支持高效撤销的多机构属性加密方案

doi:10.11959/j.issn.1000-436x.2017068

Abstract

Abstract:

Multi-authority attribute-based encryption was very suitable for data access control in a cloud storage environment.However,efficient user revocation in multi-authority attribute-based encryption remains a challenging problem that prevents it from practical applications.A multi-authority ciphertext-policy attribute-based encryption scheme with efficient revocation was proposed in prime order bilinear groups,and was further proved statically secure and revocable in the random oracle model.Extensive efficiency analysis results indicate that the proposed scheme significantly reduce the computation cost for the users.In addition,the proposed scheme supports large universe and any monotone access structures,which makes it more flexible for practical applications.

Key words: attribute-based encryption, multi-authority, revocation, large universe

CLC Number:

TP309

Kai ZHANG,Jian-feng MA,Hui LI,Jun-wei ZHANG,Tao ZHANG. Multi-authority attribute-based encryption with efficient revocation[J]. Journal on Communications, 2017, 38(3): 83-91.

Figures/Tables 1

方案	特性		存储开销			计算开销
方案	大属性域	无CA	公钥	用户私钥	密文	素数阶群	加密	用户解密
文献[5]方案	否	否	$2 \| U \| + 3$	$\| S + 2 \|$	4l 3+	是	l+3)E(5	$2 \| I \| P + \| I \| E$
文献[6]方案	是	否	4	$2 \| S + 2 \|$	2l 2+	是	l+2)E(2	$(2 \| I \| + 2 \| I \| E)$
文献[7]方案	否	是	$2 \| U \|$	S	3l 1+	否	(5l+1)E	$2 \| I \| P + \| I \| E$
本文方案	是	是	$2 \| U_{θ} \|$	1	4l 1+	是	(6l+1)E	E

References 18

[1]	SAHAI A , WATERS B . Fuzzy identity-based encryption[C]// EUROCRYPT. Aarhus,Denmark, 2005: 457-473.
[2]	GOYAL V , PANDEY O , SAHAI A ,et al. Attribute-based encryption for fine-grained access control of encrypted data[C]// The 13th ACM Conference on Computer and Communications Security. Alexandria,VA,USA, 2006: 89-98.
[3]	BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption[C]// The IEEE Symposium on Security and Privacy. Berkeley,CA,USA, 2007: 321-334.
[4]	CHASE M , . Multi-authority attribute based encryption[C]// TCC. Amsterdam,The Netherlands, 2007: 515-534.
[5]	YANG K , JIA X . Expressive,efficient and revocable data access control for multi-authority cloud storage[J]. IEEE Transactions on Parallel and Distributed Systems, 2014,25(7): 1735-1744.
[6]	HUANG X , TAO Q , QIN B ,et al. Multi-authority attribute based encryption scheme with revocation[C]// The 24th International Conference on Computer Communication and Networks. IEEE, 2015: 1-5.
[7]	CUI H , DENG R H . Revocable and decentralized attribute-based encryption[J]. The Computer Journal, 2016:bxw007.
[8]	WATERS B , . Ciphertext-policy attribute-based encryption:an expressive,efficient,and provably secure realization[C]// PKC. Taormina,Italy, 2011: 53-70.
[9]	LEWKO A , WATERS B . Unbounded HIBE and attribute-based encryption[C]// EUROCRYPT. Springer Berlin Heidelberg, 2011: 547-567.
[10]	ROUSELAKIS Y , WATERS B . Efficient statically-secure largeuniverse multi-authority attribute-based encryption[C]// Financial Cryptography and Data Security. Berlin:Springer, 2015: 315-332.
[11]	ZHANG K , MA J , LIU J ,et al. Adaptively secure multi-authority attribute-based encryption with verifiable outsourced decryption[J].,2016,59(9):99105. Science China Information Sciences, 2016,59(9):99105.
[12]	ATTRAPADUNG N , IMAI H . Attribute-based encryption supporting direct/indirect revocation modes[C]// IMA International Conference on Cryptography and Coding.Springer Berlin Heidelberg. 2009: 278-300.
[13]	SAHAI A , SEYALIOGLU H , WATERS B . Dynamic credentials and ciphertext delegation for attribute-based encryption[C]// Crypto. Springer Berlin Heidelberg, 2012: 199-217.
[14]	YANG Y , DING X , LU H ,et al. Achieving revocable fine-grained cryptographic access control over cloud data[C]// Information Security. Springer International Publishing, 2015: 293-308.
[15]	YANG Y , LIU J K , LIANG K ,et al. Extended proxy-assisted approach:achieving revocable fine-grained encryption of cloud data[C]// European Symposium on Research in Computer Security. Springer International Publishing, 2015: 146-166.
[16]	闫玺玺, 孟慧 . 支持直接撤销的密文策略属性基加密方案[J]. 通信学报, 2016,37(5): 44-50.
	YAN X X , MENG H . Ciphertext policy attribute-based encryption scheme supporting direct revocation[J]. Journal on Communications, 2016,37(5): 44-50.
[17]	BEIMEL A . Secure schemes for secret sharing and key distribution[D]. Technical-Israel Institute of Technology,Faculty of Computer Science, 1996.
[18]	GREEN M , HOHENBERGER S , WATERS B . Outsourcing the decryption of ABE ciphertexts[C]// The 20th USENIX Security Symposium. San Francisco, 2011: 523-538.

Metrics

Recommended 0

No Suggested Reading articles found!

Multi-authority attribute-based encryption with efficient revocation

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 1

References 18

Related Articles 15

Metrics

Recommended 0

[1]	Xuejiao LIU, Tiancong CAO, Yingjie XIA. Research on efficient and secure cross-domain data sharing of IoV under blockchain architecture [J]. Journal on Communications, 2023, 44(3): 186-197.
[2]	Yiliang HAN, Kaiyang GUO, Riming WU, Kai LIU. Attribute-based encryption scheme against key abuse based on OBDD access structure from lattice [J]. Journal on Communications, 2023, 44(1): 75-88.
[3]	Ruizhong DU, Tianhe ZHANG, Pengliang SHI. Ciphertext policy hidden access control scheme based on blockchain and supporting data sharing [J]. Journal on Communications, 2022, 43(6): 168-178.
[4]	Xinchun YIN, Mengyu WANG, Jianting NING. Lightweight searchable medical data sharing scheme [J]. Journal on Communications, 2022, 43(5): 110-122.
[5]	Yinghui ZHANG, Lingyun HU, Yixin LI, Jianting NING, Dong ZHENG. Secure and efficient batch authentication scheme based on dynamic revocation mechanism in space information network [J]. Journal on Communications, 2022, 43(4): 164-176.
[6]	Changgen PENG, Zongfeng PENG, Hongfa DING, Youliang TIAN, Rongfei LIU. Attribute-based revocable collaborative access control scheme [J]. Journal on Communications, 2021, 42(5): 75-86.
[7]	Fei TANG, Jiali BAO, Yonghong HUANG, Dong HUANG, Huili WANG. Multi-authority attribute-based identification scheme [J]. Journal on Communications, 2021, 42(3): 220-228.
[8]	Jiawei ZHANG, Jianfeng MA, Zhuo MA, Teng LI. Time-based and privacy protection revocable and traceable data sharing scheme in cloud computing [J]. Journal on Communications, 2021, 42(10): 81-94.
[9]	Xixi YAN,Xu HE,Tao LIU,Qing YE,Jinxia YU,Yongli TANG. Traceable attribute-based encryption scheme with key-delegation abuse resistance [J]. Journal on Communications, 2020, 41(4): 150-161.
[10]	Xixi YAN,Xiaohan YUAN,Yongli TANG,Yanli CHEN. Verifiable attribute-based searchable encryption scheme based on blockchain [J]. Journal on Communications, 2020, 41(2): 187-198.
[11]	LI Xuejun,ZHANG Dan,LI Hui. Efficient revocable attribute-based encryption scheme [J]. Journal on Communications, 2019, 40(6): 32-39.
[12]	FENG Chaosheng,LUO Wangping,QIN Zhiguang,YUAN Ding,ZOU Liping. Attribute-based proxy re-encryption scheme with multiple features [J]. Journal on Communications, 2019, 40(6): 177-189.
[13]	Lei SUN,Zhiyuan ZHAO,Jianhua WANG,Zhiqiang ZHU. Attribute-based encryption scheme supporting attribute revocation in cloud storage environment [J]. Journal on Communications, 2019, 40(5): 47-56.
[14]	Xiaodong YANG,Yutong LI,Jinli WANG,Tingchun MA,Caifen WANG. Revocable identity-based proxy re-signature scheme in the standard model [J]. Journal on Communications, 2019, 40(5): 153-162.
[15]	Youliang TIAN,Kedi YANG,Zuan WANG,Tao FENG. Algorithm of blockchain data provenance based on ABE [J]. Journal on Communications, 2019, 40(11): 101-111.