Attribute-Based Access Control with Efficient Revocation in Data Outsourcing Systems

Some of the most challenging issues in data outsourcing scenario are the enforcement of authorization policies and the support of policy updates. Ciphertext-policy attribute-based encryption is a promising cryptographic solution to these issues for enforcing access control policies defined by a data...

Full description

Saved in:
Bibliographic Details
Published in:IEEE transactions on parallel and distributed systems 2011-07, Vol.22 (7), p.1214-1221
Main Authors: Hur, Junbeom, Noh, Dong Kun
Format: Article
Language:English
Subjects:
Access control
Architecture
attribute-based encryption
ciphertext policy
Computer networks
Cryptography
Data outsourcing
Encryption
Outsourcing
Policies
Polynomials
revocation
Servers
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Some of the most challenging issues in data outsourcing scenario are the enforcement of authorization policies and the support of policy updates. Ciphertext-policy attribute-based encryption is a promising cryptographic solution to these issues for enforcing access control policies defined by a data owner on outsourced data. However, the problem of applying the attribute-based encryption in an outsourced architecture introduces several challenges with regard to the attribute and user revocation. In this paper, we propose an access control mechanism using ciphertext-policy attribute-based encryption to enforce access control policies with efficient attribute and user revocation capability. The fine-grained access control can be achieved by dual encryption mechanism which takes advantage of the attribute-based encryption and selective group key distribution in each attribute group. We demonstrate how to apply the proposed mechanism to securely manage the outsourced data. The analysis results indicate that the proposed scheme is efficient and secure in the data outsourcing systems.
ISSN:1045-9219
1558-2183
DOI:10.1109/TPDS.2010.203