期刊
INFORMATION SCIENCES
卷 295, 期 -, 页码 221-231出版社
ELSEVIER SCIENCE INC
DOI: 10.1016/j.ins.2014.10.020
关键词
Attribute-based encryption; Verifiable ciphertext delegation; Direct revocation
资金
- Program for New Century Excellent Talents in University [NCET-11-0565]
- Fundamental Research Funds for the Central Universities [2012JBZ010]
- PCSIRT [IRT 201206]
Attribute-based encryption (ABE) enables an access control mechanism by specifying access control policies among decryption keys and ciphertexts. In this paper, we propose a novel ABE variant, dubbed directly revocable key-policy ABE with verifiable ciphertext delegation (drvuKPABE), which supports direct revocation and verifiable ciphertext delegation. The drvuKPABE offers the following features which are promising in the data sharing applications: (1) it allows the trusted authority to revoke users by solely updating the revocation list while mitigating the interaction with non-revoked users, which is unlikely to indirectly revokable ABE; (2) it allows the third party to update ciphertexts with public information so that those non-revoked users cannot decrypt them; and (3) it enables any auditor (authorized by data owners) to verify whether the untrusted third party updated ciphertexts correctly or not. We formalize the syntax and security properties for drvuKPABE, and propose the construction based on the multilinear maps, Our solution attains the security properties under the (d + 3)-Multilinear Decisional Diffie-Hellman assumption in the random oracle model. (C) 2014 Elsevier Inc. All rights reserved.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据