“…Specifically, to revoke the access capability of
such that it can no longer decrypt data encrypted under class
, must require only
to be updated. However, we stress that in all the existing KACs,
4,5 including those that claim to be dynamic,
6,7 the data owner has to update all the aggregate keys
to revoke one data class from an aggregate set
8 . For a large value of
, updating all
aggregate keys in the system also requires
secure transmissions to be carried out to their respective users.…”