Secure publish and subscribe systems with efficient revocation

Sana Belguith, Shujie Cui, Muhammad Rizwan Asghar, Giovanni Russello

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

9 Citations (Scopus)

Abstract

User revocation is one of the main security issues in publish and subscribe (pub/sub) systems. Indeed, to ensure data confidentiality, the system should be able to remove malicious subscribers without affecting the functionalities and decoupling of authorised subscribers and publishers. To revoke a user, there are solutions, but existing schemes inevitably introduce high computation and communication overheads, which can ultimately affect the system capabilities. In this paper, we propose a novel revocation technique for pub/sub systems that can efficiently remove compromised subscribers without requiring regeneration and redistribution of new keys as well as re-encryption of existing data with those keys. Our proposed solution is such that a subscriber's interest is not revealed to curious brokers and published data can only be accessed by the authorised subscribers. Finally, the proposed protocol is secure against the collusion attacks between brokers and revoked subscribers.

Original languageEnglish
Title of host publicationThe 33rd Annual ACM Symposium on Applied Computing
EditorsDongwan Shin, Maria Lencastre
Place of PublicationNew York NY USA
PublisherAssociation for Computing Machinery (ACM)
Pages388-394
Number of pages7
ISBN (Electronic)9781450351911
DOIs
Publication statusPublished - 2018
Externally publishedYes
EventACM Symposium on Applied Computing 2018 - Pau, France
Duration: 9 Apr 201813 Apr 2018
Conference number: 33rd
https://dl.acm.org/doi/proceedings/10.1145/3167132 (Proceedings)
https://www.sigapp.org/sac/sac2018/ (Website)

Publication series

NameProceedings of the ACM Symposium on Applied Computing

Conference

ConferenceACM Symposium on Applied Computing 2018
Abbreviated titleSAC 2018
Country/TerritoryFrance
CityPau
Period9/04/1813/04/18
Internet address

Keywords

  • Collusion resistance
  • Publications' confidentiality
  • Secure pub/sub
  • Subscribers' privacy

Cite this