Attribute-Based Fully Homomorphic Encryption Scheme from Lattices with Short Ciphertext

Attribute-based encryption (ABE) is a good choice for one-to-many communication and fine-grained access control of the encryption data in a cloud environment. Fully homomorphic encryption (FHE) allows cloud servers to make valid operations on encrypted data without decrypting. Attribute-based fully homomorphic encryption (ABFHE) from lattices not only combines the bilateral advantages/facilities of ABE and FHE but also can resist quantum attacks. However, in the most previous ABFHE schemes, the growth of ciphertext size usually depends on the total number of system’s attributes which leads to high communication overhead and long running time of encryption and decryption. In this paper, based on the LWE problem on lattices, we propose an attribute-based fully homomorphic scheme with short ciphertext. More specifically, by classifying the system’s attributes and using the special structure matrix in MP12, we remove the dependency of ciphertext size on system’s attributes ℓ and the ciphertext size is no longer increased with the total number of system’s attributes. In addition, by introducing the function G − 1 in the homomorphic operations, we completely rerandomize the error term in the new ciphertext and have a very tight and simple error analysis using sub-Gaussianity. Besides, performance analysis shows that when ℓ = 2 and n = 284 according to the parameter suggestion given by Micciancio and Dai et al., the size of ciphertext in our scheme is reduced by at least 73.3%, not to mention ℓ > 2 . The larger the ℓ , the more observable of our scheme. The short ciphertext in our construction can not only reduce the communication overhead but also reduce the running time of encryption and decryption. Finally, our scheme is proved to be secure in the standard model.

Download Full-text

A Proposed Fully Homomorphic for Securing Cloud Banking Data at Rest

UHD Journal of Science and Technology ◽

10.21928/uhdjst.v4n1y2020.pp87-95 ◽

2020 ◽

Vol 4 (1) ◽

pp. 87

Author(s):

Zana Thalage Omar ◽

Fadhil Salman Abed

Keyword(s):

Homomorphic Encryption ◽

Prime Numbers ◽

Data Encryption ◽

Theoretical Research ◽

Significant Progress ◽

Arithmetic Operations ◽

Fully Homomorphic Encryption ◽

Encrypted Data ◽

Encryption And Decryption ◽

Local Cloud

Fully homomorphic encryption (FHE) reaped the importance and amazement of most researchers and followers in data encryption issues, as programs are allowed to perform arithmetic operations on encrypted data without decrypting it and obtain results similar to the effects of arithmetic operations on unencrypted data. The first (FHE) model was introduced by Craig Gentry in 2009, and it was just theoretical research, but later significant progress was made on it, this research offers FHE system based on directly of factoring big prime numbers which consider open problem now, The proposed scheme offers a fully homomorphic system for data encryption and stores it in encrypted form on the cloud based on a new algorithm that has been tried on a local cloud and compared with two previous encryption systems (RSA and Paillier) and shows us that this algorithm reduces the time of encryption and decryption by 5 times compared to other systems.

Download Full-text

Dual Authentication-Based Encryption with a Delegation System to Protect Medical Data in Cloud Computing

Electronics ◽

10.3390/electronics8020171 ◽

2019 ◽

Vol 8 (2) ◽

pp. 171 ◽

Cited By ~ 3

Author(s):

Aymen Mudheher Badr ◽

Yi Zhang ◽

Hafiz Gulfam Ahmad Umar

Keyword(s):

Cloud Computing ◽

Data Access ◽

Easy Access ◽

Communication Overhead ◽

Attribute Based Encryption ◽

Data Owner ◽

Cloud Server ◽

User Data ◽

Cloud Servers ◽

The Cost

The increasing use of cloud computing, especially in commercial, government and healthcare institutions, started with the use of computerized clouds. Clouds store important data, which reduces the cost of management and ensures easy access. To protect this data, cryptographic methods are used to ensure confidentiality of the data, as well as to secure access to user data and increase trust in cloud technology. In our paper, we suggest a new scheme to support an attribute-based encryption system (ABE) that involves multiple parties such as data owners, data users, cloud servers and authority. A verified and authenticated decryption process for the cloud environment is the imperative feature of our proposed architecture. The data owner encrypts their data and sends it to the cloud. The cloud server performs partial decryption and the final decrypted data are shared for users as per their privileges. Thus, the data owner reduces complexity of productivity by delegating the decryption process to the cloud server. Analysis of the experimental results confirms that data access in the electronic cloud atmosphere is safer due to a controlled multiple-users-rights scheme. Our performance evaluation results show that the proposed model condensed the communication overhead and made Digital Imaging and Communications in Medicine (DICOM) more secure.

Download Full-text

Data Security for Cloud Datasets With Bloom Filters on Ciphertext Policy Attribute Based Encryption

International Journal of Information Security and Privacy ◽

10.4018/ijisp.2019100102 ◽

2019 ◽

Vol 13 (4) ◽

pp. 12-27

Author(s):

G. Sravan Kumar ◽

A. Sri Krishna

Keyword(s):

Access Control ◽

Data Storage ◽

Private Information ◽

Data Security ◽

Bloom Filters ◽

Communication Overhead ◽

Access Policy ◽

Fine Grained ◽

Attribute Based Encryption ◽

Ciphertext Policy

Cloud data storage environments allow the data providers to store and share large amounts of datasets generated from various resources. However, outsourcing private data to a cloud server is insecure without an efficient access control strategy. Thus, it is important to protect the data and privacy of user with a fine-grained access control policy. In this article, a Bloom Filter-based Ciphertext-Policy Attribute-Based Encryption (BF-CP-ABE) technique is presented to provide data security to cloud datasets with a Linear Secret Sharing Structure (LSSS) access policy. This fine-grained access control scheme hides the whole attribute set in the ciphertext, whereas in previous CP-ABE methods, the attributes are partially hidden in the ciphertext which in turn leaks private information about the user. Since the attribute set of the BF-CP-ABE technique is hidden, bloom filters are used to identify the authorized users during data decryption. The BF-CP-ABE technique is designed to be selective secure under an Indistinguishable-Chosen Plaintext attack and the simulation results show that the communication overhead is significantly reduced with the adopted LSSS access policy.

Download Full-text

A Privacy Preserving and Efficient Multi Authority – CP-ABE Scheme for Secure Cloud Communication

Journal of Cyber Security and Mobility ◽

10.13052/jcsm2245-1439.945 ◽

2021 ◽

Author(s):

Shardha Porwal ◽

Sangeeta Mittal

Keyword(s):

Communication Overhead ◽

Computing Environment ◽

Constant Length ◽

Cloud Computing Environment ◽

Key Escrow ◽

Access Policy ◽

Attribute Based Encryption ◽

Encryption And Decryption ◽

Share Data ◽

Ciphertext Policy

In the cloud computing environment, Multi authority Ciphertext Policy-Attribute Based Encryption (CP-ABE) schemes are used as a key escrow free solution to securely and efficiently share data over cloud. However, the length of ciphertext in existing Multi Authority-CP-ABE schemes increases with the number of attributes in the access policy. Moreover, these schemes do not protect against dishonest attribute authorities. In this paper, a constant length ciphertext Multi Authority-CP-ABE scheme is proposed that reduces the communication overhead over the network. The scheme also prevents dishonest authority from compromising the system. Apart from this, for enhanced privacy of receivers, the access policy is communicated in hidden form. Thus, the presented scheme provides an efficient corrupt resistant, key escrow free Multi Authority-CP-ABE scheme by generating constant length ciphertext and hidden access structure. Results demonstrate the enhanced security and reduced cost of encryption and decryption by 8% and 48% respectively as compared to other existing works.

Download Full-text

Compare encryption performance across devices to ensure the security of the IOT

Indonesian Journal of Electrical Engineering and Computer Science ◽

10.11591/ijeecs.v20.i2.pp894-902 ◽

2020 ◽

Vol 20 (2) ◽

pp. 894

Author(s):

A.YU. Pyrkova ◽

ZH.E. Temirbekova

Keyword(s):

Homomorphic Encryption ◽

Security And Privacy ◽

Symmetric Cryptography ◽

Fully Homomorphic Encryption ◽

Cryptographic Primitives ◽

Development Platform ◽

Encryption And Decryption ◽

Detailed Assessment ◽

Iot Devices ◽

The Internet Of Things

The Internet of Things (IoT) combines many devices with various platforms, computing capabilities and functions. The heterogeneity of the network and the ubiquity of IoT devices place increased demands on security and privacy protection. Therefore, cryptographic mechanisms must be strong enough to meet these increased requirements, but at the same time they must be effective enough to be implemented on devices with disabilities. One of the limited devices are microcontrollers and smart cards. This paper presents the performance and memory limitations of modern cryptographic primitives and schemes on various types of devices that can be used in IoT. In this article, we provide a detailed assessment of the performance of the most commonly used cryptographic algorithms on devices with disabilities that often appear on IoT networks. We relied on the most popular open source microcontroller development platform, on the mbed platform. To provide a data protection function, we use cryptography asymmetric fully homomorphic encryption in the binary ring and symmetric cryptography AES 128 bit. In addition, we compared run-time encryption and decryption on a personal computer (PC) with Windows 7, the Bluetooth Low Energy (BLE) Nano Kit microcontroller, the BLE Nano 1.5, and the smartcard ML3-36k-R1.

Download Full-text

A novel secure biomedical data aggregation using fully homomorphic encryption in WSN

Indonesian Journal of Electrical Engineering and Computer Science ◽

10.11591/ijeecs.v24.i1.pp428-443 ◽

2021 ◽

Vol 24 (1) ◽

pp. 428

Author(s):

Chethana G. ◽

Padmaja K. V.

Keyword(s):

Digital Signature ◽

Data Aggregation ◽

Homomorphic Encryption ◽

Fractional Part ◽

Expansion Ratio ◽

Signature Verification ◽

Biomedical Data ◽

Fully Homomorphic Encryption ◽

Negative Numbers ◽

Encryption And Decryption

A new method of secure data aggregation for decimal data having integer as well as fractional part using homomorphic encryption is described. The proposed homomorphic encryption provides addition, subtraction, multiplication, division and averaging operations in the cipher domain for both positive and negative numbers. The scheme uses integer matrices in finite field Zp as encryption and decryption keys. An embedded Digital signature along with data provides data integrity and authentication by signature verification at the receiving end. The proposed scheme is immune to chosen plaintext and chosen ciphertext attacks. In the case of homomorphic multiplication, the ciphertext expansion ratio grows linearly with the data size. The computational complexity of the proposed method for multiplication and division is relatively less by 22.87% compared to Brakerski and Vaikantanathan method when the size of the plaintext data is ten decimal digits.

Download Full-text

Using FHE in a binary ring Encryption and Decryption with BLE Nano kit microcontroller

E3S Web of Conferences ◽

10.1051/e3sconf/202020215002 ◽

2020 ◽

Vol 202 ◽

pp. 15002

Author(s):

Zhanerke Temirbekova Erlanovna ◽

Anna Pyrkova

Keyword(s):

Integrated Circuit ◽

Homomorphic Encryption ◽

Electronic Devices ◽

Low Energy ◽

Binary Number ◽

Fully Homomorphic Encryption ◽

Development Platform ◽

Encryption And Decryption ◽

Cryptographic System ◽

Series Of Functions

An integrated circuit (IC) that can be programmed to perform a series of functions to control a range of electronic devices is a microcontroller. What makes the microcontroller special is that it is programmable. In this article, we're going to try to rely on the mbed platform, the most common open source microcontroller development platform; we use completely homomorphic encryption in a binary number ring to ensure the data protection feature. Let us compare the time it takes to perform encryption and decryption on a Visual Studio C ++ and a Bluetooth Low Energy (BLE) Nano kit microcontroller. Experimental results show that the device can complete a fully homomorphic encryption in a binary number ring in 64.2 microseconds, which is reasonable in a real application scenario and illustrates the feasibility of implementing a more complex cryptographic system using a microcontroller.

Download Full-text

Fine-grained document sharing using attribute-based encryption in cloud servers

Third International Conference on Innovative Computing Technology (INTECH 2013) ◽

10.1109/intech.2013.6653703 ◽

2013 ◽

Cited By ~ 4

Author(s):

Dongyang Xu ◽

Fengying Luo ◽

Lin Gao ◽

Zhi Tang

Keyword(s):

Fine Grained ◽

Attribute Based Encryption ◽

Cloud Servers

Download Full-text

Data Security for Cloud Datasets With Bloom Filters on Ciphertext Policy Attribute Based Encryption

Research Anthology on Artificial Intelligence Applications in Security ◽

10.4018/978-1-7998-7705-9.ch064 ◽

2021 ◽

pp. 1431-1447

Author(s):

G. Sravan Kumar ◽

A. Sri Krishna

Keyword(s):

Access Control ◽

Data Security ◽

Bloom Filters ◽

Communication Overhead ◽

Cloud Data ◽

Access Policy ◽

Fine Grained ◽

Attribute Based Encryption ◽

Cloud Data Storage ◽

Ciphertext Policy

Download Full-text

A Multi-User Ciphertext Policy Attribute-Based Encryption Scheme with Keyword Search for Medical Cloud System

Applied Sciences ◽

10.3390/app11010063 ◽

2020 ◽

Vol 11 (1) ◽

pp. 63

Author(s):

Han-Yu Lin ◽

Yan-Ru Jiang

Keyword(s):

Health Information ◽

Keyword Search ◽

Population Aging ◽

Personal Health Record ◽

Fine Grained ◽

Attribute Based Encryption ◽

Cryptographic Primitive ◽

Cloud Server ◽

Ciphertext Policy ◽

Cloud Servers

Population aging is currently a tough problem of many countries. How to utilize modern technologies (including both information and medical technologies) to improve the service quality of health information is an important issue. Personal Health Record (PHR) could be regarded as a kind of health information records of individuals. A ciphertext policy attribute-based encryption (CP-ABE) is a cryptographic primitive for fine-grained access control of outsourced data in clouds. In order to enable patients to effectively store his medical records and PHR data in medical clouds, we propose an improved multi-user CP-ABE scheme with the functionality of keyword search which enables data users to seek for specific ciphertext in the cloud server by using a specific keyword. Additionally, we adopt an independent proxy server in the proposed system architecture to isolate the communication between clients and the cloud server, so as to prevent cloud servers from suffering direct attacks and also reduce the computational loading of cloud servers. Compared with the previous approach, the proposed encryption algorithm takes less running time and the ciphertext length is also relatively short. Moreover, the procedures of re-encryption and pre-decryption only require one exponentiation computation, respectively.

Download Full-text