Attribute-Based Encryption as a Service for Access Control in Large-Scale Organizations

被引：2

作者：

Bloemer, Johannes ^{[1
]}

Guenther, Peter ^{[2
]}

Krummel, Volker ^{[2
]}

Loeken, Nils ^{[1
]}

机构：

[1] Paderborn Univ, Paderborn, Germany

[2] Diebold Nixdorf, Paderborn, Germany

来源：

FOUNDATIONS AND PRACTICE OF SECURITY (FPS 2017) | 2018年 / 10723卷

关键词：

D O I：

10.1007/978-3-319-75650-9_1

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

In this work, we propose a service infrastructure that provides confidentiality of data in the cloud. It enables information sharing with fine-grained access control among multiple tenants based on attribute-based encryption. Compared to the standard approach based on access control lists, our encryption as a service approach allows us to use cheap standard cloud storage in the public cloud and to mitigate a single point of attack. We use hardware security modules to protect long-term secret keys in the cloud. Hardware security modules provide high security but only relatively low performance. Therefore, we use attribute-based encryption with outsourcing to integrate hardware security modules into our micro-service oriented cloud architecture. As a result, we achieve elasticity, high performance, and high security at the same time.

引用

页码：3 / 17

页数：15

共 50 条

[1] Enforcing Access Control in Virtual Organizations Using Hierarchical Attribute-Based Encryption
Asim, Muhammad
Ignatenko, Tanya
Petkovic, Milan
Trivellato, Daniel
Zannone, Nicola
[J]. 2012 SEVENTH INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY AND SECURITY (ARES), 2012, : 212 - 217
[2] Levelled attribute-based encryption for hierarchical access control
Le, Huy Quoc
Le, Phi Thuong
Trinh, Sy Tuan
Susilo, Willy
Trinh, Viet Cuong
[J]. Computer Standards and Interfaces, 2025, 93
[3] On the Feasibility of Attribute-Based Encryption for WLAN Access Control
Pisa, Claudio
Dargahi, Tooska
Caponi, Alberto
Bianchi, Giuseppe
Blefari-Melazzi, Nicola
[J]. 2017 IEEE 13TH INTERNATIONAL CONFERENCE ON WIRELESS AND MOBILE COMPUTING, NETWORKING AND COMMUNICATIONS (WIMOB), 2017, : 783 - 790
[4] ABACaaS: Attribute-Based Access Control as a Service
Meshram, Augustee
Das, Saptarshi
Sural, Shamik
Vaidya, Jaideep
Atluri, Vijayalakshmi
[J]. PROCEEDINGS OF THE NINTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY (CODASPY '19), 2019, : 153 - 155
[5] Attribute-Based Access Control in Service Mesh
Ponomarev, Kirill Yu.
[J]. 2019 DYNAMICS OF SYSTEMS, MECHANISMS AND MACHINES (DYNAMICS), 2019,
[6] Cross-Domain Attribute-Based Access Control Encryption
Sedaghat, Mahdi
Preneel, Bart
[J]. CRYPTOLOGY AND NETWORK SECURITY, CANS 2021, 2021, 13099 : 3 - 23
[7] Attribute-based Encryption for Access Control Using Elementary Operations
Crampton, Jason
Pinto, Alexandre
[J]. 2014 IEEE 27TH COMPUTER SECURITY FOUNDATIONS SYMPOSIUM (CSF), 2014, : 125 - 139
[8] On Attribute-Based Encryption for Access Control to Multidimensional Data Structures
Epishkina, Anna
Zapechnikov, Sergey
[J]. BIOLOGICALLY INSPIRED COGNITIVE ARCHITECTURES (BICA) FOR YOUNG SCIENTISTS, 2018, 636 : 251 - 256
[9] Attribute-based Encryption for Cloud Computing Access Control: A Survey
Zhang, Yinghui
Deng, Robert H.
Xu, Shengmin
Sun, Jianfei
Li, Qi
Zheng, Dong
[J]. ACM COMPUTING SURVEYS, 2020, 53 (04)
[10] ABSTRACT: Access Control in Searchable Encryption with the use of Attribute-Based Encryption and SGX
Michalas, Antonis
Bakas, Alexandros
Hai-Van Dang
Zalitko, Alexandr
[J]. CCSW'19: PROCEEDINGS OF THE 2019 ACM SIGSAC CONFERENCE ON CLOUD COMPUTING SECURITY WORKSHOP, 2019, : 183 - 183

← 1 2 3 4 5 →