Accountable and Revocable Large Universe Decentralized Multi-Authority Attribute-Based Encryption for Cloud-Aided IoT

Huang, Kaiqing

doi:10.1109/access.2021.3110824

Cited by 15 publications

(5 citation statements)

References 51 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The study of existing multi-authority CPABE schemes based on bilinear pairing cryptography exhibits that very few schemes have addressed both levels of revocation however, the approaches implemented to restrict the access privileges of the revoked users have not considered the potentiality of the cloud service provider to collude with the revoked users [21][22][23]. Huang [23] too updated users' key and re-encrypted ciphertext to enforce user and attribute-level revocation. All attributes held by the user have been revoked by the involved attribute authorities in the proposed approach to address user revocation.…”

Section: Attribute-level Revocationmentioning

confidence: 99%

A Proxy-Based and Collusion Resistant Multi-Authority Revocable CPABE Framework with Efficient User and Attribute-Level Revocation (PCMR-CPABE)

Chawla¹,

Gupta²

2023

IJSSE

View full text Add to dashboard Cite

The presence of multiple authorities in multi-authority ciphertext policy attribute based encryption (CPABE) schemes hinders an adversary's ability to compromise security. As each authority is responsible to provide secret keys to the users, thus enforcement of finegrained access control should be carefully designed to ensure data confidentiality. The current study critically reviews the methodologies employed to address user-level and attribute-level revocation in the existing studies. The study has focused on the revocation methodology of those CPABE schemes that are implemented using bilinear pairing cryptography for the encryption and Linear Secret Sharing Scheme (LSSS) for the access structure. It has been observed that the approaches implemented in the existing schemes are computationally expensive and are vulnerable to collusion attacks caused by the cloud and revoked users. Thus, an efficient proxy-based and collusion resistant multi-authority revocable CPABE framework (PCMR-CPABE) is proposed in the current study. The proposed framework is decentralized, dynamic, scalable, and ensures forward/backward secrecy. Additionally, the proposed framework is computationally efficient and is practical to implement as it does not require secret key or group secret key and ciphertext update to address revocation. Furthermore, the incorporation of time and identity-based components allows the proposed framework to resist collusion attacks efficiently.

show abstract

Section: Attribute-level Revocationmentioning

confidence: 99%

A Proxy-Based and Collusion Resistant Multi-Authority Revocable CPABE Framework with Efficient User and Attribute-Level Revocation (PCMR-CPABE)

Chawla¹,

Gupta²

2023

IJSSE

View full text Add to dashboard Cite

show abstract

“…Estimate A ij by using equation (11); End if End for S j End for S i End for X k Step 3: Compute exponential matrix Expm ij and the average A ij of relevant vector R ij based on the estimated list index avg idx and update avg list in the list by using equations ( 12) to (14); For y = 1 to S j Compute the related average of overall vector avg R by using equation (15); Compute the distance list dis ls between the average list avg 2 List and the related parameter avg R 2 by using equation ( 16); Update C id with the minimum of dis ls as shown in equation ( 17); End for y; Algorithm 2: Continued.…”

Section: Elsementioning

confidence: 99%

“…The conventional works developed different encryption and classification methodologies [13,14] to ensure secure data storage and retrieval in the IoT-cloud domain. Generally, the encryption techniques [15] like Advanced Encryption Standard (AES) [16], Rivest Shamir Adleman (RSA), SHA-512, and Elliptic Curve Cryptography (ECC) have been widely used in many data security systems [17]. Moreover, it helps decrypt the raw data before storage and retrieval processes with guaranteed security [18].…”

Section: Introductionmentioning

confidence: 99%

Healthcare Data Security Using IoT Sensors Based on Random Hashing Mechanism

et al. 2022

View full text Add to dashboard Cite

Providing security to the healthcare data stored in an IoT-cloud environment is one of the most challenging and demanding tasks in recent days. Because the IoT-cloud framework is constructed with an enormous number of sensors that are used to generate a massive amount of data, however, it is more susceptible to vulnerabilities and attacks, which degrades the security level of the network by performing malicious activities. Hence, Artificial Intelligence (AI) technology is the most suitable option for healthcare applications because it provides the best solution for improving the security and reliability of data. Due to this fact, various AI-based security mechanisms are implemented in the conventional works for the IoT-cloud framework. However, it faces significant problems of increased complexity in algorithm design, inefficient data handling, not being suitable for processing the unstructured data, increased cost of IoT sensors, and more time consumption. Therefore, this paper proposed an AI-based intelligent feature learning mechanism named Probabilistic Super Learning- (PSL-) Random Hashing (RH) for improving the security of healthcare data stored in IoT-cloud. Also, this paper is aimed at reducing the cost of IoT sensors by implementing the proposed learning model. Here, the training model has been maintained for detecting the attacks at the initial stage, where the properties of the reported attack are updated for learning the characteristics of attacks. In addition to that, the random key is generated based on the hash value of the data matrix, which is incorporated with the standard Elliptic Curve Cryptography (ECC) technique for data security. Then, the enhanced ECC-RH mechanism performs the data encryption and decryption processes with the generated random hash key. During performance evaluation, the results of both existing and proposed techniques are validated and compared using different performance indicators.

show abstract

“…Furthermore, the CTFilter algorithm in the partially hidden access structures (PHAS)-highly efficient key revocation (HEKR)-CPABE scheme increased the computational cost and made it vulnerable to collusion attacks. The approach proposed in [32] updated users' keys and re-encrypted ciphertext to enforce user and attribute-level revocation. All attributes held by the user have been revoked in the proposed approach by the involved attribute authorities to address user revocation.…”

Section: Introductionmentioning

confidence: 99%

Performance analysis of the proxy-based and collusion-resistant revocable CPABE framework

Chawla,

Gupta

2024

IJEECS

View full text Add to dashboard Cite

An efficient revocation of access rights in ciphertext policy attribute-based encryption (CPABE) schemes has multiple challenges, particularly for lightweight devices. Thus, extensive research on the existing studies enforcing and governing access control has been conducted. The methodologies used in the existing CPABE (bilinear pairing cryptography based) schemes to revoke users at the system and attribute levels have been focused on in the current study. The existing studies have been examined on the basis of the following parameters for revocation: type of revocation addressed, level of collusion resistance, dynamicity achieved, scalability of revocation, and computational cost incurred. It has been observed in the study that no single scheme achieves all the revocation properties and addresses both types of revocation. The module proposed in proxy-based and collusion-resistant multi-authority revocable CPABE (PCMR-CPABE) efficiently addresses both types of revocation and is fully collusion-resistant, dynamic, and scalable. The present paper extends the study on PCMRCPABE and presents a performance analysis of the module in terms of functional specifications and computational cost. The presented analysis has compared the performance of the existing cutting-edge schemes with the PCMR-CPABE module and has proved that the proposed module is better in terms of functionality and is computationally inexpensive.

show abstract

Accountable and Revocable Large Universe Decentralized Multi-Authority Attribute-Based Encryption for Cloud-Aided IoT

Cited by 15 publications

References 51 publications

A Proxy-Based and Collusion Resistant Multi-Authority Revocable CPABE Framework with Efficient User and Attribute-Level Revocation (PCMR-CPABE)

A Proxy-Based and Collusion Resistant Multi-Authority Revocable CPABE Framework with Efficient User and Attribute-Level Revocation (PCMR-CPABE)

Healthcare Data Security Using IoT Sensors Based on Random Hashing Mechanism

Performance analysis of the proxy-based and collusion-resistant revocable CPABE framework

Contact Info

Product

Resources

About