A fully distributed hierarchical attribute-based encryption scheme

Ali, Mohammad; Mohajeri, Javad; Sadeghi, Mohammad‐Reza; Liu, Ximeng

doi:10.1016/j.tcs.2020.02.030

Cited by 32 publications

(9 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Other works use hierarchical attribute-based access models, e.g. [19,20,[30][31][32]. For example, [19] presents a hierarchical Multi-Dimensional Access Control (MD-AC) model for the authorization of multiple participants in the cloud.…”

Section: Related Workmentioning

confidence: 99%

Janus: Hierarchical Multi-blockchain Based Access Control (HMBAC) for Multi-Authority & Multi-Domain Environments

Malamas¹,

Palaiologos²,

Kotzanikolaou³

et al. 2022

Preprint

View full text Add to dashboard Cite

Although there are several access control systems in the literature for flexible policy management in multi-authority and multi-domain environments, achieving interoperability &amp; scalability, without relying on strong trust assumptions, is still an open challenge. We present HMBAC, a distributed fine-grained access control model for shared and dynamic multi-authority and multi-domain environments, along with Janus, a practical system for HMBAC policy enforcement. The proposed HMBAC model supports: (a) dynamic trust management between different authorities; (b) flexible access control policy enforcement, defined at domain and cross-domain level; (c) a global source of truth for all entities, supported by an immutable, audit-friendly mechanism. Janus implements the HMBAC model and relies on the effective fusion of two core components. First, a Hierarchical Multi-Blockchain architecture that acts as a single access point that cannot be bypassed by users or authorities. Second, a Multi-Authority Attribute Based Encryption protocol that supports flexible shared multi-owner encryption, where attribute keys from different authorities are combined to decrypt data distributedly stored in different authorities. Our approach was implemented using Hyperledger Fabric as the underlying blockchain, with the system components placed in Kubernetes Docker container pods. We experimentally validated the effectiveness and efficiency of Janus, while fully reproducible artifacts of both our implementation and our measurements are provided.

show abstract

Section: Related Workmentioning

confidence: 99%

Janus: Hierarchical Multi-blockchain Based Access Control (HMBAC) for Multi-Authority & Multi-Domain Environments

Malamas¹,

Palaiologos²,

Kotzanikolaou³

et al. 2022

Preprint

View full text Add to dashboard Cite

show abstract

“…Other works use hierarchical attribute-based access models, e.g., [25][26][27][28][29]. For example, Ref.…”

Section: Related Workmentioning

confidence: 99%

Janus: Hierarchical Multi-Blockchain-Based Access Control (HMBAC) for Multi-Authority and Multi-Domain Environments

et al. 2022

View full text Add to dashboard Cite

Although there are several access control systems in the literature for flexible policy management in multi-authority and multi-domain environments, achieving interoperability and scalability, without relying on strong trust assumptions, is still an open challenge. We present HMBAC, a distributed fine-grained access control model for shared and dynamic multi-authority and multi-domain environments, along with Janus , a practical system for HMBAC policy enforcement. The proposed HMBAC model supports: (a) dynamic trust management between different authorities; (b) flexible access control policy enforcement, defined at the domain and cross-domain level; (c) a global source of truth for all entities, supported by an immutable, audit-friendly mechanism. Janus implements the HMBAC model and relies on the effective fusion of two core components. First, a Hierarchical Multi-Blockchain architecture that acts as a single access point that cannot be bypassed by users or authorities. Second, a Multi-Authority Attribute-Based Encryption protocol that supports flexible shared multi-owner encryption, where attribute keys from different authorities are combined to decrypt data distributedly stored in different authorities. Our approach was implemented using Hyperledger Fabric as the underlying blockchain, with the system components placed in Kubernetes Docker container pods. We experimentally validated the effectiveness and efficiency of Janus, while fully reproducible artifacts of both our implementation and our measurements are provided.

show abstract

“…Meng et al [27] aiming at the problem of illegal access to private and sensitive information in smart cities proposed a new keyword search CP-ABE scheme to encrypt or decrypt Internet of things (IoT) data in cloud storage. Ali et al [9] proposed an efficient multiauthority access control scheme for the employee attribute scenarios of large companies, which realized privacy protection, multiauthority access control, and fine-grained access control to stored data. De Oliveira et al [28] aimed at the problem that the healthcare professional could not obtain the patient's complete electronic medical records (EMRs) in the medical emergency situation and proposed a protocol based on CP-ABE scheme, through which all the treatment teams participating in the emergency rescue can security decrypt the relevant data of the patient's EMRs.…”

Section: Related Workmentioning

confidence: 99%

“…Multiauthority CP-ABE constructions [8] It can realize fine-grained distributed access authority and can be divided into centralized CP-ABE and distributed CP-ABE according to whether there is a central organization. Hierarchical CP-ABE constructions [9][10][11][12][13] It can achieve hierarchical fine-grained access control. e delegation of access privilege is organized in a hierarchical manner.…”

Section: Cp-abe Category Descriptionmentioning

confidence: 99%

Speech Encryption Scheme Based on Ciphertext Policy Hierarchical Attribute in Cloud Storage

Zhang

Zhao

2021

Security and Communication Networks

View full text Add to dashboard Cite

In order to ensure the confidentiality and secure sharing of speech data, and to solve the problems of slow deployment of attribute encryption systems and fine-grained access control in cloud storage, a speech encryption scheme based on ciphertext policy hierarchical attributes was proposed. First, perform hierarchical processing of the attributes of the speech data to reflect the hierarchical structure and integrate the hierarchical access structure into a single-access structure. Second, use the attribute fast encryption framework to construct the attribute encryption scheme of the speech data, and use the integrated access to the speech data; thus, the structure is encrypted and uploaded to the cloud for storage and sharing. Finally, use the hardness of decisional bilinear Diffie–Hellman (DBDH) assumption to prove that the proposed scheme is secure in the random oracle model. The theoretical security analysis and experimental results show that the proposed scheme can achieve efficient and fine-grained access control and is secure and extensible.

show abstract

A fully distributed hierarchical attribute-based encryption scheme

Cited by 32 publications

References 22 publications

Janus: Hierarchical Multi-blockchain Based Access Control (HMBAC) for Multi-Authority & Multi-Domain Environments

Janus: Hierarchical Multi-blockchain Based Access Control (HMBAC) for Multi-Authority & Multi-Domain Environments

Janus: Hierarchical Multi-Blockchain-Based Access Control (HMBAC) for Multi-Authority and Multi-Domain Environments

Speech Encryption Scheme Based on Ciphertext Policy Hierarchical Attribute in Cloud Storage

Contact Info

Product

Resources

About