Fine-grained data access control for distributed sensor networks

Research output: Contribution to journalArticle

14 Citations (Scopus)

Abstract

Distributed sensor networks are becoming a robust solution that allows users to directly access data generated by individual sensors. In many practical scenarios, fine-grained access control is a pivotal security requirement to enhance usability and protect sensitive sensor information from unauthorized access. Recently, there have been proposed many schemes to adapt public key cryptosystems into sensor systems consisting of high-end sensor nodes in order to enforce security policy efficiently. However, the drawback of these approaches is that the complexity of computation increases linear to the expressiveness of the access policy. Key-policy attribute-based encryption is a promising cryptographic solution to enforce fine-grained access policies on the sensor data. However, the problem of applying it to distributed sensor networks introduces several challenges with regard to the attribute and user revocation. In this paper, we propose an access control scheme using KP-ABE with efficient attribute and user revocation capability for distributed sensor networks that are composed of high-end sensor devices. They can be achieved by the proxy encryption mechanism which takes advantage of attribute-based encryption and selective group key distribution. The analysis results indicate that the proposed scheme achieves efficient user access control while requiring the same computation overhead at each sensor as the previous schemes.

Original languageEnglish
Pages (from-to)1235-1249
Number of pages15
JournalWireless Networks
Volume17
Issue number5
DOIs
Publication statusPublished - 2011 Jul 1
Externally publishedYes

Fingerprint

Access control
Sensor networks
Cryptography
Sensors
Sensor nodes

Keywords

  • Access control
  • Attribute-based encryption
  • Distributed sensor networks
  • Revocation

ASJC Scopus subject areas

  • Information Systems
  • Computer Networks and Communications
  • Electrical and Electronic Engineering

Cite this

Fine-grained data access control for distributed sensor networks. / Hur, Junbeom.

In: Wireless Networks, Vol. 17, No. 5, 01.07.2011, p. 1235-1249.

Research output: Contribution to journalArticle

@article{d566b3f058a040edb88ff0d294321399,
title = "Fine-grained data access control for distributed sensor networks",
abstract = "Distributed sensor networks are becoming a robust solution that allows users to directly access data generated by individual sensors. In many practical scenarios, fine-grained access control is a pivotal security requirement to enhance usability and protect sensitive sensor information from unauthorized access. Recently, there have been proposed many schemes to adapt public key cryptosystems into sensor systems consisting of high-end sensor nodes in order to enforce security policy efficiently. However, the drawback of these approaches is that the complexity of computation increases linear to the expressiveness of the access policy. Key-policy attribute-based encryption is a promising cryptographic solution to enforce fine-grained access policies on the sensor data. However, the problem of applying it to distributed sensor networks introduces several challenges with regard to the attribute and user revocation. In this paper, we propose an access control scheme using KP-ABE with efficient attribute and user revocation capability for distributed sensor networks that are composed of high-end sensor devices. They can be achieved by the proxy encryption mechanism which takes advantage of attribute-based encryption and selective group key distribution. The analysis results indicate that the proposed scheme achieves efficient user access control while requiring the same computation overhead at each sensor as the previous schemes.",
keywords = "Access control, Attribute-based encryption, Distributed sensor networks, Revocation",
author = "Junbeom Hur",
year = "2011",
month = "7",
day = "1",
doi = "10.1007/s11276-011-0345-8",
language = "English",
volume = "17",
pages = "1235--1249",
journal = "Wireless Networks",
issn = "1022-0038",
publisher = "Springer Netherlands",
number = "5",

}

TY - JOUR

T1 - Fine-grained data access control for distributed sensor networks

AU - Hur, Junbeom

PY - 2011/7/1

Y1 - 2011/7/1

N2 - Distributed sensor networks are becoming a robust solution that allows users to directly access data generated by individual sensors. In many practical scenarios, fine-grained access control is a pivotal security requirement to enhance usability and protect sensitive sensor information from unauthorized access. Recently, there have been proposed many schemes to adapt public key cryptosystems into sensor systems consisting of high-end sensor nodes in order to enforce security policy efficiently. However, the drawback of these approaches is that the complexity of computation increases linear to the expressiveness of the access policy. Key-policy attribute-based encryption is a promising cryptographic solution to enforce fine-grained access policies on the sensor data. However, the problem of applying it to distributed sensor networks introduces several challenges with regard to the attribute and user revocation. In this paper, we propose an access control scheme using KP-ABE with efficient attribute and user revocation capability for distributed sensor networks that are composed of high-end sensor devices. They can be achieved by the proxy encryption mechanism which takes advantage of attribute-based encryption and selective group key distribution. The analysis results indicate that the proposed scheme achieves efficient user access control while requiring the same computation overhead at each sensor as the previous schemes.

AB - Distributed sensor networks are becoming a robust solution that allows users to directly access data generated by individual sensors. In many practical scenarios, fine-grained access control is a pivotal security requirement to enhance usability and protect sensitive sensor information from unauthorized access. Recently, there have been proposed many schemes to adapt public key cryptosystems into sensor systems consisting of high-end sensor nodes in order to enforce security policy efficiently. However, the drawback of these approaches is that the complexity of computation increases linear to the expressiveness of the access policy. Key-policy attribute-based encryption is a promising cryptographic solution to enforce fine-grained access policies on the sensor data. However, the problem of applying it to distributed sensor networks introduces several challenges with regard to the attribute and user revocation. In this paper, we propose an access control scheme using KP-ABE with efficient attribute and user revocation capability for distributed sensor networks that are composed of high-end sensor devices. They can be achieved by the proxy encryption mechanism which takes advantage of attribute-based encryption and selective group key distribution. The analysis results indicate that the proposed scheme achieves efficient user access control while requiring the same computation overhead at each sensor as the previous schemes.

KW - Access control

KW - Attribute-based encryption

KW - Distributed sensor networks

KW - Revocation

UR - http://www.scopus.com/inward/record.url?scp=79959506807&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=79959506807&partnerID=8YFLogxK

U2 - 10.1007/s11276-011-0345-8

DO - 10.1007/s11276-011-0345-8

M3 - Article

AN - SCOPUS:79959506807

VL - 17

SP - 1235

EP - 1249

JO - Wireless Networks

JF - Wireless Networks

SN - 1022-0038

IS - 5

ER -