An adaptive secure and practical data sharing system with verifiable outsourced decryption

Cloud computing is the widespread acceptance of a promising paradigm offering a substantial amount of storage and data services on demand. To preserve data confidentiality, many cryptosystems have been introduced. However, current solutions are incompatible with the resource-constrained end-devices...

Full description

Saved in:
Bibliographic Details
Main Authors: XU, Shengmin, HAN, Xingshuo, XU, Guowen, NING, Jianting, HUANG, Xinyi, DENG, Robert H.
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2024
Subjects:
Online Access:https://ink.library.smu.edu.sg/sis_research/8965
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-9968
record_format dspace
spelling sg-smu-ink.sis_research-99682024-07-17T05:48:03Z An adaptive secure and practical data sharing system with verifiable outsourced decryption XU, Shengmin HAN, Xingshuo XU, Guowen NING, Jianting HUANG, Xinyi DENG, Robert H. Cloud computing is the widespread acceptance of a promising paradigm offering a substantial amount of storage and data services on demand. To preserve data confidentiality, many cryptosystems have been introduced. However, current solutions are incompatible with the resource-constrained end-devices because of a variety of vulnerabilities in terms of practicality and security. In this article, we propose a practical and secure data-sharing system by introducing a new design of attribute-based encryption with verifiable outsourced decryption-attribute-based encryption (VO-ABE for short). Our system offers: (1) data sharing at a fine-grained level; (2) a scalable key issuing protocol without any secure channel; (3) a verifiable outsourced decryption mechanism for resource-constrained end-devices against the malicious cloud service provider; and (4) adaptive security against the real-world attacks. To formalize our solution with cryptographic analysis, we present the formal definition of VO-ABE and its concrete construction with provable security. In particular, our design leverages the techniques of the traditional ABE, verifiable outsourced decryption, and randomness extractor to support fine-grained access control, cost-effective data sharing, and security assurance with high entropy. Moreover, our design is provably secure in the adaptive model under the standard assumption, which offers a stronger security guarantee since the state-of-the-art solution is selectively secure under the non-standard assumption and suffers from a variety of real-world attacks. The implementation and evaluation demonstrate that our solution enjoys superior functionality and better performance than the relevant solutions. More importantly, our solution is compatible with the resource-constrained end-devices since the decryption mechanism takes around 1.1 ms and is 22.7x faster than the state-of-the-art solution. 2024-06-30T07:00:00Z text https://ink.library.smu.edu.sg/sis_research/8965 info:doi/10.1109/TSC.2023.3321314 Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Security Access control Standards Encryption Data models Adaptive systems Cloud computing Adaptive security fine-grained access control verifiable outsourced decryption Information Security
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic Security
Access control
Standards
Encryption
Data models
Adaptive systems
Cloud computing
Adaptive security
fine-grained access control
verifiable outsourced decryption
Information Security
spellingShingle Security
Access control
Standards
Encryption
Data models
Adaptive systems
Cloud computing
Adaptive security
fine-grained access control
verifiable outsourced decryption
Information Security
XU, Shengmin
HAN, Xingshuo
XU, Guowen
NING, Jianting
HUANG, Xinyi
DENG, Robert H.
An adaptive secure and practical data sharing system with verifiable outsourced decryption
description Cloud computing is the widespread acceptance of a promising paradigm offering a substantial amount of storage and data services on demand. To preserve data confidentiality, many cryptosystems have been introduced. However, current solutions are incompatible with the resource-constrained end-devices because of a variety of vulnerabilities in terms of practicality and security. In this article, we propose a practical and secure data-sharing system by introducing a new design of attribute-based encryption with verifiable outsourced decryption-attribute-based encryption (VO-ABE for short). Our system offers: (1) data sharing at a fine-grained level; (2) a scalable key issuing protocol without any secure channel; (3) a verifiable outsourced decryption mechanism for resource-constrained end-devices against the malicious cloud service provider; and (4) adaptive security against the real-world attacks. To formalize our solution with cryptographic analysis, we present the formal definition of VO-ABE and its concrete construction with provable security. In particular, our design leverages the techniques of the traditional ABE, verifiable outsourced decryption, and randomness extractor to support fine-grained access control, cost-effective data sharing, and security assurance with high entropy. Moreover, our design is provably secure in the adaptive model under the standard assumption, which offers a stronger security guarantee since the state-of-the-art solution is selectively secure under the non-standard assumption and suffers from a variety of real-world attacks. The implementation and evaluation demonstrate that our solution enjoys superior functionality and better performance than the relevant solutions. More importantly, our solution is compatible with the resource-constrained end-devices since the decryption mechanism takes around 1.1 ms and is 22.7x faster than the state-of-the-art solution.
format text
author XU, Shengmin
HAN, Xingshuo
XU, Guowen
NING, Jianting
HUANG, Xinyi
DENG, Robert H.
author_facet XU, Shengmin
HAN, Xingshuo
XU, Guowen
NING, Jianting
HUANG, Xinyi
DENG, Robert H.
author_sort XU, Shengmin
title An adaptive secure and practical data sharing system with verifiable outsourced decryption
title_short An adaptive secure and practical data sharing system with verifiable outsourced decryption
title_full An adaptive secure and practical data sharing system with verifiable outsourced decryption
title_fullStr An adaptive secure and practical data sharing system with verifiable outsourced decryption
title_full_unstemmed An adaptive secure and practical data sharing system with verifiable outsourced decryption
title_sort adaptive secure and practical data sharing system with verifiable outsourced decryption
publisher Institutional Knowledge at Singapore Management University
publishDate 2024
url https://ink.library.smu.edu.sg/sis_research/8965
_version_ 1814047659684528128