Abstract
With the increasing development of pervasive computing
and wireless bandwidth communication, more mobile devices
are used to access sensitive data stored in remote servers.
In such applications, a practical issue emerges such as
how to exploit the sufficient resource of a server so that the
file owners can enforce fine-grained access control over the
remotely stored files, while enable resource-limited mobile
devices to easily access the protected data, especially if the
storage server maintained by a third party is untrusted. This
challenge mainly arises from the asymmetric capacity among
the participants, i.e., the capacity limited mobile devices and
the resource abundant server (and file owners equipped with
fixed computers). To meet the security requirements in mobile
access to sensitive data, we propose a new encryption
paradigm, referred to as asymmetric cross-cryptosystem reencryption
(ACCRE) by leveraging the asymmetric capacity
of the participants. In ACCRE, relatively light-weight
identity-based encryption (IBE) is deployed in mobile devices,
while resource-consuming but versatile identity-based
broadcast encryption (IBBE) is deployed in servers and fixed
computers of the file owners. The core of ACCRE is a novel
ciphertext conversion mechanism that allows an authorized
proxy to convert a complicated IBBE ciphertext into a
simple IBE ciphertext affordable to mobile devices, without
leaking any sensitive information to the proxy. Following
this paradigm, we propose an efficient ACCRE scheme with
its security formally reduced to the security of the underlying
IBE and IBBE schemes. Thorough theoretical analyses
and extensive experiments confirm that the scheme takes very small cost for mobile devices to access encrypted data
and is practical to secure mobile computing applications.
Original language | English |
---|---|
Title of host publication | ASIACCS'15 - Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security |
Editors | Jianying Zhou, Gail-Joon Ahn |
Place of Publication | New York NY USA |
Publisher | Association for Computing Machinery (ACM) |
Pages | 393 - 404 |
Number of pages | 12 |
ISBN (Print) | 9781450332453 |
DOIs | |
Publication status | Published - 2015 |
Externally published | Yes |
Event | ACM Symposium on Information, Computer and Communications Security 2015 - Singapore, Singapore Duration: 14 Apr 2015 → 17 Apr 2015 Conference number: 10th https://dl.acm.org/doi/proceedings/10.1145/2714576 |
Conference
Conference | ACM Symposium on Information, Computer and Communications Security 2015 |
---|---|
Abbreviated title | AsiaCCS 2015 |
Country/Territory | Singapore |
City | Singapore |
Period | 14/04/15 → 17/04/15 |
Internet address |
Keywords
- Data Security
- Identity-based broadcast encryption
- Identitybased encryption
- Proxy re-encryption