Towards efficient, secure, and fine-grained access control system in MSNs with flexible revocations

Shi-Feng Sun, Chen Lyu, Dawu Gu, Yuanyuan Zhang, Yanli Ren

Research output: Contribution to journalArticleResearchpeer-review

Abstract

With the pervasiveness of mobile communications, MSNs have become a promising networking paradigm for users to share contents with others through mobile devices. This convenience comes at the cost of some serious security and privacy issues. In this work, we propose a novel privacy-preserving scheme for MSNs, which can efficiently solve some of the most serious security and privacy issues such as data confidentiality, fine-grained access control, and flexible revocation. In particular, we leverage the attribute based encryption technique to realize fine-grained access control over encrypted data. Moreover, we enhance this technique and design a flexible and fine-grained revocation mechanism which enables not only efficient user revocation but also efficient attribute revocation. As we show, our system can achieve both forward secrecy and backward secrecy using such mechanism. We compare our scheme with other related works and show that not only most of the previous works suffer from larger size of encrypted data but also their decryption time grows linearly with the complexity of access policies. In comparison, our scheme achieves higher efficiency and smaller computation time while consuming lesser storage space. We provide extensive analysis and performance evaluation to demonstrate the security, scalability, and efficiency of our proposed framework.

Original languageEnglish
Article number857405
Number of pages15
JournalInternational Journal of Distributed Sensor Networks
Volume2015
DOIs
Publication statusPublished - 2015
Externally publishedYes

Cite this

@article{9cacbaee59da49489eb163d0fd9be41d,
title = "Towards efficient, secure, and fine-grained access control system in MSNs with flexible revocations",
abstract = "With the pervasiveness of mobile communications, MSNs have become a promising networking paradigm for users to share contents with others through mobile devices. This convenience comes at the cost of some serious security and privacy issues. In this work, we propose a novel privacy-preserving scheme for MSNs, which can efficiently solve some of the most serious security and privacy issues such as data confidentiality, fine-grained access control, and flexible revocation. In particular, we leverage the attribute based encryption technique to realize fine-grained access control over encrypted data. Moreover, we enhance this technique and design a flexible and fine-grained revocation mechanism which enables not only efficient user revocation but also efficient attribute revocation. As we show, our system can achieve both forward secrecy and backward secrecy using such mechanism. We compare our scheme with other related works and show that not only most of the previous works suffer from larger size of encrypted data but also their decryption time grows linearly with the complexity of access policies. In comparison, our scheme achieves higher efficiency and smaller computation time while consuming lesser storage space. We provide extensive analysis and performance evaluation to demonstrate the security, scalability, and efficiency of our proposed framework.",
author = "Shi-Feng Sun and Chen Lyu and Dawu Gu and Yuanyuan Zhang and Yanli Ren",
year = "2015",
doi = "10.1155/2015/857405",
language = "English",
volume = "2015",
journal = "International Journal of Distributed Sensor Networks",
issn = "1550-1329",
publisher = "SAGE Publications Ltd",

}

Towards efficient, secure, and fine-grained access control system in MSNs with flexible revocations. / Sun, Shi-Feng; Lyu, Chen; Gu, Dawu; Zhang, Yuanyuan; Ren, Yanli.

In: International Journal of Distributed Sensor Networks, Vol. 2015, 857405, 2015.

Research output: Contribution to journalArticleResearchpeer-review

TY - JOUR

T1 - Towards efficient, secure, and fine-grained access control system in MSNs with flexible revocations

AU - Sun, Shi-Feng

AU - Lyu, Chen

AU - Gu, Dawu

AU - Zhang, Yuanyuan

AU - Ren, Yanli

PY - 2015

Y1 - 2015

N2 - With the pervasiveness of mobile communications, MSNs have become a promising networking paradigm for users to share contents with others through mobile devices. This convenience comes at the cost of some serious security and privacy issues. In this work, we propose a novel privacy-preserving scheme for MSNs, which can efficiently solve some of the most serious security and privacy issues such as data confidentiality, fine-grained access control, and flexible revocation. In particular, we leverage the attribute based encryption technique to realize fine-grained access control over encrypted data. Moreover, we enhance this technique and design a flexible and fine-grained revocation mechanism which enables not only efficient user revocation but also efficient attribute revocation. As we show, our system can achieve both forward secrecy and backward secrecy using such mechanism. We compare our scheme with other related works and show that not only most of the previous works suffer from larger size of encrypted data but also their decryption time grows linearly with the complexity of access policies. In comparison, our scheme achieves higher efficiency and smaller computation time while consuming lesser storage space. We provide extensive analysis and performance evaluation to demonstrate the security, scalability, and efficiency of our proposed framework.

AB - With the pervasiveness of mobile communications, MSNs have become a promising networking paradigm for users to share contents with others through mobile devices. This convenience comes at the cost of some serious security and privacy issues. In this work, we propose a novel privacy-preserving scheme for MSNs, which can efficiently solve some of the most serious security and privacy issues such as data confidentiality, fine-grained access control, and flexible revocation. In particular, we leverage the attribute based encryption technique to realize fine-grained access control over encrypted data. Moreover, we enhance this technique and design a flexible and fine-grained revocation mechanism which enables not only efficient user revocation but also efficient attribute revocation. As we show, our system can achieve both forward secrecy and backward secrecy using such mechanism. We compare our scheme with other related works and show that not only most of the previous works suffer from larger size of encrypted data but also their decryption time grows linearly with the complexity of access policies. In comparison, our scheme achieves higher efficiency and smaller computation time while consuming lesser storage space. We provide extensive analysis and performance evaluation to demonstrate the security, scalability, and efficiency of our proposed framework.

UR - http://www.scopus.com/inward/record.url?scp=84937108475&partnerID=8YFLogxK

U2 - 10.1155/2015/857405

DO - 10.1155/2015/857405

M3 - Article

VL - 2015

JO - International Journal of Distributed Sensor Networks

JF - International Journal of Distributed Sensor Networks

SN - 1550-1329

M1 - 857405

ER -