Access Control Scheme Supporting Userand Attribute Revocation in Fog Computing

doi:10.13190/j.jbupt.2020-092

Journal of Beijing University of Posts and Telecommunications ›› 2020, Vol. 43 ›› Issue (6): 88-95.doi: 10.13190/j.jbupt.2020-092

• PAPERS • Previous Articles Next Articles

Access Control Scheme Supporting Userand Attribute Revocation in Fog Computing

WANG Zheng¹, LI Ling¹, LI Na²

1. College of Information and Computer, Taiyuan University of Technology, Jinzhong 030600, China;
2. State Grid Shanxi Electric Power Company, Taiyuan 030024, China

Received:2020-07-17 Online:2020-12-28 Published:2020-11-30

Abstract

Abstract: In fog computing, attribute-based encryption technology not only solves the problem of fine-grained access control of data, but also brings the problem of user and attribute revocation. To solve this problem, an access control scheme that supports user and attribute revocation in fog computing is proposed. The proposed scheme improves the existing access control scheme based on attribute group revocation attributes, making it used in fog computing and improving the efficiency of key update. In addition, users can be revoked by fog nodes. In order to reduce the burden on the user side, part of the calculation overhead is transferred from the user side to the adjacent fog node. The security analysis based on the decisional bilinear diffie-hellman (DBDH) assumption shows that the proposed scheme can resist chosen plaintext attack. Finally, the scheme is analyzed in both theory and experiment. The analysis results show that the proposed scheme has high revocation efficiency and practical value.

Key words: fog computing, access control, revocation, outsourcing, attribute-based encryption

CLC Number:

TP309

WANG Zheng, LI Ling, LI Na. Access Control Scheme Supporting Userand Attribute Revocation in Fog Computing[J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(6): 88-95.

References

[1] Bonomi F, Milito R, Zhu Jiang, et al. Fog computing and its role in the internet of things[C]//Proceedings of the First Edition of the MCC Workshop on Mobile Cloud Computing. New York:ACM, 2012:13-16.
[2] Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute-based encryption[C]//2007 IEEE Symposium on Security and Privacy(SP'07). Berkeley:IEEE, 2007:321-334.
[3] Ostrovsky R, Sahai A, Waters B. Attribute-based encryption with non-monotonic access structures[C]//Proceedings of the 14th ACM Conference on Computer and Communications Security. New York:ACM, 2007:195-203.
[4] Li Yang, Zhu Jianming, Wang Xiuli, et al. Optimized ciphertext-policy attribute-based encryption with efficient revocation[J]. International Journal of Security & Its Applications, 2013, 7(6):385-394.
[5] 陈红松, 沈强磊. 云计算环境下支持高效撤销的新型属性基加密方案[J]. 北京邮电大学学报, 2018, 41(3):113-118. Chen Hongsong, Shen Qianglei. A new type of attribute-based encryption scheme supporting efficient revocation in cloud computing environment[J]. Journal of Beijing University of Posts and Telecommunications, 2018, 41(3):113-118.
[6] 赵志远, 朱智强, 王建华, 等. 云存储环境下无密钥托管可撤销属性基加密方案研究[J]. 电子与信息学报, 2018, 40(1):1-10. Zhao Zhiyuan, Zhu Zhiqiang, Wang Jianhua, et al. Research on keyless escrow and revocable attribute-based encryption scheme in cloud storage environment[J]. Journal of Electronics and Information, 2018, 40(1):1-10.
[7] Attrapadung N, Imai H. Conjunctive broadcast and attribute-based encryption[C]//International Conference on Pairing-Based Cryptography. Berlin:Springer, 2009:248-265.
[8] Liu Zhen, Wong Duncan S. Practical attribute-based encryption:traitor tracing, revocation and large universe[J]. The Computer Journal, 2016, 59(7):983-1004.
[9] Debnath S, Bhuyan B. Large universe attribute based encryption enabled secured data access control for cloud storage with computation outsourcing[J]. Multiagent and Grid Systems, 2019, 15(2):99-119.
[10] Dhal K, Pattnaik P K, Rai S C. RACC:An efficient and revocable fine grained access control model for cloud storage[J]. International Journal of Knowledge-Based and Intelligent Engineering Systems, 2019, 23(1):21-32.
[11] Lian Huijie, Wang Qingxian, Wang Guangbo. Large universe ciphertext-policy attribute-based encryption with attribute level user revocation in cloud storage[J]. International Arab Journal of Information Technology, 2020, 17(1):107-117.
[12] Li Dawei, Liu Jianwei, Wu Qianhong, et al. Efficient CCA2 secure flexible and publicly-verifiable fine-grained access control in fog computing[J]. IEEE Access, 2019, 7:11688-11697.
[13] Hur J, Noh D K. Attribute-based access control with efficient revocation in data outsourcing systems[J]. IEEE Transactions on Parallel and Distributed Systems, 2010, 22(7):1214-1221.
[14] Li Jiguo, Yao Wei, Han Jinguang, et al. User collusion avoidance CP-ABE with efficient attribute revocation for cloud storage[J]. IEEE Systems Journal, 2017, 12(2):1767-1777.
[15] Zhang Peng, Chen Zehong, Liu Joseph K, et al. An efficient access control scheme with outsourcing capability and attribute update for fog computing[J]. Future Generation Computer Systems, 2018, 78:753-762.
[16] Qi Qinglin, Tao Fei. A smart manufacturing service system based on edge computing, fog computing, and cloud computing[J]. IEEE Access, 2019, 7:86769-86777.

Access Control Scheme Supporting Userand Attribute Revocation in Fog Computing

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments

[1]	KANG Haiyan, ZHANG Shasha. Cloud Storage and Blockchain Collaborative Access Control Method for Industrial Internet Data Sharing [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(3): 56-61.
[2]	YANG Hua, GENG Xuan, KONG Ning. A MAC Protocol for Wireless Networks Using Dueling-DDQN Algorithm [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(3): 25-30.
[3]	. Fog Node Contribution Degree Based Task Offloading Algorithm for Heterogeneous Cellular Network [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(2): 37-42.
[4]	. Content Caching Scheme Based on Federated Learning in Fog Computing Networks [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(2): 22-28.
[5]	LIU Yang, PENG Mu-gen. Satellite-Ground Fusion Intelligent Networking: Vision and Key Technologies [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(6): 1-12.
[6]	SHEN Bin, LIU Xiao-xiao, HUANG Xiao-ge. User Association Algorithm for Fog Computing Based on Multiple Attribute Decision Making Model [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(4): 68-74.
[7]	LIU Ning-chun, GAO Shuai, HOU Xin-di, GUO Xing-chang. A Data Access Control Scheme in Information-Centric Mobile Ad Hoc Networks [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(2): 54-60.
[8]	ZHANG Jing, LUO Shou-shan, YANG Yi-xian, XIN Yang. Private Sets Intersection Protocols Based on Cloud Computing [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(2): 13-18.
[9]	CHEN Hong-song, SHEN Qiang-lei. Attribute-Based Encryption Scheme With High Efficient Revocation in Cloud Computing Environment [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(3): 113-118.
[10]	ZHAO Bin, HE Jing-sha, ZHANG Yi-xuan, JI Xin-rong, XUAN Xing-gang. Knowledge Discovery of Authorization Rule Based on Rough Set in Trust Based Access Control [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(2): 48-52.
[11]	BAI Lei, FENG Zhen-xing, TIAN Li-qin. CDMA Based MAC Protocol for Underwater Sensor Networks [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(s1): 107-110.
[12]	CHEN Dan-wei, WU Qiong, CHEN Lin-ling, PAN Su. Attribute-Based Encryption without Central Authority: DMA-ABE [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(5): 77-80.
[13]	XIE Li-xia, BO Fu-kuan, DENG Qiang. Multi-Domain Role Trust Access Control Model [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(3): 83-88.
[14]	LIU Xing, YUAN Chao-wei, YANG Zhen, HU Zhong-wei. User Handoff and Access Control Based on Mobile Agent in Mobile Cloud Computing [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(2): 88-92.
[15]	ZHANG Li, FENG Ding-zhong. Outsourcing Resource Selection Model [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2013, 36(3): 113-116.