EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud

It is widely acknowledged that the collaborations with more users increase productivity. Secure cloud storage is a promising tool to enhance such a collaboration. Access control system can be enabled with attribute-based encryption. In this system, a user encrypts and uploads his/her data to the clo...

Full description

Saved in:
Bibliographic Details
Main Authors: SUSILO, Willy, JIANG, Peng, GUO, Fuchun, YANG, Guomin, YU, Yong, MU, Yi
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2017
Subjects:
Online Access:https://ink.library.smu.edu.sg/sis_research/7426
https://ink.library.smu.edu.sg/context/sis_research/article/8429/viewcontent/EACSIP_Extendable_Access_Control_System_With_Integrity_Protection_for_Enhancing_Collaboration_in_the_Cloud.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-8429
record_format dspace
spelling sg-smu-ink.sis_research-84292022-11-02T06:37:09Z EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud SUSILO, Willy JIANG, Peng GUO, Fuchun YANG, Guomin YU, Yong MU, Yi It is widely acknowledged that the collaborations with more users increase productivity. Secure cloud storage is a promising tool to enhance such a collaboration. Access control system can be enabled with attribute-based encryption. In this system, a user encrypts and uploads his/her data to the cloud with an access policy, such that only people who satisfy that access policy can decrypt the data. When a recipient would like to enable another person who is originally unauthorized by the original access policy, this recipient will need to extend the access policy by adding a new policy that includes the new person hence, the notion of extendable access control system. Admitting new users to access the uploaded data is an important requirement in enhancing collaborations. The main issue is with regards to the integrity protection during the process of extending the access policy. When a new access policy is added, the cloud has to be sure that the extended access policy remains guarding the same encrypted data as the original access policy, even though the cloud cannot decrypt this ciphertext, which is a challenging problem to solve. In this paper, we answer the above problem affirmatively by introducing an extendable access control system with Integrity Protection (EACSIP), which is suitable to enhance collaboration in the cloud. The construction of EACSIP is built on top of a novel cryptographic primitive, namely functional key encapsulation with equality testing. The security proof and the performance evaluation of EACSIP are provided in this paper. 2017-12-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/7426 info:doi/10.1109/TIFS.2017.2737960 https://ink.library.smu.edu.sg/context/sis_research/article/8429/viewcontent/EACSIP_Extendable_Access_Control_System_With_Integrity_Protection_for_Enhancing_Collaboration_in_the_Cloud.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University cloud storage equality test Extendable access control integrity protection Information Security
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic cloud storage
equality test
Extendable access control
integrity protection
Information Security
spellingShingle cloud storage
equality test
Extendable access control
integrity protection
Information Security
SUSILO, Willy
JIANG, Peng
GUO, Fuchun
YANG, Guomin
YU, Yong
MU, Yi
EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud
description It is widely acknowledged that the collaborations with more users increase productivity. Secure cloud storage is a promising tool to enhance such a collaboration. Access control system can be enabled with attribute-based encryption. In this system, a user encrypts and uploads his/her data to the cloud with an access policy, such that only people who satisfy that access policy can decrypt the data. When a recipient would like to enable another person who is originally unauthorized by the original access policy, this recipient will need to extend the access policy by adding a new policy that includes the new person hence, the notion of extendable access control system. Admitting new users to access the uploaded data is an important requirement in enhancing collaborations. The main issue is with regards to the integrity protection during the process of extending the access policy. When a new access policy is added, the cloud has to be sure that the extended access policy remains guarding the same encrypted data as the original access policy, even though the cloud cannot decrypt this ciphertext, which is a challenging problem to solve. In this paper, we answer the above problem affirmatively by introducing an extendable access control system with Integrity Protection (EACSIP), which is suitable to enhance collaboration in the cloud. The construction of EACSIP is built on top of a novel cryptographic primitive, namely functional key encapsulation with equality testing. The security proof and the performance evaluation of EACSIP are provided in this paper.
format text
author SUSILO, Willy
JIANG, Peng
GUO, Fuchun
YANG, Guomin
YU, Yong
MU, Yi
author_facet SUSILO, Willy
JIANG, Peng
GUO, Fuchun
YANG, Guomin
YU, Yong
MU, Yi
author_sort SUSILO, Willy
title EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud
title_short EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud
title_full EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud
title_fullStr EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud
title_full_unstemmed EACSIP: Extendable Access Control System with Integrity Protection for enhancing collaboration in the cloud
title_sort eacsip: extendable access control system with integrity protection for enhancing collaboration in the cloud
publisher Institutional Knowledge at Singapore Management University
publishDate 2017
url https://ink.library.smu.edu.sg/sis_research/7426
https://ink.library.smu.edu.sg/context/sis_research/article/8429/viewcontent/EACSIP_Extendable_Access_Control_System_With_Integrity_Protection_for_Enhancing_Collaboration_in_the_Cloud.pdf
_version_ 1770576337364320256