Online/offline unbounded multi‐authority attribute‐based encryption for data sharing in mobile cloud computing

In order to realize attribute‐based data sharing in cloud computing, multi‐authority attribute‐based encryption (MA‐ABE) is extremely attractive. However, most of the existing MA‐ABE schemes cannot support a fully large attribute universe and are not suitable for resource‐constrained mobile data own...

Full description

Saved in:
Bibliographic Details
Published in:Security and communication networks 2016-11, Vol.9 (16), p.3688-3702
Main Authors: Zhang, Yinghui, Zheng, Dong, Li, Qi, Li, Jin, Li, Hui
Format: Article
Language:English
Subjects:
attribute‐based encryption
Cloud computing
Communication networks
Computer information security
Data retrieval
data sharing
Encryption
Messages
Mobile computing
multi‐authority
online/offline encryption
online/offline key
unbounded universe
Universe
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In order to realize attribute‐based data sharing in cloud computing, multi‐authority attribute‐based encryption (MA‐ABE) is extremely attractive. However, most of the existing MA‐ABE schemes cannot support a fully large attribute universe and are not suitable for resource‐constrained mobile data owners in that the computation cost in secret key generation and encryption is extremely heavy. To tackle the earlier challenges, we propose an online/offline MA‐ABE scheme, which realizes both the online/offline secret key generation and the online/offline encryption while supporting a fully large attribute universe. In the offline phase, one global‐identity authority and multiple attribute authorities do the majority of the work to issue attribute secret keys before knowing users' global identity and attributes. The data owner can perform most of the encryption computation tasks before knowing the actual message and access structure. Furthermore, the online phase can rapidly assemble the final decryption key and ciphertexts when related specifications become known. Particularly, global‐identity authority and attribute authorities need not to cooperate in the whole process. Our online/offline MA‐ABE scheme allows the access policies encoded in linear secret sharing schemes. The formal selective security proof and extensive performance analysis indicate that our scheme is very suitable for data sharing in mobile cloud computing. Copyright © 2016 John Wiley & Sons, Ltd. Aiming to realize attribute‐based data sharing in mobile cloud computing, an online/offline multi‐authority attribute‐based encryption (OO‐MA‐ABE) scheme is proposed. The proposed OO‐MA‐ABE scheme realizes both the online/offline secret key generation and encryption while supporting a fully‐large attribute universe. Our scheme supports LSSS access structures and is proven secure in the standard model.
ISSN:1939-0114
1939-0122
DOI:10.1002/sec.1574