, ChinaState Key Laboratory of Mathematical Engineering and Advanced Computing and Henan Key Laboratory of Network Cryptography Technology, Information Science and Technology Institute, Zhengzhou, ChinaCiphertext-policy attribute-based encryption is a promising mechanism with fine-grained access control for cloud storage system. However, there is a long-lasting problem of key abuse that a user may share its decryption key and a semi-honest authority may illegally issue decryption keys for unauthorized users for profits. To address this problem, we propose an accountable ciphertext-policy attribute-based encryption scheme. In our construction, there are two authorities to issue keys for users, but they cannot decrypt any ciphertexts without collusion. A shared key can be effectively traced, and if the traced identity claims that it is innocent, an auditor can publicly audit who will be responsible for the shared key. Compared with existing accountable ciphertext-policy attribute-based encryption schemes, the proposed scheme is more practical from the two aspects: (1) a user can normally request for a decryption key along with a short signature, and no additional interaction between users and authorities is needed; and (2) the complexity of tracing a masked secret key is reduced to | U | exponent computation, where | U | denotes the number of users in the system. At last, we give the security and experimental analysis.https://doi.org/10.1177/1550147719841276 |
| spellingShingle | Gang Yu Yongjuan Wang Zhenfu Cao Jian Lin Xiangyu Wang Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service International Journal of Distributed Sensor Networks |
| title | Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service |
| title_full | Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service |
| title_fullStr | Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service |
| title_full_unstemmed | Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service |
| title_short | Traceable and undeniable ciphertext-policy attribute-based encryption for cloud storage service |
| title_sort | traceable and undeniable ciphertext policy attribute based encryption for cloud storage service |
| url | https://doi.org/10.1177/1550147719841276 |
| work_keys_str_mv | AT gangyu traceableandundeniableciphertextpolicyattributebasedencryptionforcloudstorageservice AT yongjuanwang traceableandundeniableciphertextpolicyattributebasedencryptionforcloudstorageservice AT zhenfucao traceableandundeniableciphertextpolicyattributebasedencryptionforcloudstorageservice AT jianlin traceableandundeniableciphertextpolicyattributebasedencryptionforcloudstorageservice AT xiangyuwang traceableandundeniableciphertextpolicyattributebasedencryptionforcloudstorageservice |