Publication Type

Journal Article

Version

publishedVersion

Publication Date

11-2022

Abstract

Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is one of the potent encryption paradigms in protecting data confidentiality in the cloud data sharing scenario. However, the access policy of the traditional CP-ABE is in plaintext form that reveals significant sensitive information of data owners and data visitors. To mitigate this problem, two approaches have been proposed in the literature. One is partially hidden, where the attributes in the access policy are divided into two parts: the plaintext attribute names and the hidden attribute values. The other approach fully hides the attributes in the access policy which, unfortunately, hinders efficient and correct decryption as well as dynamic policy-updating. In this article, we design a security-enhanced Attribute Cuckoo Filter (se-ACF) to hide the access policy and propose a new CP-ABE system, called Privacy-Preserving Policy Updating ABE (3PU-ABE), which effectively integrates policy hiding and policy updating. We conduct rigorous security analysis and performance evaluation of 3PU-ABE. The results indicate that 3PU-ABE completely hides the access policy without affecting the decryption, and entails better policy-updating efficiency than similar works.

Keywords

Cloud Computing, Security, Encryption, Data Privacy, Servers, Computer Science, Voltage Control, Ciphertext Policy Attribute Based Encryption, Cloud Data Sharing, Privacy Preserving, Policy Updating, Policy Hiding

Discipline

Information Security

Research Areas

Cybersecurity

Areas of Excellence

Digital transformation

Publication

IEEE Transactions on Services Computing

Volume

15

Issue

6

First Page

3485

Last Page

3498

ISSN

1939-1374

Identifier

10.1109/TSC.2021.3096177

Publisher

Institute of Electrical and Electronics Engineers

Additional URL

https://doi.org/10.1109/TSC.2021.3096177

Download

Share

COinS