Attribute Revocable Attribute-Based Encryption with Forward Secrecy for Fine-Grained Access Control of Shared Data

Yoshiaki SHIRAISHI  Kenta NOMURA  Masami MOHRI  Takeru NARUSE  Masakatu MORII  

IEICE TRANSACTIONS on Information and Systems   Vol.E100-D   No.10   pp.2432-2439
Publication Date: 2017/10/01
Publicized: 2017/07/21
Online ISSN: 1745-1361
DOI: 10.1587/transinf.2016OFP0008
Type of Manuscript: Special Section PAPER (Special Section on Advanced Log Processing and Office Information Systems)
cryptographic cloud storage,  ciphertext-policy attribute-based encryption,  semantic security,  attribute revocation,  proxy re-encryption,  

Full Text: PDF>>
Buy this Article

Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is suitable for data access control on cloud storage systems. In ABE, to revoke users' attributes, it is necessary to make them unable to decrypt ciphertexts. Some CP-ABE schemes for efficient attribute revocation have been proposed. However, they have not been given a formal security proof against a revoked user, that is, whether they satisfy forward secrecy has not been shown or they just do not achieve fine-grained access control of shared data. We propose an attribute revocable attribute-based encryption with the forward secrecy for fine-grained access control of shared data. The proposed scheme can use both “AND” and “OR” policy and is IND-CPA secure under the Decisional Parallel Bilinear Diffie-Hellman Exponent assumption in the standard model.