Blockchain-based CP-ABE System Using ECC for Cloud Storage
DOI:
https://doi.org/10.21467/proceedings.7.6.59Keywords:
Blockchain, CP-ABE, ECCAbstract
Cloud storage has revolutionized data storage and access, offering a convenient and scalable solution for storing large amounts of data. However, it also raises issues related to security and privacy, especially after storing the sensitive information on remote servers. In this context, attribute-based encryption (ABE) has added substantial consideration by means of a solution to enforce precise access control on encrypted information. A notable form of ABE is Ciphertext-Policy Attribute-Based Encryption (CP-ABE), allowing the data owner to state access rules depends on attributes (such as roles, permissions, or other user-specific factors). The application of Elliptic Curve Cryptography (ECC) in CP-ABE enhances the system’s efficiency and security. On top of this, integrating blockchain technology can provide decentralized and immutable record-keeping, which enhances the transparency, trust, and integrity of the encryption and decryption processes. A Blockchain-based CP-ABE system using ECC provides a robust, secure, and decentralized solution for managing access control to encrypted cloud storage. The integration of blockchain ensures transparency, immutability, and auditability, while ECC offers significant security with lower computational burden. By combining these technologies, we can build an effective and safe framework for protecting sensitive information in cloud environments, ensuring that access to and decryption of the information is restricted to authorized users only based on well-defined access policies.
References
[1] P. Mell and T. Grance, “The NIST Definition of Cloud Computing,” Future Generation Computer Systems, vol. 25, no. 6, p. 17, 2011, doi: 10.1109/EIDWT.2013.106.
[2] A. Sahai and B. Waters, “LNCS 3494 - Fuzzy Identity-Based Encryption,” 2005.
[3] V. Goyal, O. Pandey, A. Sahai, and B. Waters, “Attribute-Based Encryption for Fine-Grained Access Control of Encrypted Data,” 2006.
[4] J. Bethencourt, A. S. Ucla, and B. Waters, “Ciphertext-Policy Attribute-Based Encryption,” 2007.
[5] M. Horváth, “Attribute-Based Encryption Optimized for Cloud Computing.”
[6] D. Yaga, P. Mell, N. Roby, and K. Scarfone, “Blockchain Technology Overview,” 2018. doi: 10.6028/NIST.IR.8202.
[7] S. Singh, Y. S. Jeong, and J. H. Park, “A survey on cloud computing security: Issues, threats, and solutions,” Journal of Network and Computer Applications, vol. 75, pp. 200–222, Nov. 2016, doi: 10.1016/j.jnca.2016.09.002.
[8] P. Yang, N. Xiong, and J. Ren, “Data Security and Privacy Protection for Cloud Storage: A Survey,” IEEE Access, vol. 8, pp. 131723–131740, 2020, doi: 10.1109/ACCESS.2020.3009876.
[9] P. J. Sun, “Security and privacy protection in cloud computing: Discussions and challenges,” Journal of Network and Computer Applications, vol. 160, no. August 2019, p. 102642, 2020, doi: 10.1016/j.jnca.2020.102642.
[10] P. Sharma, R. Jindal, and M. D. Borah, “Blockchain Technology for Cloud Storage: A Systematic Literature Review,” Sep. 01, 2020, Association for Computing Machinery. doi: 10.1145/3403954.
[11] J. H. Park and J. H. Park, “Blockchain security in cloud computing: Use cases, challenges, and solutions,” Symmetry (Basel), vol. 9, no. 8, pp. 1–13, 2017, doi: 10.3390/sym9080164.
[12] J. Li, J. Wu, and L. Chen, “Block-secure: Blockchain based scheme for secure P2P cloud storage,” Inf Sci (N Y), vol. 465, pp. 219–231, Oct. 2018, doi: 10.1016/j.ins.2018.06.071.
[13] M. A. Darwish, E. Yafi, M. A. Al Ghamdi, and A. Almasri, “Decentralizing Privacy Implementation at Cloud Storage Using Blockchain-Based Hybrid Algorithm,” Arab J Sci Eng, vol. 45, no. 4, pp. 3369–3378, Apr. 2020, doi: 10.1007/s13369-020-04394-w.
[14] G. Lin, H. Hong, and Z. Sun, “A Collaborative Key Management Protocol in Ciphertext Policy Attribute-Based Encryption for Cloud Data Sharing,” IEEE Access, vol. 5, pp. 9464–9475, 2017, doi: 10.1109/ACCESS.2017.2707126.
[15] V. Odelu and A. K. Das, “Design of a new CP-ABE with constant-size secret keys for lightweight devices using elliptic curve cryptography,” Security and Communication Networks, vol. 9, no. 17, pp. 4048–4059, Nov. 2016, doi: 10.1002/sec.1587.
[16] S. Wang, K. Liang, J. K. Liu, J. Chen, J. Yu, and W. Xie, “Attribute-Based Data Sharing Scheme Revisited in Cloud Computing,” IEEE Transactions on Information Forensics and Security, vol. 11, no. 8, pp. 1661–1673, Aug. 2016, doi: 10.1109/TIFS.2016.2549004.
[17] R. M. Basavarajegowda and S. M. Sundaram, “Enhanced CP-ABE with RSA for Secure and Revocable Data Transmission of Big Data in Cloud,” International Journal of Intelligent Engineering and Systems, vol. 15, no. 2, pp. 47–56, Apr. 2022, doi: 10.22266/ijies2022.0430.05.
[18] S. Ding, C. Li, and H. Li, “A Novel Efficient Pairing-Free CP-ABE Based on Elliptic Curve Cryptography for IoT,” IEEE Access, vol. 6, pp. 27336–27345, May 2018, doi: 10.1109/ACCESS.2018.2836350.
[19] R. Cheng, K. Wu, Y. Su, W. Li, W. Cui, and J. Tong, “An efficient ECC-based cp-ABE scheme for power IOT,” Processes, vol. 9, no. 7, Jul. 2021, doi: 10.3390/pr9071176.
[20] P. Sharma, R. Jindal, and M. D. Borah, “Blockchain-based decentralized architecture for cloud storage system,” Journal of Information Security and Applications, vol. 62, Nov. 2021, doi: 10.1016/j.jisa.2021.102970.
[21] Y. Zhang, X. Wei, J. Cao, J. Ning, Z. Ying, and D. Zheng, “Blockchain-Enabled decentralized Attribute-Based access control with policy hiding for smart healthcare,” Journal of King Saud University - Computer and Information Sciences, vol. 34, no. 10, pp. 8350–8361, Nov. 2022, doi: 10.1016/j.jksuci.2022.08.015.
[22] X. Yang and C. Zhang, “Blockchain-Based Multiple Authorities Attribute-Based Encryption for EHR Access Control Scheme,” Applied Sciences (Switzerland), vol. 12, no. 21, Nov. 2022, doi: 10.3390/app122110812.
[23] L. Hong, K. Zhang, J. Gong, and H. Qian, “A Practical and Efficient Blockchain-Assisted Attribute-Based Encryption Scheme for Access Control and Data Sharing,” Security and Communication Networks, vol. 2022, 2022, doi: 10.1155/2022/4978802.
[24] G. Sucharitha, V. Sitharamulu, S. N. Mohanty, A. Matta, and D. Jose, “Enhancing Secure Communication in the Cloud Through Blockchain Assisted-CP-DABE,” IEEE Access, vol. 11, pp. 99005–99015, 2023, doi: 10.1109/ACCESS.2023.3312609.
[25] U. Bodkhe et al., “Blockchain for Industry 4.0: A comprehensive review,” IEEE Access, vol. 8, pp. 79764–79800, 2020, doi: 10.1109/ACCESS.2020.2988579.
[26] D. Yaga, P. Mell, N. Roby, and K. Scarfone, “Blockchain Technology Overview Blockchain,” 2018.
[27] Y. Wang, L. Wei, X. Tong, X. Zhao, and M. Li, “CP-ABE based access control for cloud storage,” in Advances in Intelligent Systems and Computing, Springer Verlag, 2017, pp. 463–472. doi: 10.1007/978-3-319-38771-0_45.
[28] A. Beimel, “Secure Schemes for Secret Sharing and Key Distribution,” 1996. Accessed: Feb. 04, 2024. [Online]. Available: https://www.cs.bgu.ac.il/~beimel/Papers/thesis.pdf
[29] A. Lewko and B. Waters, “Decentralizing Attribute-Based Encryption,” in K.G. Paterson (Ed.): Eurocrypt 2011, LNCS 6632, pp. 568–588, 2011. Accessed: Feb. 04, 2024. [Online]. Available: https://link.springer.com/chapter/10.1007/978-3-642-20465-4_31
[30] Z. Liu, Z. Cao, D. S. Wong, and Z. Liu, “Efficient Generation of Linear Secret Sharing Scheme Matrices from Threshold Access Trees”, [Online]. Available: https://eprint.iacr.org/2010/374.pdf
Downloads
Published
Issue
Section
License
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
