Journal
IEEE TRANSACTIONS ON NETWORK AND SERVICE MANAGEMENT
Volume 19, Issue 1, Pages 271-288Publisher
IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC
DOI: 10.1109/TNSM.2021.3123475
Keywords
Keyword search; Attribute-based encryption; Distributed data storage; Secret-sharing; Fog computing
Categories
Funding
- National Social Science Foundation of China [20BTQ058]
- National Natural Science Foundation of China [61902040, 52177067, 62072078]
- Hunan Provincial Education Department Scientific Research Project of China [20B024]
- Hunan Graduate Education Innovation and Professional Ability Improvement Project of China [CX20200881]
- National Research Fund Project of China [61872239]
- Hunan Provincial Natural Science Foundation of China [2019JJ40314, 2018JJ2445]
- Guangdong Key Lab of AI and Multi-modal Data Processing and BNU-UIC Institute of Artificial Intelligence and Future Networks
Ask authors/readers for more resources
This paper proposes a self-verifiable attribute-based keyword search scheme for distributed data storage in a full fog computing environment. The scheme provides attribute-based distributed data storage among fog servers through a threshold secret-sharing scheme and offers self-verifiable keyword search and data decryption for terminal users.
Presently many searchable encryption schemes have been proposed for cloud and fog computing, which use fog nodes (or fog servers) to partly undertake some computational tasks. However, these related schemes still retain cloud servers to undertake most computational tasks, which result in large communication costs between edge devices and cloud servers. Therefore, in this paper we propose a self-verifiable attribute-based keyword search scheme for distributed data storage (SV-KSDS) in full fog computing, where each decryption operation on the data required by a user must meet the negotiated decryption rule between fog servers. Our SV-KSDS scheme first provides attribute-based distributed data storage among fog servers through the (w, sigma) threshold secret-sharing scheme, where fog servers can provide self-verifiable keyword search and data decryption for terminal users. Compared with the data storage in cloud computing, our scheme extends it to the distributed structure while providing fine-grained access control for distributed data storage through attribute-based encryption. The access control policy of our scheme is constructed on linear secret-sharing scheme, whose security is reduced to the decisional bilinear Diffie-Hellman assumption against chosen-keyword attack and the decisional q-parallel bilinear Diffie-Hellman assumption against chosen-plaintext attack in the standard model. Based on theoretical analysis and practical testing, our SV-KSDS scheme generates less computation and communication costs, which further unloads some computational tasks from terminal users to fog servers so as to reduce computing costs of terminal users.
Authors
I am an author on this paper
Click your name to claim this paper and add it to your profile.
Reviews
Recommended
No Data Available