Cryptographic Hierarchical Access Control for Dynamic Structures

Autor: Arcangelo Castiglione, Alfredo De Santis, Xinyi Huang, Barbara Masucci, Aniello Castiglione, Francesco Palmieri
Rok vydání: 2016
Předmět:
Risk
Key Wrap
Computer Networks and Communications
Computer science
Distributed computing
0211 other engineering and technologies
Key distribution
Access control
Cryptography
0102 computer and information sciences
02 engineering and technology
Encryption
01 natural sciences
Public-key cryptography
adaptive adversary
dynamic structures
key assignment
provable security
Safety
Risk
Reliability and Quality

Security association
Static key
Key derivation function
Key encapsulation
Key management
Private information retrieval
Computer Science::Cryptography and Security
021110 strategic
defence & security studies

Key generation
business.industry
Key space
Computer security model
Symmetric-key algorithm
010201 computation theory & mathematics
Probabilistic encryption
Reliability and Quality
56-bit encryption
40-bit encryption
Attribute-based encryption
Safety
business
Cryptographic key types
Zdroj: IEEE Transactions on Information Forensics and Security. 11:2349-2364
ISSN: 1556-6021
1556-6013
DOI: 10.1109/tifs.2016.2581147
Popis: A hierarchical key assignment scheme is a method to assign some private information and encryption keys to a set of classes in a partially ordered hierarchy, in such a way that the private information of a higher class can be used to derive the keys of all classes lower down in the hierarchy. Sometimes, it is necessary to make dynamic updates to the hierarchy, in order to implement an access control policy which evolves with time. All security models for hierarchical key assignment schemes have been designed to cope with static hierarchies and do not consider the issue of performing dynamic updates to the hierarchy. In this paper, we define the concept of hierarchical key assignment schemes supporting dynamic updates, formalizing the relative security model. In particular, we provide the notion of security with respect to key indistinguishability, by considering the dynamic changes to the hierarchy. Moreover, we show how to construct a hierarchical key assignment scheme supporting dynamic updates, by using as a building block a symmetric encryption scheme. The proposed construction is provably secure with respect to key indistinguishability, and provides efficient key derivation and updating procedures, while requiring each user to store only a single private key.
Databáze: OpenAIRE