Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing”

Blog Article

In 2018, Yang et al.proposed a decentralized multi-authority attribute-based encryption scheme for cloud computing applications and proved its security using the dual system encryption Mouthwash technique.In this comment, we show that Yang et al.’s scheme does not achieve encryption one-wayness under the key-only attack and the user collusion attack, respectively.

In the key-only attack, with the knowledge of public parameters only, an adversary can impersonate the attribute authorities to forge user attribute secret keys.In the user collusion attack, malicious users can collude by sharing their secret PRO C2000 POWDER keys to unauthorizedly decrypt a ciphertext.In order to fix the scheme, we suggest adopting a pairing-based proof of knowledge protocol and the decryption algorithm from Lewko and Water’s ABE scheme.

Report this page

CORRECTION TO “IMPROVING PRIVACY AND SECURITY IN DECENTRALIZING MULTI-AUTHORITY ATTRIBUTE-BASED ENCRYPTION IN CLOUD COMPUTING”

Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing”

Correction to “Improving Privacy and Security in Decentralizing Multi-Authority Attribute-Based Encryption in Cloud Computing”

Blog Article

Comments

Unique visitors

Report page

Contact Us