A hierarchical access control encryption scheme based on partially ordered set

Lintao Dang; Qiang Li; Jun Wu; Jianhua Li

doi:10.1145/3199478.3199485

A hierarchical access control encryption scheme based on partially ordered set

Lintao Dang, Qiang Li^*, Jun Wu, Jianhua Li

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Access Control Encryption (ACE) is a novel cryptographic primitive that controls not only what the users in a system can read, but also what they are allowed to write. Based on the concept of partially ordered set, this paper proposes a hierarchical access control encryption scheme (HACE), which, while maintaining the three properties of ACE: Correctness, No-Read Rule and No-Write Rule, enjoys the newly defined No-Leaking Hierarchy Rule under CPA attack in the random oracle model. This rule ensures that the sanitizer cannot learn any information about the access control hierarchy. The performance evaluation shows that the HACE scheme reduces the space overhead for the parameter storage compared with the ACE scheme for multiple identities.

Original language	English
Title of host publication	Proceedings of 2018 the 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018
Publisher	Association for Computing Machinery
Pages	122-127
Number of pages	6
ISBN (Electronic)	9781450363617
DOIs	https://doi.org/10.1145/3199478.3199485
Publication status	Published - 2018 Mar 16
Externally published	Yes
Event	2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018 - Guiyang, China Duration: 2018 Mar 16 → 2018 Mar 18

Publication series

Name	ACM International Conference Proceeding Series

Conference

Conference	2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018
Country/Territory	China
City	Guiyang
Period	18/3/16 → 18/3/18

Keywords

Access Control Encryption
Hierarchy
Partially Ordered Set

ASJC Scopus subject areas

Software
Human-Computer Interaction
Computer Vision and Pattern Recognition
Computer Networks and Communications

Access to Document

10.1145/3199478.3199485

Cite this

Dang, L., Li, Q., Wu, J., & Li, J. (2018). A hierarchical access control encryption scheme based on partially ordered set. In Proceedings of 2018 the 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018 (pp. 122-127). (ACM International Conference Proceeding Series). Association for Computing Machinery. https://doi.org/10.1145/3199478.3199485

A hierarchical access control encryption scheme based on partially ordered set. / Dang, Lintao; Li, Qiang; Wu, Jun et al.
Proceedings of 2018 the 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018. Association for Computing Machinery, 2018. p. 122-127 (ACM International Conference Proceeding Series).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Dang, L, Li, Q, Wu, J & Li, J 2018, A hierarchical access control encryption scheme based on partially ordered set. in Proceedings of 2018 the 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018. ACM International Conference Proceeding Series, Association for Computing Machinery, pp. 122-127, 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018, Guiyang, China, 18/3/16. https://doi.org/10.1145/3199478.3199485

@inproceedings{3fc19f80a0bb4f10b64a577195d109bb,

title = "A hierarchical access control encryption scheme based on partially ordered set",

abstract = "Access Control Encryption (ACE) is a novel cryptographic primitive that controls not only what the users in a system can read, but also what they are allowed to write. Based on the concept of partially ordered set, this paper proposes a hierarchical access control encryption scheme (HACE), which, while maintaining the three properties of ACE: Correctness, No-Read Rule and No-Write Rule, enjoys the newly defined No-Leaking Hierarchy Rule under CPA attack in the random oracle model. This rule ensures that the sanitizer cannot learn any information about the access control hierarchy. The performance evaluation shows that the HACE scheme reduces the space overhead for the parameter storage compared with the ACE scheme for multiple identities.",

keywords = "Access Control Encryption, Hierarchy, Partially Ordered Set",

author = "Lintao Dang and Qiang Li and Jun Wu and Jianhua Li",

note = "Funding Information: The authors appreciate the supports from the National Key R&D Program of China under Grant No.2017YFB0802-100, and this paper was also partially supported by the National Natural Science Foundation of China under Grant 61431008. Publisher Copyright: {\textcopyright} 2018 Association for Computing Machinery.; 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018 ; Conference date: 16-03-2018 Through 18-03-2018",

year = "2018",

month = mar,

day = "16",

doi = "10.1145/3199478.3199485",

language = "English",

series = "ACM International Conference Proceeding Series",

publisher = "Association for Computing Machinery",

pages = "122--127",

booktitle = "Proceedings of 2018 the 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018",

}

TY - GEN

T1 - A hierarchical access control encryption scheme based on partially ordered set

AU - Dang, Lintao

AU - Li, Qiang

AU - Wu, Jun

AU - Li, Jianhua

N1 - Funding Information: The authors appreciate the supports from the National Key R&D Program of China under Grant No.2017YFB0802-100, and this paper was also partially supported by the National Natural Science Foundation of China under Grant 61431008. Publisher Copyright: © 2018 Association for Computing Machinery.

PY - 2018/3/16

Y1 - 2018/3/16

N2 - Access Control Encryption (ACE) is a novel cryptographic primitive that controls not only what the users in a system can read, but also what they are allowed to write. Based on the concept of partially ordered set, this paper proposes a hierarchical access control encryption scheme (HACE), which, while maintaining the three properties of ACE: Correctness, No-Read Rule and No-Write Rule, enjoys the newly defined No-Leaking Hierarchy Rule under CPA attack in the random oracle model. This rule ensures that the sanitizer cannot learn any information about the access control hierarchy. The performance evaluation shows that the HACE scheme reduces the space overhead for the parameter storage compared with the ACE scheme for multiple identities.

AB - Access Control Encryption (ACE) is a novel cryptographic primitive that controls not only what the users in a system can read, but also what they are allowed to write. Based on the concept of partially ordered set, this paper proposes a hierarchical access control encryption scheme (HACE), which, while maintaining the three properties of ACE: Correctness, No-Read Rule and No-Write Rule, enjoys the newly defined No-Leaking Hierarchy Rule under CPA attack in the random oracle model. This rule ensures that the sanitizer cannot learn any information about the access control hierarchy. The performance evaluation shows that the HACE scheme reduces the space overhead for the parameter storage compared with the ACE scheme for multiple identities.

KW - Access Control Encryption

KW - Hierarchy

KW - Partially Ordered Set

UR - http://www.scopus.com/inward/record.url?scp=85052012755&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85052012755&partnerID=8YFLogxK

U2 - 10.1145/3199478.3199485

DO - 10.1145/3199478.3199485

M3 - Conference contribution

AN - SCOPUS:85052012755

T3 - ACM International Conference Proceeding Series

SP - 122

EP - 127

BT - Proceedings of 2018 the 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018

PB - Association for Computing Machinery

T2 - 2nd International Conference on Cryptography, Security and Privacy, ICCSP 2018

Y2 - 16 March 2018 through 18 March 2018

ER -

A hierarchical access control encryption scheme based on partially ordered set

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this