CloudKeyBank: Privacy and owner authorization enforced key management framework

Xiuxia Tian; Ling Huang; Tony Wu; Xiaoling Wang; Aoying Zhou

doi:10.1109/ICDE.2016.7498383

CloudKeyBank: Privacy and owner authorization enforced key management framework

Xiuxia Tian, Ling Huang, Tony Wu, Xiaoling Wang, Aoying Zhou

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Outsourcing keys (including passwords and data encryption keys) to professional password managers (honest-butcurious service providers) is attracting more and more attention from the researchers and users in the era of cloud computing. However, existing solutions in traditional data outsourcing scenario are unable to simultaneously meet the following three security requirements for keys outsourcing: 1) Confidentiality and privacy of keys; 2) Search privacy on identity attributes tied to keys; 3) Owner controllable authorization over his/her shared keys. In this paper, we propose CloudKeyBank, the first unified key management framework that addresses all the three goals above. To implement CloudKeyBank efficiently, we propose a new cryptographic primitive named Searchable Conditional Proxy Re-Encryption (SC-PRE) which combines the techniques of Hidden Vector Encryption (HVE) and Proxy Re-Encryption (PRE) seamlessly.

Original language	English
Title of host publication	2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	1478-1479
Number of pages	2
ISBN (Electronic)	9781509020195
DOIs	https://doi.org/10.1109/ICDE.2016.7498383
State	Published - 22 Jun 2016
Event	32nd IEEE International Conference on Data Engineering, ICDE 2016 - Helsinki, Finland Duration: 16 May 2016 → 20 May 2016

Publication series

Name	2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016

Conference

Conference	32nd IEEE International Conference on Data Engineering, ICDE 2016
Country/Territory	Finland
City	Helsinki
Period	16/05/16 → 20/05/16

Access to Document

10.1109/ICDE.2016.7498383

Cite this

Tian, X., Huang, L., Wu, T., Wang, X., & Zhou, A. (2016). CloudKeyBank: Privacy and owner authorization enforced key management framework. In 2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016 (pp. 1478-1479). Article 7498383 (2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICDE.2016.7498383

@inproceedings{605c2f5a6e734934816eb3977df8c446,

title = "CloudKeyBank: Privacy and owner authorization enforced key management framework",

abstract = "Outsourcing keys (including passwords and data encryption keys) to professional password managers (honest-butcurious service providers) is attracting more and more attention from the researchers and users in the era of cloud computing. However, existing solutions in traditional data outsourcing scenario are unable to simultaneously meet the following three security requirements for keys outsourcing: 1) Confidentiality and privacy of keys; 2) Search privacy on identity attributes tied to keys; 3) Owner controllable authorization over his/her shared keys. In this paper, we propose CloudKeyBank, the first unified key management framework that addresses all the three goals above. To implement CloudKeyBank efficiently, we propose a new cryptographic primitive named Searchable Conditional Proxy Re-Encryption (SC-PRE) which combines the techniques of Hidden Vector Encryption (HVE) and Proxy Re-Encryption (PRE) seamlessly.",

author = "Xiuxia Tian and Ling Huang and Tony Wu and Xiaoling Wang and Aoying Zhou",

note = "Publisher Copyright: {\textcopyright} 2016 IEEE.; 32nd IEEE International Conference on Data Engineering, ICDE 2016 ; Conference date: 16-05-2016 Through 20-05-2016",

year = "2016",

month = jun,

day = "22",

doi = "10.1109/ICDE.2016.7498383",

language = "英语",

series = "2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "1478--1479",

booktitle = "2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016",

address = "美国",

}

Tian, X, Huang, L, Wu, T, Wang, X & Zhou, A 2016, CloudKeyBank: Privacy and owner authorization enforced key management framework. in 2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016., 7498383, 2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016, Institute of Electrical and Electronics Engineers Inc., pp. 1478-1479, 32nd IEEE International Conference on Data Engineering, ICDE 2016, Helsinki, Finland, 16/05/16. https://doi.org/10.1109/ICDE.2016.7498383

CloudKeyBank: Privacy and owner authorization enforced key management framework. / Tian, Xiuxia; Huang, Ling; Wu, Tony et al.
2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016. Institute of Electrical and Electronics Engineers Inc., 2016. p. 1478-1479 7498383 (2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - CloudKeyBank

T2 - 32nd IEEE International Conference on Data Engineering, ICDE 2016

AU - Tian, Xiuxia

AU - Huang, Ling

AU - Wu, Tony

AU - Wang, Xiaoling

AU - Zhou, Aoying

PY - 2016/6/22

Y1 - 2016/6/22

N2 - Outsourcing keys (including passwords and data encryption keys) to professional password managers (honest-butcurious service providers) is attracting more and more attention from the researchers and users in the era of cloud computing. However, existing solutions in traditional data outsourcing scenario are unable to simultaneously meet the following three security requirements for keys outsourcing: 1) Confidentiality and privacy of keys; 2) Search privacy on identity attributes tied to keys; 3) Owner controllable authorization over his/her shared keys. In this paper, we propose CloudKeyBank, the first unified key management framework that addresses all the three goals above. To implement CloudKeyBank efficiently, we propose a new cryptographic primitive named Searchable Conditional Proxy Re-Encryption (SC-PRE) which combines the techniques of Hidden Vector Encryption (HVE) and Proxy Re-Encryption (PRE) seamlessly.

AB - Outsourcing keys (including passwords and data encryption keys) to professional password managers (honest-butcurious service providers) is attracting more and more attention from the researchers and users in the era of cloud computing. However, existing solutions in traditional data outsourcing scenario are unable to simultaneously meet the following three security requirements for keys outsourcing: 1) Confidentiality and privacy of keys; 2) Search privacy on identity attributes tied to keys; 3) Owner controllable authorization over his/her shared keys. In this paper, we propose CloudKeyBank, the first unified key management framework that addresses all the three goals above. To implement CloudKeyBank efficiently, we propose a new cryptographic primitive named Searchable Conditional Proxy Re-Encryption (SC-PRE) which combines the techniques of Hidden Vector Encryption (HVE) and Proxy Re-Encryption (PRE) seamlessly.

UR - https://www.scopus.com/pages/publications/84980368219

U2 - 10.1109/ICDE.2016.7498383

DO - 10.1109/ICDE.2016.7498383

M3 - 会议稿件

AN - SCOPUS:84980368219

T3 - 2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016

SP - 1478

EP - 1479

BT - 2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 16 May 2016 through 20 May 2016

ER -

Tian X, Huang L, Wu T, Wang X , Zhou A. CloudKeyBank: Privacy and owner authorization enforced key management framework. In 2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016. Institute of Electrical and Electronics Engineers Inc. 2016. p. 1478-1479. 7498383. (2016 IEEE 32nd International Conference on Data Engineering, ICDE 2016). doi: 10.1109/ICDE.2016.7498383

CloudKeyBank: Privacy and owner authorization enforced key management framework

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this