Article: Efficient revocable CP-ABE for big data access control in cloud computing Journal: International Journal of Security and Networks (IJSN) 2019 Vol.14 No.3 pp.119 - 132 Abstract: Due to huge volume of big data, cloud is a better choice to store big data. Since the cloud is not trustworthy, privacy and access control is a big concern. Ciphertext policy attribute-based encryption (CP-ABE) is a promising technique to enable both privacy and access control in the cloud. However, directly applying CP-ABE scheme for big data in the cloud is a challenging task because of revocation. Existing CP-ABE with revocation schemes are lacking in efficiency. In this paper, we propose an efficient revocable CP-ABE (R-CP-ABE) scheme for big data access control in cloud using proxy-based updates in which the proxy server performs the ciphertext and secret key updates instead of data owner and data user respectively during revocation. This outsourced updates during revocation reduces the communication and computation overhead of data owner and data users. In security analysis, we prove that our R-CP-ABE scheme is secure against chosen plain-text and user collusion attacks. In addition, we also show that our scheme achieves forward and backward secrecy. The performance analysis demonstrates that our method is efficient when comparing with existing schemes. Inderscience Publishers - linking academia, business and industry through research

Title: Efficient revocable CP-ABE for big data access control in cloud computing

Authors: Praveen Kumar Premkamal; Syam Kumar Pasupuleti; P.J.A. Alphonse

Addresses: Department of Computer Applications, National Institute of Technology, Tiruchirappalli, India ' Institute for Development and Research in Banking Technology, Castle Hills, Road No.1, Masab Tank, Hyderabad, India ' Department of Computer Applications, National Institute of Technology, Tiruchirappalli, India

Abstract: Due to huge volume of big data, cloud is a better choice to store big data. Since the cloud is not trustworthy, privacy and access control is a big concern. Ciphertext policy attribute-based encryption (CP-ABE) is a promising technique to enable both privacy and access control in the cloud. However, directly applying CP-ABE scheme for big data in the cloud is a challenging task because of revocation. Existing CP-ABE with revocation schemes are lacking in efficiency. In this paper, we propose an efficient revocable CP-ABE (R-CP-ABE) scheme for big data access control in cloud using proxy-based updates in which the proxy server performs the ciphertext and secret key updates instead of data owner and data user respectively during revocation. This outsourced updates during revocation reduces the communication and computation overhead of data owner and data users. In security analysis, we prove that our R-CP-ABE scheme is secure against chosen plain-text and user collusion attacks. In addition, we also show that our scheme achieves forward and backward secrecy. The performance analysis demonstrates that our method is efficient when comparing with existing schemes.

Keywords: cloud computing; privacy; access control; CP-ABE; big data; user revocation; attribute revocation.

DOI: 10.1504/IJSN.2019.101411

International Journal of Security and Networks, 2019 Vol.14 No.3, pp.119 - 132

Received: 08 Aug 2018
Accepted: 19 Jan 2019
Published online: 07 Aug 2019 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Efficient revocable CP-ABE for big data access control in cloud computing

Keep up-to-date