Provably secure role-based encryption with revocation mechanism

Journal of Computer Science and Technology

Volumn 26, Issue 4, 2011, Pages 697-710

  Zhu, Yan ^a   Hu, Hong Xin ^b   Ahn, Gail Joon ^b   Wang, Huai Xi ^a   Wang, Shan Biao ^a  

^a PEKING UNIVERSITY   (China)

^b ARIZONA STATE UNIVERSITY   (United States)

Author keywords

Collusion Security; Cryptography; Revocation; Role HierarchyKey Hierarchy; Role Based Encryption

Indexed keywords

ACCESS CONTROL; CRYPTOGRAPHY; NETWORK SECURITY;

ACCESS CONTROL MECHANISM; COLLUSION SECURITY; ENCRYPTED FILE SYSTEM; PUBLIC KEY INFRASTRUCTURE; REVOCATION; REVOCATION MECHANISM; ROLE HIERARCHYKEY HIERARCHY; ROLE-BASED; CIPHERTEXTS; COLLUSION ATTACK; DECRYPTION KEYS; ENCRYPTED DATA; KEY HIERARCHY; PRIVATE-KEY; PROVABLY SECURE; RBAC MODEL; USER IDENTIFICATION;

PUBLIC KEY CRYPTOGRAPHY;

EID: 80054995027     PISSN: 10009000     EISSN: None     Source Type: Journal    
DOI: 10.1007/s11390-011-1169-9     Document Type: Conference Paper

References (41)

1. Sandhu R, Ferraiolo D F, Kuhn D R. The nist model for role-based access control: Towards a unified standard. In Proc. The 5th ACM Workshop on Role Based Access Control (RBAC), Berlin, Germany, Jul. 26-27, 2000, pp.47-63.
2. Li Q, Zhang X W, Xu M W, Wu J P. Towards secure dynamic collaborations with group-based RBAC model. Computers &Security, 2009, 28(5): 260-275.
3. Shafiq B, Joshi J, Bertino E, Ghafoor A. Secure interoper-ation in a multidomain environment employing RBAC poli-cies. IEEE Transactions on Knowledge and Data Engineer-ing, 2005, 17(11): 1557-1577.
4. Zhu Y, Ahn G J, Hu H X, Wang H X. Cryptographic role-based security mechanisms based on role-key hierarchy. In Proc. The 5th ACM Symposium on Information, Computer and Communications Security (ASIACCS), Beijing, China, Apr. 13-16, 2010, pp.314-319.
5. Akl S G, Taylor P D. Cryptographic solution to a prob-lem of access control in a hierarchy. ACM Transactions on Computer System, 1983, 1(3): 239-248.
6. Akl S G, Taylor P D. Cryptographic solution to a multi-level security problem. In Proc. Advances in Cryptology: CRYPTO, Santa Barbara, USA, 1982, pp.237-249.
7. Wallner D M, Harder E G, Agee R C. Key management for multicast: Issues and architecture. Internet Draft, draft-waller-key-arch-01.txt, 1998.
8. Wong C K, Gouda M, Lam S S. Secure group communications using key graphs. In Proc. The Annual Conference of the As-sociation for Computing Machinery's Special Interest Group on Data Communication (SIGCOMM), Vancouver, Canada, Sept. 2-4, 1998, 28, pp.68-79.
9. Asano T. Reducing receiver's storage in CS, SD and LSD broadcast encryption schemes. IEICE Transactions on Fun-damentals of Electronics, Communications and Computer Sciences, 2005, 88(1): 203-210.
10. Naor D, Naor M, Lotspiech J. Revocation and tracing schemes for stateless receivers. In Proc. The 21st Annual Interna-tional Cryptology Conference (CRYPTO), Santa Barbara, USA, Aug. 19-23, 2001, pp.41-62.
11. Halevy D, Shamir A. The LSD broadcast encryption scheme. In Proc. The 22nd International Cryptology Conference (Crypto), Santa Barbara, USA, Aug. 18-22, 2002, pp.47-60.
12. Boneh D, Franklin M. Identity-based encryption from the weil pairing. In Proc. The 21st Annual International Cryptology Conference (CRYPTO), Santa Barbara, USA, Aug. 19-23, 2001, pp.213-229.
13. Yuen T H, Susilo W, Mu Y. How to construct identity-based signatures without the key escrow problem. International Journal of Information Security, 2010, 9(4): 297-311.
14. Gentry C, Silverberg A. Hierarchical ID based cryptogra-phy. In Proc. The 8th International Conference on the The-ory and Application of Cryptology and Information Security (ASIACRYPT), Queenstown, New Zealand, Dec. 1-5, 2002, pp.548-566.
15. Tzeng W G. A time-bound cryptographic key assignment scheme for access control in a hierarchy. IEEE Transactions on Knowledge and Data Engineering, 2002, 14(1): 182-188.
16. Sahai A, Waters B. Fuzzy identity-based encryption. In Proc. The 24th Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT), Aarhus, Denmark, May 22-26, 2005, pp.457-473.
17. Goyal V, Pandey O, Sahai A, Waters B. Attribute-based en-cryption for fine-grained access control of encrypted data. In Proc. The 13th ACM Conference on Computer and Commu-nications Security (CCS), Alexandria, USA, Oct. 30-Nov. 3, 2006, pp.89-98.
18. Ostrovsky R, Sahai A, Waters B. Attribute-based encryption with non-monotonic access structures. In Proc. The 14th ACM Conference on Computer and Communications Secu-rity (CCS), Alexandria, USA, Oct. 28-31, 2007, pp.195-203.
19. Chase M. Multi-authority attribute based encryption. In Proc. The 4th Theory of Cryptography Conference (TCC), Amsterdam, The Netherlands, Feb. 21-24, 2007, pp.515-534.
20. Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute-based encryption. In Proc. 2007 IEEE Symposium on Security and Privacy (S&P), Oakland, USA, May 20-23, 2007, pp.321-334.
21. Waters B. Ciphertext-policy attribute-based encryption: An expressive, efficient, and provably secure realiza-tion. Cryptology ePrint Archive, Report 2008/290, 2008, http://eprint.iacr.org/.
22. Goyal V, Jain A, Pandey O, Sahai A. Bounded ciphertext policy attribute based encryption. In Proc. The 35th In-ternational Colloquium on Automata, Languages and Pro-gramming, Part II | Track B: Logic, Semantics, and The-ory of Programming &Track C: Security and Cryptography Foundations (ICALP(2)), Reykjavik, Iceland, Jul. 7-11, 2008, pp.579-591.
23. Ibraimi L, Tang Q, Hartel P H, Jonker W. Efficient and provable secure ciphertext-policy attribute-based encryption schemes. In Proc. The 5th International Conference on In-formation Security Practice and Experience (ISPEC), Xi'an, China, Apr. 13-15, 2009, pp.1-12.
24. Attrapadung N, Imai H. Dual-policy attribute based encryp-tion. In Proc. The 7th International Conference on Applied Cryptography and Network Security (ACNS), Paris, France, Jun. 2-5, 2009, pp.168-185.
25. Attrapadung N, Imai H. Dual-policy attribute based encryp-tion: Simultaneous access control with ciphertext and key policies. IEICE Transactions on Fundamentals of Electron-ics, Communications and Computer Sciences, 2010, E93-A(1): 116-125.
26. Wang L Y, Wijesekera D, Jajodia S. A logic-based frame-work for attribute based access control. In Proc. The 2004 ACM Workshop on Formal Methods in Security Engineering (FMSE), Washington DC, USA, Oct. 29, 2004, pp.45-55.
27. Frikken K B, Atallah M J, Li J T. Attribute-based access control with hidden policies and hidden credentials. IEEE Transaction on Computers, 2006, 55(10): 1259-1270.
28. Schoinas I, Falsafi B, Lebeck A R, Reinhardt S K, Larus J R, Wood D A. Fine-grain access control for distributed shared memory. In Proc. The 6th International Conference on Archi-tectural Support for Programming Languages and Operating Systems (ASPLOS), San Jose, USA, Oct. 4-7, 1994, pp.297-306.
29. Damiani E, Vimercati S D C D, Paraboschi S, Samarati P. A fine-grained access control system for xml documents. ACM Transactions on Information and System Security, 2002, 5(2): 169-202.
30. Shahandashti S F, Naini R S. Threshold attribute-based sig-natures and their application to anonymous credential sys-tems. In Proc. The 2nd International Conference on Cryp-tology in Africa (AFRICACRYPT), Gammarth, Tunisia, Jun. 21-25, 2009, pp.198-216.
31. Maji H, Prabhakaran M, Rosulek M. Attribute-based signatures: Achieving attribute-privacy and collusion-resistance. Cryptology ePrint Archive, Report 2008/328, 2008, http://eprint.iacr.org/.
32. Wang H X, Zhu Y, Feng R Q. Attribute-based signature with policy-and-endorsement mechanism. Journal of Computer Science and Technology, 2010, 25(6): 1293-1304.
33. Attrapadung N, Imai H. Attribute-based encryption support-ing direct/indirect revocation modes. In Proc. The 12th IMA International Conference on Cryptography and Coding, Cirencester, UK, Dec. 15-17, 2009, pp.278-300.
34. Boneh D, Boyen X, Goh E J. Hierarchical identity based en-cryption with constant size ciphertext. In Proc. The 24th Annual International Conference on the Theory and Applica-tions of Cryptographic Techniques (EUROCRYPT), Aarhus, Denmark, May 22-26, 2005, pp.440-456.
35. Boneh D, Gentry C, Waters B. Collusion resistant broad-cast encryption with short ciphertexts and private keys. In Proc. The 25th Annual International Cryptology Conference (CRYPTO), Santa Barbara, USA, Aug. 14-18, 2005, pp.258-275.
36. Toahchoodee M, Xie X, Ray I. Towards trustworthy delega-tion in role-based access control model. In Proc. The 12th In-ternational Conference on Information Security (ISC), Pisa, Italy, Sept. 7-9, 2009, pp.379-394.
37. Microsoft Corporation. How encrypting file system works. Microsoft TechNet Report, 2009, http://technet.mi-crosoft.com/en-us/library/cc781588(WS. 10).aspx.
38. SEC1. Standards for efficient cryptograhy group: Elliptic curve cryptography, Version 1.0, 2000.
39. SEC2. Standards for efficient cryptograhy group: Recom-mended elliptic curve domain parameters, Version 1.0, 2000.
40. Su D, Lv K W. A new hard-core predicate of paillier's trap-door function. In Proc. The 10th International Conference on Cryptology in India (INDOCRYPT), New Delhi, India, Dec. 13-16, 2009, pp.263-271.
41. Schultz E E. Windows 2000 security: A postmortem analysis. Network Security, 2004, 2004(1): 6-9.