Data sharing is an important functionality in cloud storage. In this article, we show how to securely, efficiently, and flexibly share data with others in cloud storage. We describe new public-key cryptosystems which produce constant-size ciphertexts such that efficient delegation of decryption rights for any set of ciphertexts are possible. The novelty is that one can aggregate any set of secret keys and make them as compact as a single key, but encompassing the power of all the keys being aggregated. In other words, the secret key holder can release a constant-size aggregate key for flexible choices of ciphertext set in cloud storage, but the other encrypted files outside the set remain confidential. This compact aggregate key can be conveniently sent to others or be stored in a smart card with very limited secure storage. We provide formal security analysis of our schemes in the standard model. We also describe other application of our schemes. In particular, our schemes give the first public-key patient-controlled encryption for flexible hierarchy, which was yet to be known.
Cryptographic controls, Data, Data Encryption, Public key cryptosystems, Software/Software Engineering, Operating Systems, Security and Privacy Protection
IEEE Transactions on Parallel and Distributed Systems
CHU, Cheng-Kang; CHOW, Sherman S. M.; TZENG, Wen-Guey; ZHOU, Jiangying; and DENG, Robert H..
Key-Aggregate Cryptosystem for Scalable Data Sharing in Cloud Storage. (2014). IEEE Transactions on Parallel and Distributed Systems. 25, (2), 468-477. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/1938
Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.