Cryptographic Hierarchical Access Control for Dynamic Structures
Autor: | Arcangelo Castiglione, Alfredo De Santis, Xinyi Huang, Barbara Masucci, Aniello Castiglione, Francesco Palmieri |
---|---|
Rok vydání: | 2016 |
Předmět: |
Risk
Key Wrap Computer Networks and Communications Computer science Distributed computing 0211 other engineering and technologies Key distribution Access control Cryptography 0102 computer and information sciences 02 engineering and technology Encryption 01 natural sciences Public-key cryptography adaptive adversary dynamic structures key assignment provable security Safety Risk Reliability and Quality Security association Static key Key derivation function Key encapsulation Key management Private information retrieval Computer Science::Cryptography and Security 021110 strategic defence & security studies Key generation business.industry Key space Computer security model Symmetric-key algorithm 010201 computation theory & mathematics Probabilistic encryption Reliability and Quality 56-bit encryption 40-bit encryption Attribute-based encryption Safety business Cryptographic key types |
Zdroj: | IEEE Transactions on Information Forensics and Security. 11:2349-2364 |
ISSN: | 1556-6021 1556-6013 |
DOI: | 10.1109/tifs.2016.2581147 |
Popis: | A hierarchical key assignment scheme is a method to assign some private information and encryption keys to a set of classes in a partially ordered hierarchy, in such a way that the private information of a higher class can be used to derive the keys of all classes lower down in the hierarchy. Sometimes, it is necessary to make dynamic updates to the hierarchy, in order to implement an access control policy which evolves with time. All security models for hierarchical key assignment schemes have been designed to cope with static hierarchies and do not consider the issue of performing dynamic updates to the hierarchy. In this paper, we define the concept of hierarchical key assignment schemes supporting dynamic updates, formalizing the relative security model. In particular, we provide the notion of security with respect to key indistinguishability, by considering the dynamic changes to the hierarchy. Moreover, we show how to construct a hierarchical key assignment scheme supporting dynamic updates, by using as a building block a symmetric encryption scheme. The proposed construction is provably secure with respect to key indistinguishability, and provides efficient key derivation and updating procedures, while requiring each user to store only a single private key. |
Databáze: | OpenAIRE |
Externí odkaz: |