Improving security and efciency for encrypted data sharing in online social networks

Despite that existing data sharing systems in online social networks (OSNs) propose to encrypt data before sharing, the multiparty access control of encrypted data has become a challenging issue. In this paper, we propose a secure data sharing scheme in OSNs based on ciphertext-policy attribute-based proxy re-encryption and secret sharing. In order to protect users' sensitive data, our scheme allows users to customize access policies of their data and then outsource encrypted data to the OSNs service provider. Our scheme presents a multiparty access control model, which enables the disseminator to update the access policy of ciphertext if their attributes satisfy the existing access policy. Further, we present a partial decryption construction in which the computation overhead of user is largely reduced by delegating most of the decryption operations to the OSNs service provider. We also provide checkability on the results returned from the OSNs service provider to guarantee the correctness of partial decrypted ciphertext. Moreover, our scheme presents an efficient attribute revocation method that achieves both forward and backward secrecy. The security and performance analysis results indicate that the proposed scheme is secure and effcient in OSNs.

[1]  Junbeom Hur,et al.  Improving Security and Efficiency in Attribute-Based Data Sharing , 2013, IEEE Transactions on Knowledge and Data Engineering.

[2]  Junbeom Hur,et al.  Attribute-Based Secure Data Sharing with Hidden Policies in Smart Grid , 2013, IEEE Transactions on Parallel and Distributed Systems.

[3]  Robert H. Deng,et al.  Attribute-Based Access to Scalable Media in Cloud-Assisted Content Sharing Networks , 2013, IEEE Transactions on Multimedia.

[4]  Gail-Joon Ahn,et al.  Access control for online social networks third party applications , 2012, Comput. Secur..

[5]  Brent Waters,et al.  Ciphertext-Policy Attribute-Based Encryption , 2007, 2007 IEEE Symposium on Security and Privacy (SP '07).

[6]  Kyungtae Kang,et al.  Dependable and secure computing in medical information systems , 2012, Comput. Commun..

[7]  Myungsik Yoo,et al.  A new framework for secure sharing data on cloud-based social networks , 2012, 2012 International Conference on ICT Convergence (ICTC).

[8]  Wen Tao Zhu,et al.  Masque: Access Control for Interactive Sharing of Encrypted Data in Social Networks , 2012, NSS.

[9]  Mohammad Davarpanah Jazi,et al.  CP2: Cryptographic privacy protection framework for online social networks , 2013, Comput. Electr. Eng..

[10]  Wu,et al.  Adaptively Secure Attribute-Based Encryption Supporting Attribute Revocation , 2012 .

[11]  M V Patil,et al.  HASBE: A HIERARCHICAL ATTRIBUTE-BASED SOLUTION FOR FLEXIBLE AND SCALABLE ACCESS CONTROL IN CLOUD COMPUTING , 2006 .

[12]  Gail-Joon Ahn,et al.  Multiparty Authorization Framework for Data Sharing in Online Social Networks , 2011, DBSec.

[13]  G. Ravi,et al.  Attribute Based Encryption With Verifiable Outsourced Decryption , 2014 .