An adaptive secure and practical data sharing system with verifiable outsourced decryption
Cloud computing is the widespread acceptance of a promising paradigm offering a substantial amount of storage and data services on demand. To preserve data confidentiality, many cryptosystems have been introduced. However, current solutions are incompatible with the resource-constrained end-devices...
Saved in:
Main Authors: | , , , , , |
---|---|
Format: | text |
Language: | English |
Published: |
Institutional Knowledge at Singapore Management University
2024
|
Subjects: | |
Online Access: | https://ink.library.smu.edu.sg/sis_research/8965 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Institution: | Singapore Management University |
Language: | English |
id |
sg-smu-ink.sis_research-9968 |
---|---|
record_format |
dspace |
spelling |
sg-smu-ink.sis_research-99682024-07-17T05:48:03Z An adaptive secure and practical data sharing system with verifiable outsourced decryption XU, Shengmin HAN, Xingshuo XU, Guowen NING, Jianting HUANG, Xinyi DENG, Robert H. Cloud computing is the widespread acceptance of a promising paradigm offering a substantial amount of storage and data services on demand. To preserve data confidentiality, many cryptosystems have been introduced. However, current solutions are incompatible with the resource-constrained end-devices because of a variety of vulnerabilities in terms of practicality and security. In this article, we propose a practical and secure data-sharing system by introducing a new design of attribute-based encryption with verifiable outsourced decryption-attribute-based encryption (VO-ABE for short). Our system offers: (1) data sharing at a fine-grained level; (2) a scalable key issuing protocol without any secure channel; (3) a verifiable outsourced decryption mechanism for resource-constrained end-devices against the malicious cloud service provider; and (4) adaptive security against the real-world attacks. To formalize our solution with cryptographic analysis, we present the formal definition of VO-ABE and its concrete construction with provable security. In particular, our design leverages the techniques of the traditional ABE, verifiable outsourced decryption, and randomness extractor to support fine-grained access control, cost-effective data sharing, and security assurance with high entropy. Moreover, our design is provably secure in the adaptive model under the standard assumption, which offers a stronger security guarantee since the state-of-the-art solution is selectively secure under the non-standard assumption and suffers from a variety of real-world attacks. The implementation and evaluation demonstrate that our solution enjoys superior functionality and better performance than the relevant solutions. More importantly, our solution is compatible with the resource-constrained end-devices since the decryption mechanism takes around 1.1 ms and is 22.7x faster than the state-of-the-art solution. 2024-06-30T07:00:00Z text https://ink.library.smu.edu.sg/sis_research/8965 info:doi/10.1109/TSC.2023.3321314 Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Security Access control Standards Encryption Data models Adaptive systems Cloud computing Adaptive security fine-grained access control verifiable outsourced decryption Information Security |
institution |
Singapore Management University |
building |
SMU Libraries |
continent |
Asia |
country |
Singapore Singapore |
content_provider |
SMU Libraries |
collection |
InK@SMU |
language |
English |
topic |
Security Access control Standards Encryption Data models Adaptive systems Cloud computing Adaptive security fine-grained access control verifiable outsourced decryption Information Security |
spellingShingle |
Security Access control Standards Encryption Data models Adaptive systems Cloud computing Adaptive security fine-grained access control verifiable outsourced decryption Information Security XU, Shengmin HAN, Xingshuo XU, Guowen NING, Jianting HUANG, Xinyi DENG, Robert H. An adaptive secure and practical data sharing system with verifiable outsourced decryption |
description |
Cloud computing is the widespread acceptance of a promising paradigm offering a substantial amount of storage and data services on demand. To preserve data confidentiality, many cryptosystems have been introduced. However, current solutions are incompatible with the resource-constrained end-devices because of a variety of vulnerabilities in terms of practicality and security. In this article, we propose a practical and secure data-sharing system by introducing a new design of attribute-based encryption with verifiable outsourced decryption-attribute-based encryption (VO-ABE for short). Our system offers: (1) data sharing at a fine-grained level; (2) a scalable key issuing protocol without any secure channel; (3) a verifiable outsourced decryption mechanism for resource-constrained end-devices against the malicious cloud service provider; and (4) adaptive security against the real-world attacks. To formalize our solution with cryptographic analysis, we present the formal definition of VO-ABE and its concrete construction with provable security. In particular, our design leverages the techniques of the traditional ABE, verifiable outsourced decryption, and randomness extractor to support fine-grained access control, cost-effective data sharing, and security assurance with high entropy. Moreover, our design is provably secure in the adaptive model under the standard assumption, which offers a stronger security guarantee since the state-of-the-art solution is selectively secure under the non-standard assumption and suffers from a variety of real-world attacks. The implementation and evaluation demonstrate that our solution enjoys superior functionality and better performance than the relevant solutions. More importantly, our solution is compatible with the resource-constrained end-devices since the decryption mechanism takes around 1.1 ms and is 22.7x faster than the state-of-the-art solution. |
format |
text |
author |
XU, Shengmin HAN, Xingshuo XU, Guowen NING, Jianting HUANG, Xinyi DENG, Robert H. |
author_facet |
XU, Shengmin HAN, Xingshuo XU, Guowen NING, Jianting HUANG, Xinyi DENG, Robert H. |
author_sort |
XU, Shengmin |
title |
An adaptive secure and practical data sharing system with verifiable outsourced decryption |
title_short |
An adaptive secure and practical data sharing system with verifiable outsourced decryption |
title_full |
An adaptive secure and practical data sharing system with verifiable outsourced decryption |
title_fullStr |
An adaptive secure and practical data sharing system with verifiable outsourced decryption |
title_full_unstemmed |
An adaptive secure and practical data sharing system with verifiable outsourced decryption |
title_sort |
adaptive secure and practical data sharing system with verifiable outsourced decryption |
publisher |
Institutional Knowledge at Singapore Management University |
publishDate |
2024 |
url |
https://ink.library.smu.edu.sg/sis_research/8965 |
_version_ |
1814047659684528128 |