Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing”
In 2018, Yang <italic>et al.</italic> proposed a decentralized multi-authority attribute-based encryption scheme for cloud computing applications and proved its security using the dual system encryption technique. In this comment, we show that Yang <italic>et al.</italic>&...
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2019-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/8624289/ |
| _version_ | 1818591856346267648 |
|---|---|
| author | Syh-Yuan Tan |
| author_facet | Syh-Yuan Tan |
| author_sort | Syh-Yuan Tan |
| collection | DOAJ |
| description | In 2018, Yang <italic>et al.</italic> proposed a decentralized multi-authority attribute-based encryption scheme for cloud computing applications and proved its security using the dual system encryption technique. In this comment, we show that Yang <italic>et al.</italic>’s scheme does not achieve encryption one-wayness under the key-only attack and the user collusion attack, respectively. In the key-only attack, with the knowledge of public parameters only, an adversary can impersonate the attribute authorities to forge user attribute secret keys. In the user collusion attack, malicious users can collude by sharing their secret keys to unauthorizedly decrypt a ciphertext. In order to fix the scheme, we suggest adopting a pairing-based proof of knowledge protocol and the decryption algorithm from Lewko and Water’s ABE scheme. |
| first_indexed | 2024-12-16T10:19:05Z |
| format | Article |
| id | doaj.art-183a3dd42c17422faa001926cc125ea3 |
| institution | Directory Open Access Journal |
| issn | 2169-3536 |
| language | English |
| last_indexed | 2024-12-16T10:19:05Z |
| publishDate | 2019-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj.art-183a3dd42c17422faa001926cc125ea32022-12-21T22:35:21ZengIEEEIEEE Access2169-35362019-01-017170451704910.1109/ACCESS.2019.28942898624289Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing”Syh-Yuan Tan0https://orcid.org/0000-0003-1182-1210School of Computing, Newcastle University, Newcastle upon Tyne, U.K.In 2018, Yang <italic>et al.</italic> proposed a decentralized multi-authority attribute-based encryption scheme for cloud computing applications and proved its security using the dual system encryption technique. In this comment, we show that Yang <italic>et al.</italic>’s scheme does not achieve encryption one-wayness under the key-only attack and the user collusion attack, respectively. In the key-only attack, with the knowledge of public parameters only, an adversary can impersonate the attribute authorities to forge user attribute secret keys. In the user collusion attack, malicious users can collude by sharing their secret keys to unauthorizedly decrypt a ciphertext. In order to fix the scheme, we suggest adopting a pairing-based proof of knowledge protocol and the decryption algorithm from Lewko and Water’s ABE scheme.https://ieeexplore.ieee.org/document/8624289/Cryptanalysisdecentralizingmulti-authorityattribute-based encryptiondual system encryption |
| spellingShingle | Syh-Yuan Tan Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing” IEEE Access Cryptanalysis decentralizing multi-authority attribute-based encryption dual system encryption |
| title | Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing” |
| title_full | Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing” |
| title_fullStr | Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing” |
| title_full_unstemmed | Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing” |
| title_short | Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing” |
| title_sort | correction to x201c improving privacy and security in decentralizing multi authority attribute based encryption in cloud computing x201d |
| topic | Cryptanalysis decentralizing multi-authority attribute-based encryption dual system encryption |
| url | https://ieeexplore.ieee.org/document/8624289/ |
| work_keys_str_mv | AT syhyuantan correctiontox201cimprovingprivacyandsecurityindecentralizingmultiauthorityattributebasedencryptionincloudcomputingx201d |