Extending the Ciphertext-Policy Attribute Based Encryption Scheme for Supporting Flexible Access Control

Bo Lang; Runhua Xu; Yawei Duan

doi:10.5220/0004525801470157

Extending the Ciphertext-Policy Attribute Based Encryption Scheme for Supporting Flexible Access Control

Bo Lang, Runhua Xu, Yawei Duan

2013

Abstract

Ciphertext-Policy Attribute Based Encryption (CP-ABE) is recognized as an important data protection mechanism in cloud computing environment for its flexible, scalable and fine-grained access control features. For enhancing its security, efficiency and policy flexibility, researchers have proposed different schemes of CP-ABE which have different kinds of access policy structures. However, as far as we know, most of these structures only support AND, OR and threshold attribute operations. In order to achieve more effective data self-protection mechanisms in open environments such as Cloud computing, CP-ABE needs to support more flexible attribute based policies, most of which are described using operators of NOT, <, \leq, >, \geq. This paper proposed an Extended CP-ABE(ECP-ABE) scheme based on the existing CP-ABE scheme. The ECP-ABE scheme can express any access policy represented by arithmetic comparison and logical expressions that involve NOT, <, \leq, >, \geq operators in addition to AND, OR and threshold operators. We prove the Chosen-plaintext Attack (CPA) security of our scheme under the Decisional Bilinear Diffie-Hellman (DBDH) assumption in the standard model, and also discuss the experimental results of the efficiency of ECP-ABE.

Download

Paper Citation

in Harvard Style

Lang B., Xu R. and Duan Y. (2013). Extending the Ciphertext-Policy Attribute Based Encryption Scheme for Supporting Flexible Access Control . In Proceedings of the 10th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2013) ISBN 978-989-8565-73-0, pages 147-157. DOI: 10.5220/0004525801470157

in Bibtex Style

@conference{secrypt13,
author={Bo Lang and Runhua Xu and Yawei Duan},
title={Extending the Ciphertext-Policy Attribute Based Encryption Scheme for Supporting Flexible Access Control},
booktitle={Proceedings of the 10th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2013)},
year={2013},
pages={147-157},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004525801470157},
isbn={978-989-8565-73-0},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 10th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2013)
TI - Extending the Ciphertext-Policy Attribute Based Encryption Scheme for Supporting Flexible Access Control
SN - 978-989-8565-73-0
AU - Lang B.
AU - Xu R.
AU - Duan Y.
PY - 2013
SP - 147
EP - 157
DO - 10.5220/0004525801470157