TY - GEN
T1 - Attribute-based content distribution with hidden policy
AU - Yu, Shucheng
AU - Ren, Kui
AU - Lou, Wenjing
PY - 2008
Y1 - 2008
N2 - Access control in content distribution networks (CDNs) is a long-standing problem and has attracted extensive research. Traditional centralized access control approaches, such as reference monitor based approach, do not suit for CDNs as such networks are of large scale and geographically distributed in nature. Current CDNs usually resort to cryptographic-based distributed approaches for better fulfilling the goal of access control. Hence, it is highly critical to design and adapt appropriate cryptographic primitives for such purpose. In this paper, we propose a novel distributed access control approach for CDNs by exploiting a new cryptographic primitive called Ciphertext Policy Attributed-Based Encryption (CP-ABE). Our approach provides flexible yet fine-grained access control (per file level) so that the contents are available only to the authorized users. We further consider the protection of user privacy and enhance the current design of CP-ABE so that not only the contents themselves but also the access policies, which could lead to the revelation of sensitive user information, are well protected.
AB - Access control in content distribution networks (CDNs) is a long-standing problem and has attracted extensive research. Traditional centralized access control approaches, such as reference monitor based approach, do not suit for CDNs as such networks are of large scale and geographically distributed in nature. Current CDNs usually resort to cryptographic-based distributed approaches for better fulfilling the goal of access control. Hence, it is highly critical to design and adapt appropriate cryptographic primitives for such purpose. In this paper, we propose a novel distributed access control approach for CDNs by exploiting a new cryptographic primitive called Ciphertext Policy Attributed-Based Encryption (CP-ABE). Our approach provides flexible yet fine-grained access control (per file level) so that the contents are available only to the authorized users. We further consider the protection of user privacy and enhance the current design of CP-ABE so that not only the contents themselves but also the access policies, which could lead to the revelation of sensitive user information, are well protected.
UR - http://www.scopus.com/inward/record.url?scp=58049192731&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=58049192731&partnerID=8YFLogxK
U2 - 10.1109/NPSEC.2008.4664879
DO - 10.1109/NPSEC.2008.4664879
M3 - Conference contribution
AN - SCOPUS:58049192731
SN - 9781424426522
T3 - 4th IEEE Workshop on Secure Network Protocols, NPSec'08
SP - 39
EP - 44
BT - 4th IEEE Workshop on Secure Network Protocols, NPSec'08
T2 - 4th IEEE Workshop on Secure Network Protocols, NPSec'08
Y2 - 19 October 2008 through 19 October 2008
ER -