Abstract
Cloud computing, which provides adequate storage and computation capability, has been a prevalent information infrastructure. Secure data sharing is a basic demand when data was outsourced to a cloud server. Attribute-based proxy re-encryption has been a promising approach that allows secure encrypted data sharing on clouds. With attribute-based proxy re-encryption, a delegator can designate a set of shared users through issuing a re-encryption key which will be used by the cloud server to transform the delegator's encrypted data to the shared users’. However, the existing attribute-based proxy re-encryption schemes lack a mechanism of revoking users from the sharing set which is critical for data sharing systems. Therefore, in this article, we propose a concrete attribute-based proxy re-encryption with direct revocation mechanism (ABPRE-DR) for encrypted data sharing that enables the cloud server to directly revoke users from the original sharing set involved in the re-encryption key. We implemented the new schemes and evaluated its performance. The experimental results show that the proposed ABPRE-DR scheme is efficient and practical.
| Original language | English |
|---|---|
| Pages (from-to) | 949-960 |
| Number of pages | 12 |
| Journal | IEEE Transactions on Dependable and Secure Computing |
| Volume | 21 |
| Issue number | 2 |
| DOIs | |
| Publication status | Published - 1 Mar 2024 |
Keywords
- Attribute-based encryption
- cloud computing
- data sharing
- revocation
ASJC Scopus subject areas
- General Computer Science
- Electrical and Electronic Engineering