EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud
It is widely acknowledged that the collaborations with more users increase productivity. Secure cloud storage is a promising tool to enhance such a collaboration. Access control system can be enabled with attribute-based encryption. In this system, a user encrypts and uploads his/her data to the clo...
Saved in:
Main Authors: | , , , , , |
---|---|
Format: | text |
Language: | English |
Published: |
Institutional Knowledge at Singapore Management University
2017
|
Subjects: | |
Online Access: | https://ink.library.smu.edu.sg/sis_research/7426 https://ink.library.smu.edu.sg/context/sis_research/article/8429/viewcontent/EACSIP_Extendable_Access_Control_System_With_Integrity_Protection_for_Enhancing_Collaboration_in_the_Cloud.pdf |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Institution: | Singapore Management University |
Language: | English |
id |
sg-smu-ink.sis_research-8429 |
---|---|
record_format |
dspace |
spelling |
sg-smu-ink.sis_research-84292022-11-02T06:37:09Z EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud SUSILO, Willy JIANG, Peng GUO, Fuchun YANG, Guomin YU, Yong MU, Yi It is widely acknowledged that the collaborations with more users increase productivity. Secure cloud storage is a promising tool to enhance such a collaboration. Access control system can be enabled with attribute-based encryption. In this system, a user encrypts and uploads his/her data to the cloud with an access policy, such that only people who satisfy that access policy can decrypt the data. When a recipient would like to enable another person who is originally unauthorized by the original access policy, this recipient will need to extend the access policy by adding a new policy that includes the new person hence, the notion of extendable access control system. Admitting new users to access the uploaded data is an important requirement in enhancing collaborations. The main issue is with regards to the integrity protection during the process of extending the access policy. When a new access policy is added, the cloud has to be sure that the extended access policy remains guarding the same encrypted data as the original access policy, even though the cloud cannot decrypt this ciphertext, which is a challenging problem to solve. In this paper, we answer the above problem affirmatively by introducing an extendable access control system with Integrity Protection (EACSIP), which is suitable to enhance collaboration in the cloud. The construction of EACSIP is built on top of a novel cryptographic primitive, namely functional key encapsulation with equality testing. The security proof and the performance evaluation of EACSIP are provided in this paper. 2017-12-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/7426 info:doi/10.1109/TIFS.2017.2737960 https://ink.library.smu.edu.sg/context/sis_research/article/8429/viewcontent/EACSIP_Extendable_Access_Control_System_With_Integrity_Protection_for_Enhancing_Collaboration_in_the_Cloud.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University cloud storage equality test Extendable access control integrity protection Information Security |
institution |
Singapore Management University |
building |
SMU Libraries |
continent |
Asia |
country |
Singapore Singapore |
content_provider |
SMU Libraries |
collection |
InK@SMU |
language |
English |
topic |
cloud storage equality test Extendable access control integrity protection Information Security |
spellingShingle |
cloud storage equality test Extendable access control integrity protection Information Security SUSILO, Willy JIANG, Peng GUO, Fuchun YANG, Guomin YU, Yong MU, Yi EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud |
description |
It is widely acknowledged that the collaborations with more users increase productivity. Secure cloud storage is a promising tool to enhance such a collaboration. Access control system can be enabled with attribute-based encryption. In this system, a user encrypts and uploads his/her data to the cloud with an access policy, such that only people who satisfy that access policy can decrypt the data. When a recipient would like to enable another person who is originally unauthorized by the original access policy, this recipient will need to extend the access policy by adding a new policy that includes the new person hence, the notion of extendable access control system. Admitting new users to access the uploaded data is an important requirement in enhancing collaborations. The main issue is with regards to the integrity protection during the process of extending the access policy. When a new access policy is added, the cloud has to be sure that the extended access policy remains guarding the same encrypted data as the original access policy, even though the cloud cannot decrypt this ciphertext, which is a challenging problem to solve. In this paper, we answer the above problem affirmatively by introducing an extendable access control system with Integrity Protection (EACSIP), which is suitable to enhance collaboration in the cloud. The construction of EACSIP is built on top of a novel cryptographic primitive, namely functional key encapsulation with equality testing. The security proof and the performance evaluation of EACSIP are provided in this paper. |
format |
text |
author |
SUSILO, Willy JIANG, Peng GUO, Fuchun YANG, Guomin YU, Yong MU, Yi |
author_facet |
SUSILO, Willy JIANG, Peng GUO, Fuchun YANG, Guomin YU, Yong MU, Yi |
author_sort |
SUSILO, Willy |
title |
EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud |
title_short |
EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud |
title_full |
EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud |
title_fullStr |
EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud |
title_full_unstemmed |
EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud |
title_sort |
eacsip: extendable access control system with integrity protection for enhancing collaboration in the cloud |
publisher |
Institutional Knowledge at Singapore Management University |
publishDate |
2017 |
url |
https://ink.library.smu.edu.sg/sis_research/7426 https://ink.library.smu.edu.sg/context/sis_research/article/8429/viewcontent/EACSIP_Extendable_Access_Control_System_With_Integrity_Protection_for_Enhancing_Collaboration_in_the_Cloud.pdf |
_version_ |
1770576337364320256 |