Decentralized Inner-Product Encryption with Constant-Size Ciphertext

Abstract Attribute-based encryption with equality test (ABEET) simultaneously supports fine-grained access control on the encrypted data and plaintext message equality comparison without decrypting the ciphertexts. Recently, there have been several literatures about ABEET proposed. Nevertheless, most of them explore the ABEET schemes in the random oracle model, which has been pointed out to have many defects in practicality. The only existing ABEET scheme in the standard model, proposed by Wang et al., merely achieves the indistinguishable against chosen-plaintext attack security. Considering the aforementioned problems, in this paper, we propose the first direct adaptive chosen-ciphertext security ciphertext-policy ABEET scheme in the standard model. Our method only adopts a chameleon hash function and adds one dummy attribute to the access structure. Compared with the previous works, our scheme achieves the security improvement, ciphertext validity check and large universe. Besides, we further optimize our scheme to support the outsourced decryption. Finally, we first give the detailed theoretical analysis of our constructions in computation and storage costs, then we implement our constructions and carry out a series of experiments. Both results indicate that our constructions are more efficient in Setup and Trapdoor and have the shorter public parameters than the existing ABEET ones do.

Download Full-text

Traceable Multiauthority Attribute-Based Encryption with Outsourced Decryption and Hidden Policy for CIoT

Wireless Communications and Mobile Computing ◽

10.1155/2021/6682580 ◽

2021 ◽

Vol 2021 ◽

pp. 1-16

Author(s):

Suhui Liu ◽

Jiguo Yu ◽

Chunqiang Hu ◽

Mengmeng Li

Keyword(s):

Data Sharing ◽

Random Oracle Model ◽

Random Oracle ◽

Fine Grained ◽

Security Issues ◽

Efficient Management ◽

Attribute Based Encryption ◽

High Efficient ◽

Efficient Data ◽

Iot Devices

Cloud-assisted Internet of Things (IoT) significantly facilitate IoT devices to outsource their data for high efficient management. Unfortunately, some unsettled security issues dramatically impact the popularity of IoT, such as illegal access and key escrow problem. Traditional public-key encryption can be used to guarantees data confidentiality, while it cannot achieve efficient data sharing. The attribute-based encryption (ABE) is the most promising way to ensure data security and to realize one-to-many fine-grained data sharing simultaneously. However, it cannot be well applied in the cloud-assisted IoT due to the complexity of its decryption and the decryption key leakage problem. To prevent the abuse of decryption rights, we propose a multiauthority ABE scheme with white-box traceability in this paper. Moreover, our scheme greatly lightens the overhead on devices by outsourcing the most decryption work to the cloud server. Besides, fully hidden policy is implemented to protect the privacy of the access policy. Our scheme is proved to be selectively secure against replayable chosen ciphertext attack (RCCA) under the random oracle model. Some theory analysis and simulation are described in the end.

Download Full-text

Cloud Security in Crypt Database Server Using Fine Grained Access Control

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v6i3.8925 ◽

2016 ◽

Vol 6 (3) ◽

pp. 915

Author(s):

Krishna Keerthi Chennam ◽

M. Akka Lakshmi

Keyword(s):

Access Control ◽

Information Sharing ◽

Security Analysis ◽

Random Oracle Model ◽

Random Oracle ◽

Group Model ◽

Collusion Resistance ◽

Fine Grained ◽

User Revocation ◽

Cloud Servers

Information sharing in the cloud, powered by good patterns in cloud technology, is rising as a guaranteeing procedure for permitting users to advantageously access information. However, the growing number of enterprises and customers who stores their information in cloud servers is progressively challenging users’ privacy and the security of information. This paper concentrates on providing a dependable and secure cloud information sharing services that permits users dynamic access to their information. In order to achieve this, propose an effective, adaptable and flexible privacy preserving information policy with semantic security, by using Cipher text Policy Element Based Encryption (CP-EBE) consolidated with Character Based Encryption (CBE) systems. To ensure strong information sharing security, the policy succeeds in protecting the privacy of cloud users and supports efficient and secure dynamic operations, but not constrained to, file creation, user revocation. Security analysis demonstrates that the proposed policy is secure under the generic bi- linear group model in the random oracle model and enforces fine-grained access control, full collusion resistance and retrogressive secrecy. Furthermore, performance analysis and experimental results demonstrate that the overheads are as light as possible.<br /><br />

Download Full-text

Cloud Security in Crypt Database Server Using Fine Grained Access Control

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v6i3.pp915-924 ◽

2016 ◽

Vol 6 (3) ◽

pp. 915

Author(s):

Krishna Keerthi Chennam ◽

M. Akka Lakshmi

Keyword(s):

Access Control ◽

Information Sharing ◽

Security Analysis ◽

Random Oracle Model ◽

Random Oracle ◽

Group Model ◽

Collusion Resistance ◽

Fine Grained ◽

User Revocation ◽

Cloud Servers

Information sharing in the cloud, powered by good patterns in cloud technology, is rising as a guaranteeing procedure for permitting users to advantageously access information. However, the growing number of enterprises and customers who stores their information in cloud servers is progressively challenging users’ privacy and the security of information. This paper concentrates on providing a dependable and secure cloud information sharing services that permits users dynamic access to their information. In order to achieve this, propose an effective, adaptable and flexible privacy preserving information policy with semantic security, by using Cipher text Policy Element Based Encryption (CP-EBE) consolidated with Character Based Encryption (CBE) systems. To ensure strong information sharing security, the policy succeeds in protecting the privacy of cloud users and supports efficient and secure dynamic operations, but not constrained to, file creation, user revocation. Security analysis demonstrates that the proposed policy is secure under the generic bi- linear group model in the random oracle model and enforces fine-grained access control, full collusion resistance and retrogressive secrecy. Furthermore, performance analysis and experimental results demonstrate that the overheads are as light as possible.<br /><br />

Download Full-text

BlockREV: Blockchain-Enabled Multi-Controller Rule Enforcement Verification in SDN

Security and Communication Networks ◽

10.1155/2022/7294638 ◽

2022 ◽

Vol 2022 ◽

pp. 1-16

Author(s):

Ping Li ◽

Songtao Guo ◽

Jiahui Wu ◽

Quanjun Zhao

Keyword(s):

Network Architecture ◽

Random Oracle Model ◽

Random Oracle ◽

Cryptographic Primitives ◽

Verification Algorithm ◽

Blockchain Technology ◽

Cross Domain ◽

New Type ◽

Multiple Domains ◽

Provably Secure

Compared with the classical structure with only one controller in software-defined networking (SDN), multi-controller topology structure in SDN provides a new type of cross-domain forwarding network architecture with multiple centralized controllers and distributed forwarding devices. However, when the network includes multiple domains, lack of trust among the controllers remains a challenge how to verify the correctness of cross-domain forwarding behaviors in different domains. In this paper, we propose a novel secure multi-controller rule enforcement verification (BlockREV) mechanism in SDN to guarantee the correctness of cross-domain forwarding. We first adopt blockchain technology to provide the immutability and privacy protection for forwarding behaviors. Furthermore, we present an address-based aggregate signature scheme with appropriate cryptographic primitives, which is provably secure in the random oracle model. Moreover, we design a verification algorithm based on hash values of forwarding paths to check the consistency of forwarding order. Finally, experimental results demonstrate that the proposed BlockREV mechanism is effective and suitable for multi-controller scenarios in SDN.

Download Full-text

Multi-Client Inner-Product Functional Encryption in the Random-Oracle Model

Lecture Notes in Computer Science - Security and Cryptography for Networks ◽

10.1007/978-3-030-57990-6_26 ◽

2020 ◽

pp. 525-545

Author(s):

Michel Abdalla ◽

Florian Bourse ◽

Hugo Marival ◽

David Pointcheval ◽

Azam Soleimanian ◽

...

Keyword(s):

Random Oracle Model ◽

Random Oracle ◽

Inner Product ◽

Functional Encryption

Download Full-text

An Identity-Based Blind Signature Scheme Using Lattice with Provable Security

Mathematical Problems in Engineering ◽

10.1155/2020/7528571 ◽

2020 ◽

Vol 2020 ◽

pp. 1-12

Author(s):

Quanrun Li ◽

Chingfang Hsu ◽

Debiao He ◽

Kim-Kwang Raymond Choo ◽

Peng Gong

Keyword(s):

Quantum Computer ◽

Rapid Development ◽

Random Oracle Model ◽

Random Oracle ◽

Mean Value ◽

Blind Signature ◽

Signature Scheme ◽

Practical Applications ◽

Universal Quantum ◽

Identity Based

With the rapid development of quantum computing and quantum information technology, the universal quantum computer will emerge in the near decades with a very high probability and it could break most of the current public key cryptosystems totally. Due to the ability of withstanding the universal quantum computer’s attack, the lattice-based cryptosystems have received lots of attention from both industry and academia. In this paper, we propose an identity-based blind signature scheme using lattice. We also prove that the proposed scheme is provably secure in the random oracle model. The performance analysis shows that the proposed scheme has less mean value of sampling times and smaller signature size than previous schemes. Thus, the proposed scheme is more suitable for practical applications.

Download Full-text

ID-based key-insulated signcryption with equality test in cloud computing

SN Applied Sciences ◽

10.1007/s42452-021-04469-9 ◽

2021 ◽

Vol 3 (4) ◽

Author(s):

Seth Alornyo ◽

Kingsford Kissi Mireku ◽

Mustapha Adamu Mohammed ◽

Daniel Adu-Gyamfi ◽

Michael Asante

Keyword(s):

Cloud Computing ◽

Random Oracle Model ◽

Random Oracle ◽

Harsh Environments ◽

Secret Key ◽

Secret Keys ◽

Security Property ◽

Equality Test ◽

Chosen Ciphertext Attack ◽

Chosen Message Attack

AbstractKey-insulated encryption reduces the problem of secret key exposure in hostile setting while signcryption cryptosystem attains the benefits of digitally signing a ciphertext and public key cryptosystem. In this study, we merge the primitives of parallel key-insulation cryptosystem and signcryption with equality test to construct ID-based parallel key-insulated signcryption with a test for equality (ID-PKSET) in cloud computing. The construction prevent data forgery, data re-play attacks and reduces the leakage of secret keys in harsh environments. Our scheme attains the security property of existential unforgeable chosen message attack (EUF-CMA) and indistinquishable identity chosen ciphertext attack (IND-ID-CCA2) using random oracle model.

Download Full-text