Achieving Simple, Secure and Efficient Hierarchical Access Control in Cloud Computing

Tang, Shaohua; Li, Xiaoyü; Huang, Xinyi; Xiang, Yang; Xu, Lingling

doi:10.1109/tc.2015.2479609

Cited by 50 publications

(32 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Firstly, based on the features of the group blind signature, the signature and message reveal neither the identity of data owner nor identity of the issuing signer. Then, the scheme is a conditional group blind signature which can identity malicious user if necessary [33].At last, we introduce the homomorphic tag mechanism [34,35,36,37,38] to verify the integrity of data. We believe that our contributions can widen the application scope of privacy-preserving in smart grid.…”

Section: Data Integrity Can Be Verified By CCmentioning

confidence: 99%

A practical group blind signature scheme for privacy protection in smart grid

Kong

Shen

Vijayakumar³

et al. 2020

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

The leakage of privacy is one of the key factors to restrict the development of smart grid. Currently, researches of protecting privacy in smart grid mainly focused on two aspects: 1) data aggregation based on the mathematical model and algorithm and 2) user anonymous authentication. However, data aggregation is at cost of obtaining fine-grained electricity consumption information to protect privacy. While, anonymous authentication cannot identify the malicious user in previous researches. Hence, in this work, we propose a group blind signature scheme in smart grid to accomplish conditional anonymity. Furthermore, the integrity of consumption data can be verified by homomorphic encryption (HE) which can decrease the communication overhead between control center and smart meter remarkably. From the security analysis and experiment simulation, the results show that our scheme is safety and efficient.

show abstract

Section: Data Integrity Can Be Verified By CCmentioning

confidence: 99%

A practical group blind signature scheme for privacy protection in smart grid

Kong

Shen

Vijayakumar³

et al. 2020

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

show abstract

“…Reference [187] proposed a new security model that provided a simple, effective and secure structure for key distribution at any level using pseudo-random function and forward-secure pseudo-random generator. Reference [188] proposed a hierarchical key distribution scheme based on linear geometry. In this scheme, the keys of hierarchical structure are associated with a private vector, both the inner product of the private sector and the common vector can be used to obtain the subclass encryption key.…”

Section: Hierarchical Keymentioning

confidence: 99%

Privacy Protection and Data Security in Cloud Computing: A Survey, Challenges, and Solutions

Sun

2019

IEEE Access

View full text Add to dashboard Cite

Privacy and security are the most important issues to the popularity of cloud computing service. In recent years, there are many research schemes of cloud computing privacy protection based on access control, attribute-based encryption (ABE), trust and reputation, but they are scattered and lack unified logic. In this paper, we systematically review and analyze relevant research achievements. First, we discuss the architecture, concepts and several shortcomings of cloud computing, and propose a framework of privacy protection; second, we discuss and analyze basic ABE, KP-ABE (key policy attribute-based encryption), CP-ABE (ciphertext policy attribute-based encryption), access structure, revocation mechanism, multiauthority, fine-grained, trace mechanism, proxy re-encryption(PRE), hierarchical encryption, searchable encryption(SE), trust, reputation, extension of tradition access control and hierarchical key; third, we propose the research challenge and future direction of the privacy protection in the cloud computing; finally, we point out corresponding privacy protection laws to make up for the technical deficiencies. INDEX TERMS Cloud computing, privacy, access control, attribute-based encryption, trust.

show abstract

“…All these transformations involve computation of multi-linear maps. Tang et al [20] proposed an elegant scheme involving vectors and linear geometry where each class in the system has public and private keys in the form of key vectors. Encryption key of the descendant classes can be derived using inner product of the vector associated with the private key of the class and that with the public key of its descendants.…”

Section: Related Workmentioning

confidence: 99%

Extended hierarchical key assignment scheme (E-HKAS): how to efficiently enforce explicit policy exceptions in dynamic hierarchies

Pareek

Purushothama

2019

Sādhanā

View full text Add to dashboard Cite

In this paper, we focus on practically motivated flexibility requirements for the hierarchical access control model, namely transitive exception and anti-symmetric exception. Additionally, we motivate a new flexibility requirement called ''class delegation with descendant(s) safety'' in a practical application scenario. We propose our extended hierarchical key assignment scheme (E-HKAS) that satisfies all three aforementioned flexibility requirements in a dynamic hierarchy of security classes. To propose a generic E-HKAS, we model the hierarchical access control policy as a collection of access groups. E-HKAS enforces transitive and antisymmetric exceptions using an efficient group-based encryption scheme. To enforce class delegation with descendant(s) safety, we propose a novel cryptographic primitive called group proxy re-encryption (GPRE) that supports proxy re-encryption between two access groups. We present an IND-CPA-secure construction of our proposed GPRE scheme and formally prove its security. Performance analysis shows that the proposed E-HKAS enforces explicit transitive and anti-symmetric exceptions more efficiently than the existing approaches in the literature. Computation cost for key derivation is constant and does not depend on the depth of the hierarchy. Also, to enforce class delegation with descendant(s) safety, the proposed E-HKAS requires constant number of computational steps to be executed. adhana(0123456789().,-volV)FT3 ](0123456789().,-volV)

show abstract

Achieving Simple, Secure and Efficient Hierarchical Access Control in Cloud Computing

Cited by 50 publications

References 35 publications

A practical group blind signature scheme for privacy protection in smart grid

A practical group blind signature scheme for privacy protection in smart grid

Privacy Protection and Data Security in Cloud Computing: A Survey, Challenges, and Solutions

Extended hierarchical key assignment scheme (E-HKAS): how to efficiently enforce explicit policy exceptions in dynamic hierarchies

Contact Info

Product

Resources

About