Title | A Policy Revocation Scheme for Attributes-based Encryption |
Publication Type | Conference Paper |
Year of Publication | 2018 |
Authors | Myint, Phyo Wah Wah, Hlaing, Swe Zin, Htoon, Ei Chaw |
Conference Name | Proceedings of the 10th International Conference on Advances in Information Technology |
Publisher | ACM |
Conference Location | New York, NY, USA |
ISBN Number | 978-1-4503-6568-0 |
Keywords | attribute based encryption, attribute-based encryption, Attributes-based encryption (ABE), Ciphertext policy attributes-based encryption (CP-ABE), cloud server, Collaboration, Human Behavior, policy-based governance, pubcrawl, Scalability, Trusted authority (TA) |
Abstract | Attributes-based encryption (ABE) is a promising cryptographic mechanism that provides a fine-grained access control for cloud environment. Since most of the parties exchange sensitive data among them by using cloud computing, data protection is very important for data confidentiality. Ciphertext policy attributes-based encryption (CP-ABE) is one of the ABE schemes, which performs an access control of security mechanisms for data protection in cloud storage. In CP-ABE, each user has a set of attributes and data encryption is associated with an access policy. The secret key of a user and the ciphertext are dependent upon attributes. A user is able to decrypt a ciphertext if and only if his attributes satisfy the access structure in the ciphertext. The practical applications of CP-ABE have still requirements for attributes policy management and user revocation. This paper proposed an important issue of policy revocation in CP-ABE scheme. In this paper, sensitive parts of personal health records (PHRs) are encrypted with the help of CP-ABE. In addition, policy revocation is considered to add in CP-ABE and generates a new secret key for authorized users. In proposed attributes based encryption scheme, PHRs owner changes attributes policy to update authorized user lists. When policy revocation occurs in proposed PHRs sharing system, a trusted authority (TA) calculates a partial secret token key according to a policy updating level and then issues new or updated secret keys for new policy. Proposed scheme emphasizes on key management, policy management and user revocation. It provides a full control on data owner according to a policy updating level what he chooses. It helps both PHRs owner and users for flexible policy revocation in CP-ABE without time consuming. |
URL | http://doi.acm.org/10.1145/3291280.3291792 |
DOI | 10.1145/3291280.3291792 |
Citation Key | myint_policy_2018 |