The Cloud we Share: Access Control on Symmetrically Encrypted Data in Untrusted Clouds

Bakas, A., Dang, H., Michalas, A. and Zalitko, A. 2020. The Cloud we Share: Access Control on Symmetrically Encrypted Data in Untrusted Clouds. IEEE Access. https://doi.org/10.1109/ACCESS.2020.3038838

TitleThe Cloud we Share: Access Control on Symmetrically Encrypted Data in Untrusted Clouds
TypeJournal article
AuthorsBakas, A., Dang, H., Michalas, A. and Zalitko, A.
Abstract

Along with the rapid growth of cloud environments, rises the problem of secure data storage. – a problem that both businesses and end-users take into consideration before moving their data online. Recently, a lot of solutions have been proposed based either on Symmetric Searchable Encryption (SSE) or Attribute-Based Encryption (ABE). SSE is an encryption technique that offers security against both internal and external attacks. However, since in an SSE scheme, a single key is used to encrypt everything, revoking a user would imply downloading the entire encrypted database and re-encrypt it with a fresh key. On the other hand, in an ABE scheme, the problem of revocation can be addressed. Unfortunately, though, the proposed solutions are based on the properties of the underlying ABE scheme and hence, the revocation costs grow along with the complexity of the policies. To this end, we use these two cryptographic techniques that squarely fit cloud-based environments to design a hybrid encryption scheme based on ABE and SSE in such a way that we utilize the best out of both of them. Moreover, we exploit the functionalities offered by Intel’s SGX to design a revocation mechanism and an access control one, that are agnostic to the cryptographic primitives used in our construction.

KeywordsAccess Control, Attribute-Based Encryption, Cloud, Data Sharing, Scope, Secure storage, SGX, Symmetric Searchable Encryption
JournalIEEE Access
ISSN2169-3536
Year2020
PublisherIEEE
Accepted author manuscript
File Access Level
Open (open metadata and files)
Publisher's version
License
CC BY 4.0
File Access Level
Open (open metadata and files)
Digital Object Identifier (DOI)https://doi.org/10.1109/ACCESS.2020.3038838
Publication dates
Published04 Dec 2020

Related outputs

Cloud apps to‐go: Cloud portability with TOSCA and MiCADO
Deslauriers, J., Kiss, T., Ariyattu, Resmi C., Dang, H., Ullah, A., Bowden, James, Krefting, D., Pierantoni, G. and Terstyanszky, G. 2020. Cloud apps to‐go: Cloud portability with TOSCA and MiCADO. Concurrency and Computation: Practice and Experience. 33 (19). https://doi.org/10.1002/cpe.6093

Describing and Processing Topology and Quality of Service Parameters of Applications in the Cloud
Pierantoni, G., Kiss, T., Terstyanszky, G., Deslauriers, J., Gesmier, G. and Dang, H. 2020. Describing and Processing Topology and Quality of Service Parameters of Applications in the Cloud. Journal of Grid Computing. 18, p. 761–778. https://doi.org/10.1007/s10723-020-09524-0

A Secure Cloud-based Platform to Host Healthcare Applications
Pierantoni, G., Kiss, T., Terstyanszky, G., Dang, H.V., Delgado Olabarriaga, S., Tuler de Olivera, M., Yigzaw, K. Y., Belika, J. G., Krefting, D. and Penzel, T. 2019. A Secure Cloud-based Platform to Host Healthcare Applications. Gesing, S. (ed.) 11th International Workshop on Science Gateways, IWSG 2019. Ljubljana, Slovenia 12 - 14 Jun 2019

Towards Secure Cloud Orchestration for Multi-Cloud Deployments
Paladi, N., Michalas, A. and Dang, H. 2018. Towards Secure Cloud Orchestration for Multi-Cloud Deployments. The 5th Workshop on CrossCloud Infrastructures & Platforms. Porto, Portugal 23 - 26 Apr 2018 ACM.

Permalink - https://westminsterresearch.westminster.ac.uk/item/v273q/the-cloud-we-share-access-control-on-symmetrically-encrypted-data-in-untrusted-clouds


Share this
Tweet
Email

Usage statistics

13 total views
26 total downloads
0 views this month
0 downloads this month
These values are for the period from September 2nd 2018, when this repository was created

Export as