BTG-RKASE: Privacy Preserving Revocable Key Aggregate Searchable Encryption with Fine-grained Multi-delegation & Break-The-Glass Access Control
Mukti Padhya, Devesh Jinwala
2019
Abstract
Delegation is the technique of sharing the available rights from the delegator to the delegatee for the purpose data sharing. The Key Aggregate Searchable Encryption (KASE) scheme supports delegation of search rights for any set of ciphertexts using a key of constant-size. However, three critical issues still need to be considered. Firstly, the existing KASE schemes only discuss delegation of rights from the data owner to other user. However, if a subject receiving a delegation cannot perform time-critical task on the shared data, it becomes necessary for the delegatee to further delegate their received rights to another user. Secondly, the existing delegation mechanisms tend to rely on manual processes initiated by end-users. If no authorized user exists to perform (or to delegate) a time-critical task, in such exceptional case, we require mechanism that flexibly handles emergency situations by breaking or by controlled overriding of the standard access permissions. Thirdly, the access of user in the system changes dynamically and it requires KASE to support user revocation securely while not affecting the legitimate users’ access to the shared files. To address all of the above issues, we propose Revocable KASE with Break-The-Glass access control (BTG-RKASE) to provide (i)fine-grained multi-delegation of available rights from the delegatee to another user,(ii)break-the-glass access mechanism when no authorized user exists to perform (or to delegate) a time-critical task,(iii)revocation of delegated rights (even in case of multi-delegation). The security and empirical analysis shows that BTG-RKASE performs better than the existing KASE schemes.
DownloadPaper Citation
in Harvard Style
Padhya M. and Jinwala D. (2019). BTG-RKASE: Privacy Preserving Revocable Key Aggregate Searchable Encryption with Fine-grained Multi-delegation & Break-The-Glass Access Control.In Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT, ISBN 978-989-758-378-0, pages 109-124. DOI: 10.5220/0007919901090124
in Bibtex Style
@conference{secrypt19,
author={Mukti Padhya and Devesh Jinwala},
title={BTG-RKASE: Privacy Preserving Revocable Key Aggregate Searchable Encryption with Fine-grained Multi-delegation & Break-The-Glass Access Control},
booktitle={Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,},
year={2019},
pages={109-124},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007919901090124},
isbn={978-989-758-378-0},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,
TI - BTG-RKASE: Privacy Preserving Revocable Key Aggregate Searchable Encryption with Fine-grained Multi-delegation & Break-The-Glass Access Control
SN - 978-989-758-378-0
AU - Padhya M.
AU - Jinwala D.
PY - 2019
SP - 109
EP - 124
DO - 10.5220/0007919901090124