Authors: Yongkai Fan; Shengle Liu; Gang Tan; Xiaodong Lin
Addresses: Beijing Key Lab of Petroleum Data Mining, China University of Petroleum (Beijing), No. 18, Fuxue Road, Beijing, 102249, China ' Beijing Key Lab of Petroleum Data Mining, China University of Petroleum (Beijing), No. 18, Fuxue Road, Beijing, 102249, China ' Department of Computer Science and Engineering, Penn State University, 201 Old Main, University Park, PA, USA ' Department of Computer Science and Technology, China University of Petroleum (Beijing), No. 18, Fuxue Road, Beijing, 102249, China
Abstract: The popularity of versatile mobile devices has been increasing concerns about their security. How to protect the sensitive data is an urgent issue to be solved. Ciphertext-policy attribute-based encryption (CPABE) is a practical method for encrypting data and can utilise user's attributes to encrypt the sensitive data. In this paper, we propose a constant-size CPABE access control (CSCAC) model by using the Trusted Execution Environment to manage the dynamic key generated by attributes. The original data is encrypted by a symmetric storage key, then the storage key is encrypted under an AND-gate access policy. Only the user who possesses a set of attributes that satisfy the access policy can recover the storage key. The security analysis shows the design of this access control scheme reduces the burden and risk in the case of one single authority.
Keywords: constant-size ciphertext; access control; trusted execution environment; TEE; attribute-based encryption; ABE; security.
International Journal of Computational Science and Engineering, 2019 Vol.19 No.2, pp.162 - 168
Received: 21 Feb 2018
Accepted: 21 May 2018
Published online: 17 Jun 2019 *