Toward Trustworthy Delegation: Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage

Changhee Hahn, Hyunsoo Kwon, Junbeom Hur

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

For building a secure cloud storage service on top of a public cloud infrastructure, attribute-based encryption (ABE) has been a preferred solution due to its flexible access control. ABE, however, incurs heavy computation cost on users during decryption. Thus, previous studies solved this problem by enabling cloud servers to perform a part of decryption operations on behalf of the users. In order to empower users to verify the correctness of the delegated decryption by the cloud, they employed a cryptographic commitment or message authentication code (MAC) to enable users to check the correctness of partial decryption of the cloud. However, the previous schemes fail to ensure the correctness of computation in the presence of malicious cloud servers. In this paper, we propose a novel and generic commitment scheme for ABE, which is secure against tampering attacks by malicious cloud servers. According to the performance analysis, the proposed scheme is only 0.5 ms slower on average than the previous commitment-based schemes and two to three times faster than the MAC-based scheme.

Original languageEnglish
Title of host publicationProceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services
PublisherIEEE Computer Society
Pages920-923
Number of pages4
ISBN (Electronic)9781538672358
DOIs
Publication statusPublished - 2018 Sep 7
Event11th IEEE International Conference on Cloud Computing, CLOUD 2018 - San Francisco, United States
Duration: 2018 Jul 22018 Jul 7

Publication series

NameIEEE International Conference on Cloud Computing, CLOUD
Volume2018-July
ISSN (Print)2159-6182
ISSN (Electronic)2159-6190

Other

Other11th IEEE International Conference on Cloud Computing, CLOUD 2018
CountryUnited States
CitySan Francisco
Period18/7/218/7/7

Fingerprint

Cryptography
Servers
Authentication
Access control
Costs

Keywords

  • Attribute-based encryption
  • Cloud computing
  • Outsourced decryption
  • Verifiability

ASJC Scopus subject areas

  • Artificial Intelligence
  • Information Systems
  • Software

Cite this

Hahn, C., Kwon, H., & Hur, J. (2018). Toward Trustworthy Delegation: Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage. In Proceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services (pp. 920-923). [8457904] (IEEE International Conference on Cloud Computing, CLOUD; Vol. 2018-July). IEEE Computer Society. https://doi.org/10.1109/CLOUD.2018.00136

Toward Trustworthy Delegation : Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage. / Hahn, Changhee; Kwon, Hyunsoo; Hur, Junbeom.

Proceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services. IEEE Computer Society, 2018. p. 920-923 8457904 (IEEE International Conference on Cloud Computing, CLOUD; Vol. 2018-July).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Hahn, C, Kwon, H & Hur, J 2018, Toward Trustworthy Delegation: Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage. in Proceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services., 8457904, IEEE International Conference on Cloud Computing, CLOUD, vol. 2018-July, IEEE Computer Society, pp. 920-923, 11th IEEE International Conference on Cloud Computing, CLOUD 2018, San Francisco, United States, 18/7/2. https://doi.org/10.1109/CLOUD.2018.00136
Hahn C, Kwon H, Hur J. Toward Trustworthy Delegation: Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage. In Proceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services. IEEE Computer Society. 2018. p. 920-923. 8457904. (IEEE International Conference on Cloud Computing, CLOUD). https://doi.org/10.1109/CLOUD.2018.00136
Hahn, Changhee ; Kwon, Hyunsoo ; Hur, Junbeom. / Toward Trustworthy Delegation : Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage. Proceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services. IEEE Computer Society, 2018. pp. 920-923 (IEEE International Conference on Cloud Computing, CLOUD).
@inproceedings{cde75f5ad47e4dcb9778d18f5d817b44,
title = "Toward Trustworthy Delegation: Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage",
abstract = "For building a secure cloud storage service on top of a public cloud infrastructure, attribute-based encryption (ABE) has been a preferred solution due to its flexible access control. ABE, however, incurs heavy computation cost on users during decryption. Thus, previous studies solved this problem by enabling cloud servers to perform a part of decryption operations on behalf of the users. In order to empower users to verify the correctness of the delegated decryption by the cloud, they employed a cryptographic commitment or message authentication code (MAC) to enable users to check the correctness of partial decryption of the cloud. However, the previous schemes fail to ensure the correctness of computation in the presence of malicious cloud servers. In this paper, we propose a novel and generic commitment scheme for ABE, which is secure against tampering attacks by malicious cloud servers. According to the performance analysis, the proposed scheme is only 0.5 ms slower on average than the previous commitment-based schemes and two to three times faster than the MAC-based scheme.",
keywords = "Attribute-based encryption, Cloud computing, Outsourced decryption, Verifiability",
author = "Changhee Hahn and Hyunsoo Kwon and Junbeom Hur",
year = "2018",
month = "9",
day = "7",
doi = "10.1109/CLOUD.2018.00136",
language = "English",
series = "IEEE International Conference on Cloud Computing, CLOUD",
publisher = "IEEE Computer Society",
pages = "920--923",
booktitle = "Proceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services",

}

TY - GEN

T1 - Toward Trustworthy Delegation

T2 - Verifiable Outsourced Decryption with Tamper-Resistance in Public Cloud Storage

AU - Hahn, Changhee

AU - Kwon, Hyunsoo

AU - Hur, Junbeom

PY - 2018/9/7

Y1 - 2018/9/7

N2 - For building a secure cloud storage service on top of a public cloud infrastructure, attribute-based encryption (ABE) has been a preferred solution due to its flexible access control. ABE, however, incurs heavy computation cost on users during decryption. Thus, previous studies solved this problem by enabling cloud servers to perform a part of decryption operations on behalf of the users. In order to empower users to verify the correctness of the delegated decryption by the cloud, they employed a cryptographic commitment or message authentication code (MAC) to enable users to check the correctness of partial decryption of the cloud. However, the previous schemes fail to ensure the correctness of computation in the presence of malicious cloud servers. In this paper, we propose a novel and generic commitment scheme for ABE, which is secure against tampering attacks by malicious cloud servers. According to the performance analysis, the proposed scheme is only 0.5 ms slower on average than the previous commitment-based schemes and two to three times faster than the MAC-based scheme.

AB - For building a secure cloud storage service on top of a public cloud infrastructure, attribute-based encryption (ABE) has been a preferred solution due to its flexible access control. ABE, however, incurs heavy computation cost on users during decryption. Thus, previous studies solved this problem by enabling cloud servers to perform a part of decryption operations on behalf of the users. In order to empower users to verify the correctness of the delegated decryption by the cloud, they employed a cryptographic commitment or message authentication code (MAC) to enable users to check the correctness of partial decryption of the cloud. However, the previous schemes fail to ensure the correctness of computation in the presence of malicious cloud servers. In this paper, we propose a novel and generic commitment scheme for ABE, which is secure against tampering attacks by malicious cloud servers. According to the performance analysis, the proposed scheme is only 0.5 ms slower on average than the previous commitment-based schemes and two to three times faster than the MAC-based scheme.

KW - Attribute-based encryption

KW - Cloud computing

KW - Outsourced decryption

KW - Verifiability

UR - http://www.scopus.com/inward/record.url?scp=85057466074&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85057466074&partnerID=8YFLogxK

U2 - 10.1109/CLOUD.2018.00136

DO - 10.1109/CLOUD.2018.00136

M3 - Conference contribution

AN - SCOPUS:85057466074

T3 - IEEE International Conference on Cloud Computing, CLOUD

SP - 920

EP - 923

BT - Proceedings - 2018 IEEE International Conference on Cloud Computing, CLOUD 2018 - Part of the 2018 IEEE World Congress on Services

PB - IEEE Computer Society

ER -