검색 상세

Securing Access Control in Cloud Computing

  • Changhee Hahn (한창희, 대학원 컴퓨터학과 소프트웨어전공)

초록/요약

This dissertation presents cryptographic methods for access control in cloud computing. In this setting, it is important to securely manage and manipulate data held by potentially untrusted cloud servers. To this end, a promising tool is attribute-based encryption because it enables successful data decryption only when a user’s privilege encoded in his private key satisfies an access policy associated with the encrypted data. In this paper, we propose a cipertext-polilcy attribute-based encryption (CP-ABE) scheme. In particular, we design CP-ABE equipped with useful capabilities including short ciphertexts, resistance to illegal key-sharing, and an ability to delegate computationally expensive operations to cloud servers. We also propose a supplementary method to verify the correctness of the outsourced computation. The combination of the proposed CP-ABE and the verification method leads to efficient and trustworthy access control in cloud computing.

more

목차

1 Introduction 1
2 Related Work 5
2.1 CP-ABE 5
2.2 Commitment 7
3 Background 9
3.1 Preliminaries for CP-ABE 9
3.1.1 Bilinear Map 9
3.1.2 Security Assumption 9
3.1.3 Access Policy 10
3.2 Preliminaries for Commitment 10
4 System and Security Model 12
4.1 System Model 12
4.1.1 System Model for CP-ABE 12
4.1.2 System Model for Commitment 15
4.2 Security Model 16
4.2.1 Security Model for CP-ABE 16
4.2.2 Security Model for Commitment 18
5 Scheme Construction 20
5.1 CP-ABE Scheme 20
5.2 Commitment Scheme 25
5.2.1 Application to ABE 26
5.2.2 Extension to Randomized Commitment Scheme 27
5.2.3 Discussion 28
6 Security Analysis 29
6.1 Security of CP-ABE Scheme 28
6.2 Security of Commitment Scheme 34
7 Performance Analysis 37
7.1 Performance of CP-ABE Scheme 37
7.2 Performance of Commitment Scheme 46
8 Conclusion 48
Bibliography 49
Acknowledgement 54

more
반출 Meta View 목록