Attribute-based proxy re-encryption method for revocation in cloud storage: Reduction of communication cost at re-encryption

Yoshiko Yasumura, Hiroki Imabayashi, Hayato Yamana

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    2 Citations (Scopus)

    Abstract

    In recent years, many users have uploaded data to the cloud for easy storage and sharing with other users. At the same time, security and privacy concerns for the data are growing. Attribute-based encryption (ABE) enables both data security and access control by defining users with attributes so that only those users who have matching attributes can decrypt them. For real-world applications of ABE, revocation of users or their attributes is necessary so that revoked users can no longer decrypt the data. In actual implementations, ABE is used in hybrid with a symmetric encryption scheme such as the advanced encryption standard (AES) where data is encrypted with AES and the AES key is encrypted with ABE. The hybrid encryption scheme requires re-encryption of the data upon revocation to ensure that the revoked users can no longer decrypt that data. To re-encrypt the data, the data owner (DO) must download the data from the cloud, then decrypt, encrypt, and upload the data back to the cloud, resulting in both huge communication costs and computational burden on the DO depending on the size of the data to be re-encrypted. In this paper, we propose an attribute-based proxy re-encryption method in which data can be re-encrypted in the cloud without downloading any data by adopting both ABE and Syalim's encryption scheme. Our proposed scheme reduces the communication cost between the DO and cloud storage. Experimental results show that the proposed method reduces the communication cost by as much as one quarter compared to that of the trivial solution.

    Original languageEnglish
    Title of host publication2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018
    PublisherInstitute of Electrical and Electronics Engineers Inc.
    Pages312-318
    Number of pages7
    ISBN (Electronic)9781538647936
    DOIs
    Publication statusPublished - 2018 May 25
    Event3rd IEEE International Conference on Big Data Analysis, ICBDA 2018 - Shanghai, China
    Duration: 2018 Mar 92018 Mar 12

    Other

    Other3rd IEEE International Conference on Big Data Analysis, ICBDA 2018
    CountryChina
    CityShanghai
    Period18/3/918/3/12

    Fingerprint

    Cryptography
    Communication
    Costs
    Communication cost
    Encryption
    Security of data
    Access control

    Keywords

    • attribute-based encryption (ABE)
    • cloud storage
    • proxy re-encryption

    ASJC Scopus subject areas

    • Information Systems
    • Information Systems and Management

    Cite this

    Yasumura, Y., Imabayashi, H., & Yamana, H. (2018). Attribute-based proxy re-encryption method for revocation in cloud storage: Reduction of communication cost at re-encryption. In 2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018 (pp. 312-318). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICBDA.2018.8367699

    Attribute-based proxy re-encryption method for revocation in cloud storage : Reduction of communication cost at re-encryption. / Yasumura, Yoshiko; Imabayashi, Hiroki; Yamana, Hayato.

    2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018. Institute of Electrical and Electronics Engineers Inc., 2018. p. 312-318.

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    Yasumura, Y, Imabayashi, H & Yamana, H 2018, Attribute-based proxy re-encryption method for revocation in cloud storage: Reduction of communication cost at re-encryption. in 2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018. Institute of Electrical and Electronics Engineers Inc., pp. 312-318, 3rd IEEE International Conference on Big Data Analysis, ICBDA 2018, Shanghai, China, 18/3/9. https://doi.org/10.1109/ICBDA.2018.8367699
    Yasumura Y, Imabayashi H, Yamana H. Attribute-based proxy re-encryption method for revocation in cloud storage: Reduction of communication cost at re-encryption. In 2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018. Institute of Electrical and Electronics Engineers Inc. 2018. p. 312-318 https://doi.org/10.1109/ICBDA.2018.8367699
    Yasumura, Yoshiko ; Imabayashi, Hiroki ; Yamana, Hayato. / Attribute-based proxy re-encryption method for revocation in cloud storage : Reduction of communication cost at re-encryption. 2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 312-318
    @inproceedings{95678237f5da4eb9baa8dec9e9fdbd8e,
    title = "Attribute-based proxy re-encryption method for revocation in cloud storage: Reduction of communication cost at re-encryption",
    abstract = "In recent years, many users have uploaded data to the cloud for easy storage and sharing with other users. At the same time, security and privacy concerns for the data are growing. Attribute-based encryption (ABE) enables both data security and access control by defining users with attributes so that only those users who have matching attributes can decrypt them. For real-world applications of ABE, revocation of users or their attributes is necessary so that revoked users can no longer decrypt the data. In actual implementations, ABE is used in hybrid with a symmetric encryption scheme such as the advanced encryption standard (AES) where data is encrypted with AES and the AES key is encrypted with ABE. The hybrid encryption scheme requires re-encryption of the data upon revocation to ensure that the revoked users can no longer decrypt that data. To re-encrypt the data, the data owner (DO) must download the data from the cloud, then decrypt, encrypt, and upload the data back to the cloud, resulting in both huge communication costs and computational burden on the DO depending on the size of the data to be re-encrypted. In this paper, we propose an attribute-based proxy re-encryption method in which data can be re-encrypted in the cloud without downloading any data by adopting both ABE and Syalim's encryption scheme. Our proposed scheme reduces the communication cost between the DO and cloud storage. Experimental results show that the proposed method reduces the communication cost by as much as one quarter compared to that of the trivial solution.",
    keywords = "attribute-based encryption (ABE), cloud storage, proxy re-encryption",
    author = "Yoshiko Yasumura and Hiroki Imabayashi and Hayato Yamana",
    year = "2018",
    month = "5",
    day = "25",
    doi = "10.1109/ICBDA.2018.8367699",
    language = "English",
    pages = "312--318",
    booktitle = "2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018",
    publisher = "Institute of Electrical and Electronics Engineers Inc.",

    }

    TY - GEN

    T1 - Attribute-based proxy re-encryption method for revocation in cloud storage

    T2 - Reduction of communication cost at re-encryption

    AU - Yasumura, Yoshiko

    AU - Imabayashi, Hiroki

    AU - Yamana, Hayato

    PY - 2018/5/25

    Y1 - 2018/5/25

    N2 - In recent years, many users have uploaded data to the cloud for easy storage and sharing with other users. At the same time, security and privacy concerns for the data are growing. Attribute-based encryption (ABE) enables both data security and access control by defining users with attributes so that only those users who have matching attributes can decrypt them. For real-world applications of ABE, revocation of users or their attributes is necessary so that revoked users can no longer decrypt the data. In actual implementations, ABE is used in hybrid with a symmetric encryption scheme such as the advanced encryption standard (AES) where data is encrypted with AES and the AES key is encrypted with ABE. The hybrid encryption scheme requires re-encryption of the data upon revocation to ensure that the revoked users can no longer decrypt that data. To re-encrypt the data, the data owner (DO) must download the data from the cloud, then decrypt, encrypt, and upload the data back to the cloud, resulting in both huge communication costs and computational burden on the DO depending on the size of the data to be re-encrypted. In this paper, we propose an attribute-based proxy re-encryption method in which data can be re-encrypted in the cloud without downloading any data by adopting both ABE and Syalim's encryption scheme. Our proposed scheme reduces the communication cost between the DO and cloud storage. Experimental results show that the proposed method reduces the communication cost by as much as one quarter compared to that of the trivial solution.

    AB - In recent years, many users have uploaded data to the cloud for easy storage and sharing with other users. At the same time, security and privacy concerns for the data are growing. Attribute-based encryption (ABE) enables both data security and access control by defining users with attributes so that only those users who have matching attributes can decrypt them. For real-world applications of ABE, revocation of users or their attributes is necessary so that revoked users can no longer decrypt the data. In actual implementations, ABE is used in hybrid with a symmetric encryption scheme such as the advanced encryption standard (AES) where data is encrypted with AES and the AES key is encrypted with ABE. The hybrid encryption scheme requires re-encryption of the data upon revocation to ensure that the revoked users can no longer decrypt that data. To re-encrypt the data, the data owner (DO) must download the data from the cloud, then decrypt, encrypt, and upload the data back to the cloud, resulting in both huge communication costs and computational burden on the DO depending on the size of the data to be re-encrypted. In this paper, we propose an attribute-based proxy re-encryption method in which data can be re-encrypted in the cloud without downloading any data by adopting both ABE and Syalim's encryption scheme. Our proposed scheme reduces the communication cost between the DO and cloud storage. Experimental results show that the proposed method reduces the communication cost by as much as one quarter compared to that of the trivial solution.

    KW - attribute-based encryption (ABE)

    KW - cloud storage

    KW - proxy re-encryption

    UR - http://www.scopus.com/inward/record.url?scp=85048487182&partnerID=8YFLogxK

    UR - http://www.scopus.com/inward/citedby.url?scp=85048487182&partnerID=8YFLogxK

    U2 - 10.1109/ICBDA.2018.8367699

    DO - 10.1109/ICBDA.2018.8367699

    M3 - Conference contribution

    AN - SCOPUS:85048487182

    SP - 312

    EP - 318

    BT - 2018 IEEE 3rd International Conference on Big Data Analysis, ICBDA 2018

    PB - Institute of Electrical and Electronics Engineers Inc.

    ER -