Privacy-preserving data processing with flexible access control

Author

Wenxiu DING, Xidian University
Zheng YAN, Xidian University
Robert H. DENG, Singapore Management UniversityFollow

Publication Type

Journal Article

Version

publishedVersion

Publication Date

3-2020

Abstract

Cloud computing provides an efficient and convenient platform for cloud users to store, process and control their data. Cloud overcomes the bottlenecks of resource-constrained user devices and greatly releases their storage and computing burdens. However, due to the lack of full trust in cloud service providers, the cloud users generally prefer to outsource their sensitive data in an encrypted form, which, however, seriously complicates data processing, analysis, as well as access control. Homomorphic encryption (HE) as a single key system cannot flexibly control data sharing and access after encrypted data processing. How to realize various computations over encrypted data in an efficient way and at the same time flexibly control the access to data processing results has been an important challenging issue. In this paper, we propose a privacy-preserving data processing scheme with flexible access control. With the cooperation of a data service provider (DSP) and a computation party (CP), our scheme, based on Paillier's partial homomorphic encryption (PHE), realizes seven basic operations, i.e., Addition, Subtraction, Multiplication, Sign Acquisition, Absolute, Comparison, and Equality Test, over outsourced encrypted data. In addition, our scheme, based on the homomorphism of attribute-based encryption (ABE), is also designed to support flexible access control over processing results of encrypted data. We further prove the security of our scheme and demonstrate its efficiency and advantages through simulations and comparisons with existing work.

Keywords

Cloud computing, Access control, Encryption, Data processing, Process control, Computational efficiency, Homomorphic encryption, Privacy preservation, Data sharing, Attribute-based encryption

Discipline

Databases and Information Systems | Information Security

Research Areas

Cybersecurity

Publication

IEEE Transactions on Dependable and Secure Computing

Volume

17

Issue

2

First Page

363

Last Page

376

ISSN

1545-5971

Identifier

10.1109/TDSC.2017.2786247

Publisher

Institute of Electrical and Electronics Engineers (IEEE)

Embargo Period

3-28-2021

Citation

DING, Wenxiu; YAN, Zheng; and DENG, Robert H.. Privacy-preserving data processing with flexible access control. (2020). IEEE Transactions on Dependable and Secure Computing. 17, (2), 363-376.
Available at: https://ink.library.smu.edu.sg/sis_research/5878

Copyright Owner and License

Publisher

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.

Additional URL

https://doi.org/10.1109/TDSC.2017.2786247