Detailed Information

Cited 0 time in webofscience Cited 221 time in scopus
Metadata Downloads

Ensuring attribute privacy protection and fast decryption for outsourced data security in mobile cloud computing

Authors
Zhang, YinghuiChen, XiaofengLi, JinWong, Duncan S.Li, HuiYou, Ilsun
Issue Date
10-Feb-2017
Publisher
Elsevier BV
Keywords
Cloud computing; Attribute-based encryption; Privacy protection; Anonymity; Fast decryption
Citation
Information Sciences, v.379, pp 42 - 61
Pages
20
Journal Title
Information Sciences
Volume
379
Start Page
42
End Page
61
URI
https://scholarworks.bwise.kr/sch/handle/2021.sw.sch/7786
DOI
10.1016/j.ins.2016.04.015
ISSN
0020-0255
1872-6291
Abstract
Although many users outsource their various data to clouds, data security and privacy concerns are still the biggest obstacles that hamper the widespread adoption of cloud computing. Anonymous attribute-based encryption (anonymous ABE) enables fine-grained access control over cloud storage and preserves receivers' attribute privacy by hiding attribute information in ciphertexts. However, in existing anonymous ABE work, a user knows whether attributes and a hidden policy match or not only after repeating decryption attempts. And, each decryption usually requires many pairings and the computation overhead grows with the complexity of the access formula. Hence, existing schemes suffer a severe efficiency drawback and are not suitable for mobile cloud computing where users may be resource-constrained. In this paper, we propose a novel technique called match-then-decrypt, in which a matching phase is additionally introduced before the decryption phase. This technique works by computing special components in ciphertexts, which are used to perform the test that if the attribute private key matches the hidden access policy in ciphertexts without decryption. For the sake of fast decryption, special attribute secret key components are generated which allow aggregation of pairings during decryption. We propose a basic anonymous ABE construction, and then obtain a security-enhanced extension based on strongly existentially unforgeable one-time signatures. In the proposed constructions, the computation cost of an attribute matching test is less than one decryption operation, which only needs small and constant number of pairings. Formal security analysis and performance comparisons indicate that the proposed solutions simultaneously ensure attribute privacy and improve decryption efficiency for outsourced data storage in mobile cloud computing. (C) 2016 Elsevier Inc. All rights reserved.
Files in This Item
There are no files associated with this item.
Appears in
Collections
College of Engineering > Department of Information Security Engineering > 1. Journal Articles

qrcode

Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.

Altmetrics

Total Views & Downloads

BROWSE