TY - GEN
T1 - An efficient and secure data sharing framework using homomorphic encryption in the cloud
AU - Samanthula, Bharath K.
AU - Howser, Gerry
AU - Elmehdwi, Yousef
AU - Madria, Sanjay
PY - 2012
Y1 - 2012
N2 - Due to cost-efficiency and less hands-on management, data owners are outsourcing their data to the cloud which can provide access to the data as a service. However, by outsourcing their data to the cloud, the data owners lose control over their data as the cloud provider becomes a third party. At first, encrypting the data by the owner and then exporting it to the cloud seems to be a good approach. However, there is a potential efficiency problem with the outsourced encrypted data when the data owner revokes some of the users' access privileges. An existing solution to this problem is based on symmetric key encryption scheme and so it is not secure when a revoked user rejoins the system with different access privileges to the same data record. In this paper, we propose an efficient and Secure Data Sharing (SDS) framework using homomorphic encryption and proxy re-encryption schemes that prevents the leakage of unauthorized data when a revoked user rejoins the system. Our framework is secure under the security definition of Secure Multi- Party Computation (SMC) and also is a generic approach - any additive homomorphic encryption and proxy re-encryption schemes can be used as the underlying sub-routines. In addition, we also modify our underlying Secure Data Sharing (SDS) framework and present a new solution based on the data distribution technique to prevent the information leakage in the case of collusion between a user and the Cloud Service Provider.
AB - Due to cost-efficiency and less hands-on management, data owners are outsourcing their data to the cloud which can provide access to the data as a service. However, by outsourcing their data to the cloud, the data owners lose control over their data as the cloud provider becomes a third party. At first, encrypting the data by the owner and then exporting it to the cloud seems to be a good approach. However, there is a potential efficiency problem with the outsourced encrypted data when the data owner revokes some of the users' access privileges. An existing solution to this problem is based on symmetric key encryption scheme and so it is not secure when a revoked user rejoins the system with different access privileges to the same data record. In this paper, we propose an efficient and Secure Data Sharing (SDS) framework using homomorphic encryption and proxy re-encryption schemes that prevents the leakage of unauthorized data when a revoked user rejoins the system. Our framework is secure under the security definition of Secure Multi- Party Computation (SMC) and also is a generic approach - any additive homomorphic encryption and proxy re-encryption schemes can be used as the underlying sub-routines. In addition, we also modify our underlying Secure Data Sharing (SDS) framework and present a new solution based on the data distribution technique to prevent the information leakage in the case of collusion between a user and the Cloud Service Provider.
KW - Cloud computing
KW - Homomorphic encryption
KW - Privacy
KW - Proxy reencryption
UR - http://www.scopus.com/inward/record.url?scp=84866847962&partnerID=8YFLogxK
U2 - 10.1145/2347673.2347681
DO - 10.1145/2347673.2347681
M3 - Conference contribution
AN - SCOPUS:84866847962
SN - 9781450315968
T3 - ACM International Conference Proceeding Series
BT - Proceedings of the 1st International Workshop on Cloud Intelligence, Cloud-I 2012
T2 - 1st International Workshop on Cloud Intelligence, Cloud-I 2012
Y2 - 31 August 2012 through 31 August 2012
ER -