Publication Type

Journal Article

Publication Date

2-2014

Abstract

Data sharing is an important functionality in cloud storage. In this article, we show how to securely, efficiently, and flexibly share data with others in cloud storage. We describe new public-key cryptosystems which produce constant-size ciphertexts such that efficient delegation of decryption rights for any set of ciphertexts are possible. The novelty is that one can aggregate any set of secret keys and make them as compact as a single key, but encompassing the power of all the keys being aggregated. In other words, the secret key holder can release a constant-size aggregate key for flexible choices of ciphertext set in cloud storage, but the other encrypted files outside the set remain confidential. This compact aggregate key can be conveniently sent to others or be stored in a smart card with very limited secure storage. We provide formal security analysis of our schemes in the standard model. We also describe other application of our schemes. In particular, our schemes give the first public-key patient-controlled encryption for flexible hierarchy, which was yet to be known.

Keywords

Cryptographic controls, Data, Data Encryption, Public key cryptosystems, Software/Software Engineering, Operating Systems, Security and Privacy Protection

Discipline

Information Security

Research Areas

Cybersecurity

Publication

IEEE Transactions on Parallel and Distributed Systems

Volume

25

Issue

2

First Page

468

Last Page

477

ISSN

1045-9219

Identifier

10.1109/TPDS.2013.112

Publisher

IEEE

Creative Commons License

Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.

Additional URL

http://dx.doi.org/10.1109/TPDS.2013.112

Share

COinS