Enhancement of a Lightweight Attribute-Based Encryption Scheme for the Internet of Things
Title | Enhancement of a Lightweight Attribute-Based Encryption Scheme for the Internet of Things |
Publication Type | Journal Article |
Year of Publication | 2019 |
Authors | Tan, Syh-Yuan, Yeow, Kin-Woon, Hwang, Seong Oun |
Journal | IEEE Internet of Things Journal |
Volume | 6 |
Pagination | 6384—6395 |
Date Published | aug |
ISSN | 2327-4662 |
Keywords | Android phone, Attribute-based, biomedical communication, Chosen-plaintext attack, ciphertext indistinguishability, Collaboration, computer network security, cryptanalysis, decryption key, delegation feature, Encryption, fixed KP-ABE scheme, H-KP-ABE, Health Care, hierarchical, hierarchical KP-ABE, Internet of Things, Internet of Things (IoT), IoT-connected healthcare system, key policy attribute based encryption, Key Policy Attribute Based Encryption (KP-ABE), key-policy, KP-ABE, Lightweight, lightweight key-policy attribute-based encryption scheme, Logic gates, NIST curves, policy-based governance, pubcrawl, Public key, public key cryptography, Resiliency, Scalability, selective-set model, smart phones |
Abstract | In this paper, we present the enhancement of a lightweight key-policy attribute-based encryption (KP-ABE) scheme designed for the Internet of Things (IoT). The KP-ABE scheme was claimed to achieve ciphertext indistinguishability under chosen-plaintext attack in the selective-set model but we show that the KP-ABE scheme is insecure even in the weaker security notion, namely, one-way encryption under the same attack and model. In particular, we show that an attacker can decrypt a ciphertext which does not satisfy the policy imposed on his decryption key. Subsequently, we propose an efficient fix to the KP-ABE scheme as well as extending it to be a hierarchical KP-ABE (H-KP-ABE) scheme that can support role delegation in IoT applications. An example of applying our H-KP-ABE on an IoT-connected healthcare system is given to highlight the benefit of the delegation feature. Lastly, using the NIST curves secp192k1 and secp256k1, we benchmark the fixed (hierarchical) KP-ABE scheme on an Android phone and the result shows that the scheme is still the fastest in the literature. |
URL | https://ieeexplore.ieee.org/document/8651482 |
DOI | 10.1109/JIOT.2019.2900631 |
Citation Key | tan_enhancement_2019 |
- NIST curves
- IoT-connected healthcare system
- key policy attribute based encryption
- Key Policy Attribute Based Encryption (KP-ABE)
- key-policy
- KP-ABE
- Lightweight
- lightweight key-policy attribute-based encryption scheme
- Logic gates
- Internet of Things (IoT)
- policy-based governance
- pubcrawl
- Public key
- public key cryptography
- Resiliency
- Scalability
- selective-set model
- smart phones
- delegation feature
- Attribute-based
- biomedical communication
- Chosen-plaintext attack
- ciphertext indistinguishability
- collaboration
- computer network security
- cryptanalysis
- decryption key
- Android phone
- encryption
- fixed KP-ABE scheme
- H-KP-ABE
- health care
- hierarchical
- hierarchical KP-ABE
- Internet of Things