Secure and Verifiable Policy Update Outsourcing for Big Data Access Control in the Cloud
Related Research Unit(s)
|Journal / Publication||IEEE Transactions on Parallel and Distributed Systems|
|Online published||17 Dec 2014|
|Publication status||Published - Dec 2015|
|Link to Scopus||https://www.scopus.com/record/display.uri?eid=2-s2.0-84961742903&origin=recordpage|
Due to the high volume and velocity of big data, it is an effective option to store big data in the cloud, as the cloud has capabilities of storing big data and processing high volume of user access requests. Attribute-based encryption (ABE) is a promising technique to ensure the end-To-end security of big data in the cloud. However, the policy updating has always been a challenging issue when ABE is used to construct access control schemes. A trivial implementation is to let data owners retrieve the data and re-encrypt it under the new access policy, and then send it back to the cloud. This method, however, incurs a high communication overhead and heavy computation burden on data owners. In this paper, we propose a novel scheme that enabling efficient access control with dynamic policy updating for big data in the cloud. We focus on developing an outsourced policy updating method for ABE systems. Our method can avoid the transmission of encrypted data and minimize the computation work of data owners, by making use of the previously encrypted data with old access policies. Moreover, we also propose policy updating algorithms for different types of access policies. Finally, we propose an efficient and secure method that allows data owner to check whether the cloud server has updated the ciphertexts correctly. The analysis shows that our policy updating outsourcing scheme is correct, complete, secure and efficient.
- ABAC, ABE, Access Control, Big Data, Cloud, Outsourcing, Policy Updating
IEEE Transactions on Parallel and Distributed Systems, Vol. 26, No. 12, 6987313, 12.2015, p. 3461-3470.
Research output: Journal Publications and Reviews (RGC: 21, 22, 62) › 21_Publication in refereed journal
Yang, K, Jia, X & Ren, K 2015, 'Secure and Verifiable Policy Update Outsourcing for Big Data Access Control in the Cloud', IEEE Transactions on Parallel and Distributed Systems, vol. 26, no. 12, 6987313, pp. 3461-3470. https://doi.org/10.1109/TPDS.2014.2380373
Yang, K., Jia, X., & Ren, K. (2015). Secure and Verifiable Policy Update Outsourcing for Big Data Access Control in the Cloud. IEEE Transactions on Parallel and Distributed Systems, 26(12), 3461-3470. . https://doi.org/10.1109/TPDS.2014.2380373
Yang K, Jia X, Ren K. Secure and Verifiable Policy Update Outsourcing for Big Data Access Control in the Cloud. IEEE Transactions on Parallel and Distributed Systems. 2015 Dec;26(12):3461-3470. 6987313. https://doi.org/10.1109/TPDS.2014.2380373