A novel linear polynomial-based dynamic key management scheme for hierarchical access control

Odelu, Vanga; Das, Ashok Kumar; Goswami, Adrijit

doi:10.1504/ijtmcc.2013.053278

Cited by 4 publications

(1 citation statement)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Majority of HKAS proposed afterwards are proved to be secure under the formal security notions named ''key indistinguishability'' (KI) or ''key nonrecoverability'' given by Atallah et al [1]. Odelu et al [17] proposed a HKAS in public-key cryptography setting that uses linear polynomials and elliptic curve cryptography (ECC). Their scheme is proved to be secure against key recovery (KR) under various practical attack scenarios.…”

Section: Related Workmentioning

confidence: 99%

Extended hierarchical key assignment scheme (E-HKAS): how to efficiently enforce explicit policy exceptions in dynamic hierarchies

Pareek

Purushothama

2019

Sādhanā

View full text Add to dashboard Cite

In this paper, we focus on practically motivated flexibility requirements for the hierarchical access control model, namely transitive exception and anti-symmetric exception. Additionally, we motivate a new flexibility requirement called ''class delegation with descendant(s) safety'' in a practical application scenario. We propose our extended hierarchical key assignment scheme (E-HKAS) that satisfies all three aforementioned flexibility requirements in a dynamic hierarchy of security classes. To propose a generic E-HKAS, we model the hierarchical access control policy as a collection of access groups. E-HKAS enforces transitive and antisymmetric exceptions using an efficient group-based encryption scheme. To enforce class delegation with descendant(s) safety, we propose a novel cryptographic primitive called group proxy re-encryption (GPRE) that supports proxy re-encryption between two access groups. We present an IND-CPA-secure construction of our proposed GPRE scheme and formally prove its security. Performance analysis shows that the proposed E-HKAS enforces explicit transitive and anti-symmetric exceptions more efficiently than the existing approaches in the literature. Computation cost for key derivation is constant and does not depend on the depth of the hierarchy. Also, to enforce class delegation with descendant(s) safety, the proposed E-HKAS requires constant number of computational steps to be executed. adhana(0123456789().,-volV)FT3 ](0123456789().,-volV)

show abstract

Section: Related Workmentioning

confidence: 99%