Your search keyword '"Strong key"' showing total 2 results

1. Strong Key-Exposure Resilient Auditing for Secure Cloud Storage

Author

Huaqun Wang and Jia Yu

Subjects

021110 strategic, defence & security studies, Cloud computing security, Computer Networks and Communications, business.industry, Strong key, Computer science, 0211 other engineering and technologies, 020206 networking & telecommunications, Cloud computing, 02 engineering and technology, Audit, Computer security model, Computer security, computer.software_genre, Public-key cryptography, Resilience (organizational), Server, 0202 electrical engineering, electronic engineering, information engineering, Key (cryptography), Safety, Risk, Reliability and Quality, business, computer, Cloud storage

Abstract

Key exposure is one serious security problem for cloud storage auditing. In order to deal with this problem, cloud storage auditing scheme with key-exposure resilience has been proposed. However, in such a scheme, the malicious cloud might still forge valid authenticators later than the key-exposure time period if it obtains the current secret key of data owner. In this paper, we innovatively propose a paradigm named strong key-exposure resilient auditing for secure cloud storage, in which the security of cloud storage auditing not only earlier than but also later than the key exposure can be preserved. We formalize the definition and the security model of this new kind of cloud storage auditing and design a concrete scheme. In our proposed scheme, the key exposure in one time period doesn’t affect the security of cloud storage auditing in other time periods. The rigorous security proof and the experimental results demonstrate that our proposed scheme achieves desirable security and efficiency.

Published

2017

2. Achieving Simple, Secure and Efficient Hierarchical Access Control in Cloud Computing

Author

Xinyi Huang, Shaohua Tang, Yang Xiang, Xiaoyu Li, and Lingling Xu

Subjects

Theoretical computer science, business.industry, Strong key, Computer science, Distributed computing, 020206 networking & telecommunications, Access control, Cloud computing, 02 engineering and technology, Encryption, Theoretical Computer Science, Pseudorandom function family, Computational Theory and Mathematics, Hardware and Architecture, Elliptic curve cryptosystem, 0202 electrical engineering, electronic engineering, information engineering, Key (cryptography), 020201 artificial intelligence & image processing, Key derivation function, Elliptic curve cryptography, business, Key management, Software

Abstract

Access control is an indispensable security component of cloud computing, and hierarchical access control is of particular interest since in practice one is entitled to different access privileges. This paper presents a hierarchical key assignment scheme based on linear-geometry as the solution of flexible and fine-grained hierarchical access control in cloud computing. In our scheme, the encryption key of each class in the hierarchy is associated with a private vector and a public vector, and the inner product of the private vector of an ancestor class and the public vector of its descendant class can be used to derive the encryption key of that descendant class. The proposed scheme belongs to direct access schemes on hierarchical access control, namely each class at a higher level in the hierarchy can directly derive the encryption key of its descendant class without the need of iterative computation. In addition to this basic hierarchical key derivation, we also give a dynamic key management mechanism to efficiently address potential changes in the hierarchy. Our scheme only needs light computations over finite field and provides strong key indistinguishability under the assumption of pseudorandom functions. Furthermore, the simulation shows that our scheme has an optimized trade-off between computation consumption and storage space.

Published

2016