Research On Attribute-based Encryption With Forward Security And Traceability In IOT

In recent years,Io T devices are widely deployed in various fields.Due to storage resource constraints,Io T devices need to upload large amounts of collected industrial and personal data for storage to cloud storage servers,which are held and managed by third-party service providers.This approach to data storage severely limits the data owner's ability to manage the data,and has serious privacy and security concerns.If data is uploaded directly,the data owner has no assurance that a semi-trusted service provider will not leak and sell this data,creating a serious privacy breach problem.Attribute-based encryption schemes provide a versatile and expressive way to share data,ensuring data security while enabling flexible data access control.However,there are still many problems in existing attributebased encryption schemes,such as the inevitable existence of some malicious users selling decryption keys to gain benefits,and the difficulty to confirm the identity of malicious users given a decryption key;the inability to dynamically add attributes as system functions increase;and the inability to guarantee the forward security of data by using the same decryption key for a long time.In addition,the limited computing resources of Io T devices cannot directly run complex attribute-based encryption schemes,so a secure and lightweight data sharing scheme for Io T applications is still a hot issue for research in recent years.In this paper,the research focuses on the forward security and key traceability of attribute-based encryption in Io T applications,with the following work.(1)An efficient and dynamic data access control scheme for Io TFor the Io T scenario,this paper focuses on the problems of forward security of data due to key leakage and non-support of dynamic attributes in attribute-based encryption schemes,and proposes an efficient and dynamic access control scheme for puncturable attribute-based encryption.The scheme allows data owners to share time-series data collected by Io T devices at a fine-grained level while ensuring the confidentiality of the data during transmission and storage.The key in the scheme can be repeatedly updated locally to revoke the recipient's ability to decrypt selected messages or messages created within a specific time period.The analysis results show that the scheme achieves fine-grained access control in Io T applications with low overhead,and the time required for decryption does not grow linearly with the number of attributes while ensuring forward security.(2)Key traceable ABE access control scheme with subscriptionFor the subscription-based Io T applications there is a problem that users maliciously leak keys to gain benefits and it is difficult to trace the identity of malicious users and revoke the privileges to them.In this paper,a subscription-enabled key-traceable attribute-based encryption access control scheme is proposed.The scheme implements a publish/subscribe model based on attribute-based encryption for Io T scenarios.This model eliminates the need to re-encrypt the massive amount of Io T data to revoke the access rights of subscribers.At the same time,the proposed scheme can identify a subscriber by tracking the decryption key,and the computation and storage overhead for tracking the subscriber is constant.