Server‐aided revocable attribute‐based encryption for cloud computing services

H. Cui; T. Hon Yuen; R.H. Deng; G. Wang

doi:10.1002/cpe.5680

Back

Server‐aided revocable attribute‐based encryption for cloud computing services

Journal article

Peer reviewed

Server‐aided revocable attribute‐based encryption for cloud computing services

H. Cui, T. Hon Yuen, R.H. Deng and G. Wang

Concurrency and Computation: Practice and Experience, Vol.32(14), e5680

2020

DOI: https://doi.org/10.1002/cpe.5680

Files and links (1)

url

Link to Published Version *Subscription may be requiredView

Abstract

Attribute‐based encryption (ABE) has been regarded as a promising solution in cloud computing services to enable scalable access control without compromising the security. Despite of the advantages, efficient user revocation has been a challenge in ABE. One suggestion for user revocation is using the binary tree in the key generation phase of an ABE scheme, which enables a trusted key generation center to periodically distribute the key update information to all nonrevoked users over a public channel. This revocation approach reduces the size of key updates from linear to logarithmic in the number of users. But it requires each user to keep a private key of the logarithmic size, and asks each nonrevoked user to periodically update his/her decryption key for each new time period. To further optimize user revocation in ABE, a server‐aided revocable ABE (SR‐ABE) scheme has been proposed, in which almost all workloads of users incurred by the user revocation are outsourced to an untrusted server, and each user only needs to store a private key of the constant size. In addition, SR‐ABE does not require any secure channel for the key transmission, and a user only needs to perform a small amount of calculations to decrypt a ciphertext. In this paper, we revisit the notion of SR‐ABE, and present a generic construction of SR‐ABE, which can transform a revocable ABE (RABE) scheme to an SR‐ABE scheme. In addition, we give an instantiation of SR‐ABE by applying the generic construction on a concrete RABE scheme, and implement an instantiation of SR‐ABE and an RABE scheme to evaluate the performance of SR‐ABE.

Details

Title: Server‐aided revocable attribute‐based encryption for cloud computing services
Authors/Creators: H. Cui (Author/Creator) - Murdoch University
T. Hon Yuen (Author/Creator)
R.H. Deng (Author/Creator) - Singapore Management University
G. Wang (Author/Creator) - Huawei Technologies (France)
Publication Details: Concurrency and Computation: Practice and Experience, Vol.32(14), e5680
Publisher: John Wiley & Sons Ltd
Identifiers: 991005543508007891
Murdoch Affiliation: Information Technology, Mathematics and Statistics
Language: English
Resource Type: Journal article

Metrics

20 Record Views

14 Times Cited - Web of Science

InCites Highlights

These are selected metrics from InCites Benchmarking & Analytics tool, related to this output

Collaboration types: Industry collaboration; Domestic collaboration; International collaboration
Citation topics: 4 Electrical Engineering, Electronics & Computer Science; 4.187 Security Systems; 4.187.160 Cryptographic Protocols
Web Of Science research areas: Computer Science, Software Engineering; Computer Science, Theory & Methods
ESI research areas: Computer Science