TY - JOUR
T1 - A secured proxy-based data sharing module in IoT environments using blockchain
AU - Agyekum, Kwame Opuni Boachie Obour
AU - Xia, Qi
AU - Sifah, Emmanuel Boateng
AU - Gao, Jianbin
AU - Xia, Hu
AU - Du, Xiaojiang
AU - Guizani, Moshen
N1 - Publisher Copyright:
© 2019 by the authors. Licensee MDPI, Basel, Switzerland.
PY - 2019/3/1
Y1 - 2019/3/1
N2 - Access and utilization of data are central to the cloud computing paradigm. With the advent of the Internet of Things (IoT), the tendency of data sharing on the cloud has seen enormous growth. With data sharing comes numerous security and privacy issues. In the process of ensuring data confidentiality and fine-grained access control to data in the cloud, several studies have proposed Attribute-Based Encryption (ABE) schemes, with Key Policy-ABE (KP-ABE) being the prominent one. Recent works have however suggested that the confidentiality of data is violated through collusion attacks between a revoked user and the cloud server. We present a secured and efficient Proxy Re-Encryption (PRE) scheme that incorporates an Inner-Product Encryption (IPE) scheme in which decryption of data is possible if the inner product of the private key, associated with a set of attributes specified by the data owner, and the associated ciphertext is equal to zero (0). We utilize a blockchain network whose processing node acts as the proxy server and performs re-encryption on the data. In ensuring data confidentiality and preventing collusion attacks, the data are divided into two, with one part stored on the blockchain network and the other part stored on the cloud. Our approach also achieves fine-grained access control.
AB - Access and utilization of data are central to the cloud computing paradigm. With the advent of the Internet of Things (IoT), the tendency of data sharing on the cloud has seen enormous growth. With data sharing comes numerous security and privacy issues. In the process of ensuring data confidentiality and fine-grained access control to data in the cloud, several studies have proposed Attribute-Based Encryption (ABE) schemes, with Key Policy-ABE (KP-ABE) being the prominent one. Recent works have however suggested that the confidentiality of data is violated through collusion attacks between a revoked user and the cloud server. We present a secured and efficient Proxy Re-Encryption (PRE) scheme that incorporates an Inner-Product Encryption (IPE) scheme in which decryption of data is possible if the inner product of the private key, associated with a set of attributes specified by the data owner, and the associated ciphertext is equal to zero (0). We utilize a blockchain network whose processing node acts as the proxy server and performs re-encryption on the data. In ensuring data confidentiality and preventing collusion attacks, the data are divided into two, with one part stored on the blockchain network and the other part stored on the cloud. Our approach also achieves fine-grained access control.
KW - Attribute-Based Encryption (ABE)
KW - Blockchain
KW - Cyber-security
KW - Fine-grained access control
KW - Inner-Product Encryption (IPE)
KW - Internet of Things (IoT)
KW - Proxy re-encryption
UR - http://www.scopus.com/inward/record.url?scp=85063999144&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85063999144&partnerID=8YFLogxK
U2 - 10.3390/s19051235
DO - 10.3390/s19051235
M3 - Article
C2 - 30862110
AN - SCOPUS:85063999144
SN - 1424-8220
VL - 19
JO - Sensors (Switzerland)
JF - Sensors (Switzerland)
IS - 5
M1 - 1235
ER -