An Efficient and Expressive Fully Policy-Hidden Ciphertext-Policy Attribute-Based Encryption Scheme for Satellite Service Systems-Reference-Cited by-同舟云学术

An Efficient and Expressive Fully Policy-Hidden Ciphertext-Policy Attribute-Based Encryption Scheme for Satellite Service Systems

Published:2024-09-05 Issue:9 Volume:13 Page:321
ISSN:2220-9964
Container-title:ISPRS International Journal of Geo-Information
language:en
Short-container-title:IJGI

Author:

Shi Jiaoli¹^ORCID,Hu Chao²,Zhang Shunli¹³,Zhou Qing¹,Mei Zhuolin¹⁴,Yao Shimao¹,Deng Anyuan¹

Affiliation:

1. School of Computer and Big Data Science, Jiujiang University, No. 551, Qianjin East Road, Jiujiang 332000, China

2. Institute of Ecological Civilization, Jiangxi University of Finance and Economics, Nanchang 330013, China

3. Qinghai Institute of Technology, Qinghai University, Xining 810016, China

4. Jiujiang Key Laboratory of Cyberspace and Information Security, Jiujiang University, Jiujiang 332000, China

Abstract

Satellite service systems transfer data from satellite providers to the big data industry, which includes data traders and data analytics companies. This system needs to provide access to numerous users whose specific identities are unknown. Ciphertext-Policy Attribute-Based Encryption (CP-ABE) allows unidentified users with the proper attributes to decrypt data, providing fine-grained access control of data. However, traditional CP-ABE does not protect access policies. Access policies are uploaded to the cloud, stored, and downloaded in plain text, making them vulnerable to privacy breaches. When the access policy is completely hidden, users need to use their own attributes to try matching one by one, which is an inefficient process. In order to efficiently hide the access policy fully, this paper introduces a new efficient and expressive Fully Policy-Hidden Ciphertext-Policy Attribute-Based Encryption scheme (CP-ABE-FPH), which integrates the 2-way handshake O-PSI method with the ROBDD method. The integration offers advantages: (1) High efficiency and high expressiveness. The access policy using ROBDD is highly expressive but computationally intensive due to its recursive nature. This shortcoming is overcome in CP-ABE-FPH using the proposed O-PSI method, and the access policy is matched quickly and secretly. (2) High flexibility. The decryption process does not require the owner or the Key Generation Center (KGC) to be online, and system attributes can be added at any time. Security analysis shows that the access policy is fully hidden. Efficiency analysis and simulation results show that the proposed scheme is highly efficient in decryption compared with existing schemes.

Funder

National Science Foundation of China

Publisher

MDPI AG

Link

https://www.mdpi.com/2220-9964/13/9/321/pdf

Reference24 articles.

1. Georgiadou, Y., de By, R.A., and Kounadi, O. (2019). Location Privacy in the Wake of the GDPR. ISPRS Int. J. Geoinf., 8.

2. An Expressive Fully Policy-Hidden Ciphertext Policy Attribute-Based Encryption Scheme With Credible Verification Based on Blockchain;Zhang;IEEE Internet Things J.,2021

3. Lai, J., Deng, R.H., and Li, Y. (June, January 30). Fully Secure Cipertext-Policy Hiding CP-ABE. Proceedings of the 7th International Conference on Information Security Practice and Experience, Guangzhou, China.

4. Müller, S., and Katzenbeisser, S. (2011, January 27–28). Hiding the Policy in Cryptographic Access Control. Proceedings of the 7th International Workshop on Security and Trust Management, Copenhagen, Denamrk.

5. Attribute-Based Secure Data Sharing with Hidden Policies in Smart Grid;Hur;IEEE Trans. Parallel Distrib. Syst.,2013