Publication Type
Conference Proceeding Article
Version
acceptedVersion
Publication Date
10-2016
Abstract
Attribute-based encryption (ABE) enables an access control mechanism over encrypted data by specifying access policies over attributes associated with private keys or ciphertexts, which is a promising solution to protect data privacy in cloud storage services. As an encryption system that involves many data users whose attributes might change over time, it is essential to provide a mechanism to selectively revoke data users’ attributes in an ABE system. However, most of the previous revokable ABE schemes consider how to disable revoked data users to access (newly) encrypted data in the system, and there are few of them that can be used to revoke one or more attributes of a data user while keeping this user active in the system. Due to this observation, in this paper, we focus on designing ABE schemes supporting selective revocation, i.e., a data user’s attributes can be selectively revoked, which we call ABE with granular revocation (ABE-GR). Our idea is to utilize the key separation technique, such that for any data user, key elements corresponding to his/her attributes are generated separately but are linkable to each other. To begin with, we give a basic ABE-GR scheme to accomplish selective revocation using the binary tree data structure. Then, to further improve the efficiency, we present a server-aided ABE-GR scheme, where an untrusted server is introduced to the system to mitigate data users’ workloads during the key update phase. Both of the ABE-GR constructions are formally proved to be secure under our defined security model.
Keywords
granular revocation, ABE, efficiency, cloud storage
Discipline
Information Security
Research Areas
Cybersecurity
Publication
Security and Privacy in Communication Networks: 12th International Conference, SecureComm 2016, Guangzhou, China, October 10-12: Proceedings
Volume
198
First Page
165
Last Page
181
ISBN
9783319596075
Identifier
10.1007/978-3-319-59608-2_9
Publisher
Springer
City or Country
Cham
Citation
CUI, Hui; DENG, Robert H.; DING, Xuhua; and Yingjiu LI.
Attribute-based encryption with granular revocation. (2016). Security and Privacy in Communication Networks: 12th International Conference, SecureComm 2016, Guangzhou, China, October 10-12: Proceedings. 198, 165-181.
Available at: https://ink.library.smu.edu.sg/sis_research/3399
Copyright Owner and License
Authors
Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.
Additional URL
https://doi.org/10.1007/978-3-319-59608-2_9