A lightweight attribute-based encryption scheme for the Internet of Things

2015 ◽  
Vol 49 ◽  
pp. 104-112 ◽  
Author(s):  
Xuanxia Yao ◽  
Zhi Chen ◽  
Ye Tian
Keyword(s):  
Internet Of Things ◽  
The Internet ◽  
Encryption Scheme ◽  
Attribute Based Encryption ◽  
The Internet Of Things

Attribute-Based Authentication Protocol of the Internet of Things

2013 ◽  
Vol 765-767 ◽  
pp. 1726-1729
Author(s):  
Yan Bing Liu ◽  
Wen Jing Ren
Keyword(s):  
Internet Of Things ◽  
Authentication Protocol ◽  
Security And Privacy ◽  
The Internet ◽  
Security Level ◽  
The Public ◽  
The Core ◽  
Attribute Based Encryption ◽  
Identity Based ◽  
The Internet Of Things

Security and privacy is always the most important issues by the public in the Internet of Things. The core problems are associated with the diversifying of the Internet towards an Internet of things, and the different requirements to the security level for application. Therefore, this paper is to put forward an authentication model and protocol to cope with the problem. The protocol is adopted with attribute-based encryption to replace the traditional identity-based encryption (IBE), and then make formalization analysis to the security of the protocol by using BAN logic.

scholarly journals Combining IOTA and Attribute-Based Encryption for Access Control in the Internet of Things

Sensors ◽  
2021 ◽  
Vol 21 (15) ◽  
pp. 5053
Author(s):  
Yuanyu Zhang ◽  
Ruka Nakanishi ◽  
Masahiro Sasabe ◽  
Shoji Kasahara
Keyword(s):  
Internet Of Things ◽  
Access Control ◽  
Great Promise ◽  
The Internet ◽  
Prototype System ◽  
Attribute Based Encryption ◽  
Control Scheme ◽  
Access Request ◽  
Request Processing ◽  
The Internet Of Things

Unauthorized resource access represents a typical security threat in the Internet of things (IoT), while distributed ledger technologies (e.g., blockchain and IOTA) hold great promise to address this threat. Although blockchain-based IoT access control schemes have been the most popular ones, they suffer from several significant limitations, such as high monetary cost and low throughput of processing access requests. To overcome these limitations, this paper proposes a novel IoT access control scheme by combining the fee-less IOTA technology and the Ciphertext-Policy Attribute-Based Encryption (CP-ABE) technology. To control the access to a resource, a token, which records access permissions to this resource, is encrypted by the CP-ABE technology and uploaded to the IOTA Tangle (i.e., the underlying database of IOTA). Any user can fetch the encrypted token from the Tangle, while only those who can decrypt this token are authorized to access the resource. In this way, the proposed scheme enables not only distributed, fee-less and scalable access control thanks to the IOTA but also fine-grained attribute-based access control thanks to the CP-ABE. We show the feasibility of our scheme by implementing a proof-of-concept prototype system using smart phones (Google Pixel 3XL) and a commercial IoT gateway (NEC EGW001). We also evaluate the performance of the proposed scheme in terms of access request processing throughput. The experimental results show that our scheme enables object owners to authorize access rights to a large number of subjects in a much (about 5 times) shorter time than the existing access control scheme called Decentralized Capability-based Access Control framework using IOTA (DCACI), significantly improving the access request processing throughput.

scholarly journals Flexible and Lightweight Access Control for Online Healthcare Social Networks in the Context of the Internet of Things

2017 ◽  
Vol 2017 ◽  
pp. 1-15 ◽  
Author(s):  
Zhen Qin ◽  
Jianfei Sun ◽  
Dajiang Chen ◽  
Hu Xiong
Keyword(s):  
Social Networks ◽  
Internet Of Things ◽  
Access Control ◽  
Random Oracle Model ◽  
Random Oracle ◽  
The Internet ◽  
Attribute Based Encryption ◽  
Control Scheme ◽  
User Revocation ◽  
The Internet Of Things

Online healthcare social networks (OHSNs) play an essential role in sharing information among medical experts and patients who are equipped with similar experiences. To access other patients’ data or experts’ diagnosis anywhere and anytime, it is necessary to integrate the OHSN into the Internet as part of the Internet of Things (IoT). Therefore, it is crucial to design an efficient and versatile access control scheme that can grant and revoke a user to access the OHSN. In this paper, we propose novel attribute-based encryption (ABE) features with user revocation and verifiable decryption outsourcing to control the access privilege of the users. The security of the proposed ABE scheme is given in the well-studied random oracle model. With the proposed ABE scheme, the malicious users can be excluded from the system and the user can offload most of the overhead in the decryption to an untrusted cloud server in a verifiable manner. An access control scheme for the OHSN has been given in the context of the IoT based on the proposed ABE scheme. The simulation demonstrates that our access control mechanism is practical.

scholarly journals Offline/Online Outsourced Attribute-Based Encryption with Partial Policy Hidden for the Internet of Things

2020 ◽  
Vol 2020 ◽  
pp. 1-11
Author(s):  
Xixi Yan ◽  
Guanghui He ◽  
Jinxia Yu ◽  
Yongli Tang ◽  
Mingjie Zhao
Keyword(s):  
Internet Of Things ◽  
Large Scale ◽  
Personal Data ◽  
The Internet ◽  
Cloud Platform ◽  
Computational Overhead ◽  
Attribute Based Encryption ◽  
Wide Range ◽  
Iot Devices ◽  
The Internet Of Things

In the Internet of Things (IoT) environment, the intelligent devices collect and share large-scale sensitive personal data for a wide range of application. However, the power of storage and computing of IoT devices is limited, so the mass perceived data will be encrypted and transmitted to a cloud platform-interconnected IoT devices. Therefore, the concern how to save the encryption/decryption cost and preserve the privacy of the sensitive data in IoT environment is an issue that deserves research. To mitigate these issues, an offline/online attribute-based encryption scheme that supports partial policy hidden and outsourcing decryption will be proposed. This scheme adopts offline/online attribute-based encryption algorithms; then, the key generation algorithm and encryption algorithm are divided into two stages: offline stage and online stage. Meanwhile, in order to solve the problem of policy disclosure under the cloud platform, the policy hidden is supported, that is, the attribute is divided into the attribute value and the attribute name. For the pairing operation involved in decryption process, a verifiable outsourced decryption is implemented. Our scheme is constructed based on composite bilinear groups, which meets full security under the standard model. Finally, by comparing with other schemes in terms of functionality and computational overhead, it is shown that the proposed scheme is more efficient and applicable to the mobile devices with limited computing and storage functions in the Internet of Things environment.

Sign in / Sign up

Export Citation Format

Share Document