Provably Secure Cryptographic ABAC System to Enhance Reliability and Privacy Using Real-Time Token and Dynamic Policy
2018 IEEE International Conference on Software Quality, Reliability and Security (QRS)(2018)
摘要
In this paper we address the problem of reliability and security in an open-access data sharing system. We propose a new framework, called cryptographic attribute-based access control (CABAC), in consistent with the standard ABAC model. Moreover, two new mechanisms, real-time Tokens and secure policy decision-making, are introduced for ensuring secure attribute authorization and verifiable policy decision-making. More important, we present a practical CABAC system to support adaptability and flexibility using dynamically chosen policy and real-time attribute acquisition. We prove that our CABAC system is provably secure in four aspects: the attribute Tokens are existentially unforgeable against chosen-time and chosen-attribute attacks, respectively; the secure policy is existentially unforgeable against chosen-object attack under eBDH assumption; and our entire system is semantically secure against chosen-plaintext attack with Token and policy queries under eGDHE assumption.
更多查看译文
关键词
cryptography,reliability,attribute-based access control,multi-authority,Token,dynamic policy
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要