Ciphertext-policy attribute-based encryption against key-delegation abuse in fog computing

Future Generation Computer Systems

Volumn 78, Issue , 2018, Pages 720-729

  Jiang, Yinhao ^a   Susilo, Willy ^a   Mu, Yi ^a   Guo, Fuchun ^a  

^a UNIVERSITY OF WOLLONGONG   (Australia)

Author keywords

Attribute based encryption; Ciphertext policy; Fog computing; Key delegation abuse

Indexed keywords

ACCESS CONTROL; AUTHENTICATION; FOG; SECURITY OF DATA;

ACCESS CONTROL POLICIES; ATTRIBUTE-BASED ENCRYPTIONS; AUTHENTICATION AND AUTHORIZATION; CIPHERTEXT POLICIES; CIPHERTEXT-POLICY ATTRIBUTE-BASED ENCRYPTIONS; DYNAMIC INFORMATION; KEY-DELEGATION ABUSE; SECURITY REQUIREMENTS;

CRYPTOGRAPHY;

EID: 85011878988     PISSN: 0167739X     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.future.2017.01.026     Document Type: Article

References (49)

1. Jiang, Y., Susilo, W., Mu, Y., Guo, F., Ciphertext-policy attribute-based encryption with key-delegation abuse resistance. Australasian Conference on Information Security and Privacy, 2016, Springer, 477–494.
2. F. Bonomi, Connected vehicles, the Internet of things, and fog computing, in: The Eighth ACM International Workshop on Vehicular Inter-Networking, VANET, Las Vegas, USA, 2011, pp. 13–15.
3. Quick, D., Martini, B., Choo, R., Cloud storage forensics. Syngress, 2013.
4. Ab Rahman, N.H., Cahyani, N.D.W., Choo, K.-K.R., Cloud incident handling and forensic-by-design: cloud storage as a case study. Concurr. Comput.: Pract. Exper., 2016.
5. N.D.W. Cahyani, B. Martini, K.-K.R. Choo, A. Al-Azhar, Forensic data acquisition from cloud-of-things devices: windows Smartphones as a case study, Concurr. Comput.: Pract. Exper.
6. C.J. DOrazio, K.-K.R. Choo, L.T. Yang, Data Exfiltration from Internet of Things Devices: iOS Devices as Case Studies.
7. Leom, M.D., Choo, K.-K.R., Hunt, R., Remote wiping and secure deletion on mobile devices: a review. J. Forensic Sci. 61:6 (2016), 1473–1492.
8. Do, Q., Martini, B., Choo, K.-K.R., A cloud-focused mobile forensics methodology. IEEE Cloud Comput. 2:4 (2015), 60–65.
9. Martini, B., Choo, K.-K.R., Distributed filesystem forensics: XtreemFS as a case study. Digit. Investig. 11:4 (2014), 295–313.
10. Martini, B., Choo, K.-K.R., Remote programmatic vCloud forensics: a six-step collection process and a proof of concept. 2014 IEEE 13th International Conference on Trust, Security and Privacy in Computing and Communications, 2014, IEEE, 935–942.
11. Martini, B., Choo, K.-K.R., Cloud storage forensics: ownCloud as a case study. Digit. Investig. 10:4 (2013), 287–299.
12. Martini, B., Choo, K.-K.R., An integrated conceptual digital forensic framework for cloud computing. Digit. Investig. 9:2 (2012), 71–80.
13. Quick, D., Choo, K.-K.R., Impacts of increasing volume of digital forensic data: A survey and future research challenges. Digit. Investig. 11:4 (2014), 273–294.
14. Quick, D., Choo, K.-K.R., Google drive: forensic analysis of data remnants. J. Netw. Comput. Appl. 40 (2014), 179–193.
15. Quick, D., Choo, K.-K.R., Dropbox analysis: Data remnants on user machines. Digit. Investig. 10:1 (2013), 3–18.
16. Quick, D., Choo, K.-K.R., Forensic collection of cloud storage data: Does the act of collection result in changes to the data or its metadata?. Digit. Investig. 10:3 (2013), 266–277.
17. Quick, D., Choo, K.-K., Raymond, Digital droplets: Microsoft SkyDrive forensic data remnants. Future Gener. Comput. Syst. 29:6 (2013), 1378–1394.
18. Stojmenovic, I., Wen, S., The Fog computing paradigm: Scenarios and security issues. 2014 Federated Conference on Computer Science and Information Systems, (FedCSIS), 2014, IEEE, 1–8.
19. Choo, K.-K., Raymond, J., Domingo-Ferrer, Zhang, L., Cloud cryptography: Theory, practice and future research directions. Future Gener. Comput. Syst. 62 (2016), 51–53.
20. Huang, X., Xiang, Y., Bertino, E., Zhou, J., Xu, L., Robust multi-factor authentication for fragile communications. IEEE Trans. Dependable Secure Comput. 11:6 (2014), 568–581.
21. Yang, Y., Liu, J.K., Liang, K., Choo, K.-K.R., Zhou, J., Extended proxy-assisted approach: achieving revocable fine-grained encryption of cloud data. European Symposium on Research in Computer Security, 2015, Springer, 146–166.
22. Yang, Y., Zhu, H., Lu, H., Weng, J., Zhang, Y., Choo, K.-K.R., Cloud based data sharing with fine-grained proxy re-encryption. Pervasive Mob. Comput. 28 (2016), 122–134.
23. Cheung, L., Newport, C., Provably secure ciphertext policy ABE. Proceedings of the 14th ACM Conference on Computer and Communications Security, CCS’07, 2007, ACM, New York, NY, USA 978-1-59593-703-2, 456–465, 10.1145/1315245.1315302.
24. Nishide, T., Yoneyama, K., Ohta, K., Attribute-based encryption with partially hidden encryptor-specified access structures. Bellovin, S., Gennaro, R., Keromytis, A., Yung, M., (eds.) Applied Cryptography and Network Security Lecture Notes in Computer Science, vol. 5037, 2008, Springer Berlin, Heidelberg 978-3-540-68913-3, 111–129, 10.1007/978-3-540-68914-0_7.
25. V. Goyal, A. Sahai, S. Lu, B. Waters, Black Box Accountable Authority Identity-Based Encryption, 2008.
26. Hong, K., Lillethun, D., Ramachandran, U., Ottenwälder, B., Koldehofe, B., Opportunistic spatio-temporal event processing for mobile situation awareness. Proceedings of the 7th ACM International Conference on Distributed Event-Based Systems, 2013, ACM, 195–206.
27. Ottenwälder, B., Koldehofe, B., Rothermel, K., Ramachandran, U., MigCEP: operator migration for mobility driven distributed complex event processing. Proceedings of the 7th ACM International Conference on Distributed Event-Based Systems, 2013, ACM, 183–194.
28. Hong, K., Lillethun, D., Ramachandran, U., Ottenwälder, B., Koldehofe, B., Mobile fog: A programming model for large-scale applications on the Internet of things. Proceedings of the Second ACM SIGCOMM Workshop on Mobile Cloud Computing, 2013, ACM, 15–20.
29. Zhu, J., Chan, D.S., Prabhu, M.S., Natarajan, P., Hu, H., Bonomi, F., Improving web sites performance using edge servers in fog computing architecture. 2013 IEEE 7th International Symposium on Service Oriented System Engineering, (SOSE), 2013, IEEE, 320–323.
30. Madsen, H., Albeanu, G., Burtschy, B., Popentiu-Vladicescu, F., Reliability in the utility computing era: Towards reliable fog computing. 2013 20th International Conference on Systems, Signals and Image Processing, (IWSSIP), 2013, IEEE, 43–46.
31. Shamir, A., Identity-based cryptosystems and signature schemes. Blakley, G., Chaum, D., (eds.) Advances in Cryptology Lecture Notes in Computer Science, vol. 196, 1985, Springer Berlin, Heidelberg 978-3-540-15658-1, 47–53, 10.1007/3-540-39568-7_5.
32. A. Sahai, B. Waters, Fuzzy identity-based encryption, in: EUROCRYPT, 2004, pp. 457–473.
33. V. Goyal, A. Sahai, O. Pandey, B. Waters, Attribute-based encryption for fine-grained access control of encrypted data, in: Proc. of ACMCCS06 2006, pp. 89–98.
34. R. Ostrovsky, A. Sahai, B. Waters, Attribute-Based Encryption with Non-Monotonic Access Structures, 2007. Cryptology ePrint Archive, Report 2007/323, http://eprint.iacr.org/.
35. B.W. John Bethencourt, Amit Sahai, Ciphertext-Policy Attribute-Based Encryption, Security and Privacy, 2007. SP’07. IEEE Symposium on, 2007, pp. 321–334.
36. Goyal, V., Jain, A., Pandey, O., Sahai, A., Bounded ciphertext policy attribute based encryption. Halldorsson, M.M., INgolfsdottir, A., Walukiewicz, I., (eds.) ICALP 2008, Part II LNCS, vol. 5126, 2008, Springer, Heidelberg, 579–591.
37. Herranz, J., Laguillaumie, F., Ràfols, C., Constant size ciphertexts in threshold attribute-based encryption. Public Key Cryptography–PKC 2010, 2010, Springer, 19–34.
38. Delerablée, C., Pointcheval, D., Dynamic threshold public-key encryption. Advances in Cryptology–CRYPTO 2008, 2008, Springer, 317–334.
39. Jonathan Katz, B.W., Sahai, Amit, Predicate encryption supporting disjunctions, polynomial equations, and inner products. J. Cryptol. 26:2 (2013), 191–224.
40. Boneh, D., Waters, B., Conjunctive, subset, and range queries on encrypted data. Vadhan, S., (eds.) Theory of Cryptography Lecture Notes in Computer Science, vol. 4392, 2007, Springer Berlin, Heidelberg 978-3-540-70935-0, 535–554, 10.1007/978-3-540-70936-7_29.
41. Nishide, T., Yoneyama, K., OHTA, K., Attribute-based encryption with partially hidden ciphertext policies. IEICE Trans. Fundam. Electron. Commun. Comput. Sci. 09168508, 92(1), 2009, 22–32, 10.1587/transfun.E92.A.22.
42. M.J. Hinek, S. Jiang, R. Safavi-Naini, S.F. Shahandashti, Attribute-Based Encryption with Key Cloning Protection, Cryptology ePrint Archive, Report 2008/478, 2008. http://eprint.iacr.org/.
43. K.K. Jin Li, Kui Ren, A2BE: Accountable Attribute-Based Encryption for Abuse Free Access Control., IACR Cryptology ePrint Archive.
44. Li, J., Huang, Q., Chen, X., Chow, S.S.M., Wong, D.S., Xie, D., Multi-authority ciphertext-policy attribute-based encryption with Accountability. Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security, ASIACCS’11, 2011, ACM, New York, NY, USA 978-1-4503-0564-8, 386–390, 10.1145/1966913.1966964.
45. Liu, Z., Cao, Z., Wong, D.S., White-box traceable ciphertext-policy attribute-based encryption supporting any monotone access structures. Nformaon Forn Ry Ranaon on 8:1 (2013), 76–88.
46. Z. Liu, Z. Cao, D.S. Wong, Blackbox traceable CP-ABE: how to catch people leaking their keys by selling decryption devices on ebay, IACR Cryptology ePrint Archive, 2013, pp. 475–486.
47. Lewko, A., Okamoto, T., Sahai, A., Takashima, K., Waters, B., Fully secure functional encryption: attribute-based encryption and (Hierarchical) inner product encryption. Gilbert, H., (eds.) Advances in Cryptology EUROCRYPT 2010 Lecture Notes in Computer Science, vol. 6110, 2010, Springer Berlin, Heidelberg 978-3-642-13189-9, 62–91, 10.1007/978-3-642-13190-5_4.
48. Boneh, D., Franklin, M., Identity-based encryption from the Weil pairing. Advances in CryptologyCRYPTO 2001, 2001, Springer, 213–229.
49. Waters, B., Ciphertext-policy attribute-based encryption: An expressive, efficient, and provably secure realization. International Workshop on Public Key Cryptography, 2011, Springer, 53–70.