Efficient IoT Management With Resilience to Unauthorized Access to Cloud Storage

Changhee Hahn; Jongkil Kim; Hyunsoo Kwon; Junbeom Hur

doi:10.1109/TCC.2020.2985046

Efficient IoT Management With Resilience to Unauthorized Access to Cloud Storage

Changhee Hahn, Jongkil Kim, Hyunsoo Kwon, Junbeom Hur

Cyber Security

Research output: Contribution to journal › Article › peer-review

5 Scopus citations

Abstract

Cloud-based Internet of Things (IoT) management services are a promising means of ingesting data from globally dispersed devices. In this setting, it is important to regulate access to data managed by potentially untrusted cloud servers. Attribute-based encryption (ABE) is a highly effective tool for access control. However, applying ABE to IoT environments shows limitations in the following three aspects: First, the demands for storage resources increase in proportion to the complexity of the access control policies. Second, the computation cost of ABE is onerous for resource-limited devices. Lastly, ABE alone is intractable to prevent illegal key-sharing which leads to unauthorized access to data. In this article, we propose an efficient and secure cloud-based IoT data management scheme using ABE. First, we remove the storage-side dependency on the complexity of the access control policies. Second, a substantial part of computationally intensive operations is securely outsourced to the cloud servers. Lastly, unauthorized access to data via illegal key-sharing is strictly forbidden. Our security analysis and experimental results show the security and practicability of the proposed scheme.

Original language	English
Pages (from-to)	1008-1020
Number of pages	13
Journal	IEEE Transactions on Cloud Computing
Volume	10
Issue number	2
DOIs	https://doi.org/10.1109/TCC.2020.2985046
State	Published - 2022

Keywords

access control
attribute-based encryption
cloud computing
IoT

Access to Document

10.1109/TCC.2020.2985046

Cite this

@article{d364cd3290b14523bf6cec91ffb017f0,

title = "Efficient IoT Management With Resilience to Unauthorized Access to Cloud Storage",

abstract = "Cloud-based Internet of Things (IoT) management services are a promising means of ingesting data from globally dispersed devices. In this setting, it is important to regulate access to data managed by potentially untrusted cloud servers. Attribute-based encryption (ABE) is a highly effective tool for access control. However, applying ABE to IoT environments shows limitations in the following three aspects: First, the demands for storage resources increase in proportion to the complexity of the access control policies. Second, the computation cost of ABE is onerous for resource-limited devices. Lastly, ABE alone is intractable to prevent illegal key-sharing which leads to unauthorized access to data. In this article, we propose an efficient and secure cloud-based IoT data management scheme using ABE. First, we remove the storage-side dependency on the complexity of the access control policies. Second, a substantial part of computationally intensive operations is securely outsourced to the cloud servers. Lastly, unauthorized access to data via illegal key-sharing is strictly forbidden. Our security analysis and experimental results show the security and practicability of the proposed scheme.",

keywords = "access control, attribute-based encryption, cloud computing, IoT",

author = "Changhee Hahn and Jongkil Kim and Hyunsoo Kwon and Junbeom Hur",

note = "Funding Information: This work was supported by Institute of Information and communications Technology Planning and Evaluation (IITP) grant funded by the Korea government (MSIT) (Grant No.2019-0-00533 and Research on CPU vulnerability detection and validation), (No.2018-0-00269, A research on safe and convenient big data processing methods) Publisher Copyright: {\textcopyright} 2013 IEEE.",

year = "2022",

doi = "10.1109/TCC.2020.2985046",

language = "English",

volume = "10",

pages = "1008--1020",

journal = "IEEE Transactions on Cloud Computing",

issn = "2168-7161",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "2",

}

TY - JOUR

T1 - Efficient IoT Management With Resilience to Unauthorized Access to Cloud Storage

AU - Hahn, Changhee

AU - Kim, Jongkil

AU - Kwon, Hyunsoo

AU - Hur, Junbeom

N1 - Funding Information: This work was supported by Institute of Information and communications Technology Planning and Evaluation (IITP) grant funded by the Korea government (MSIT) (Grant No.2019-0-00533 and Research on CPU vulnerability detection and validation), (No.2018-0-00269, A research on safe and convenient big data processing methods) Publisher Copyright: © 2013 IEEE.

PY - 2022

Y1 - 2022

N2 - Cloud-based Internet of Things (IoT) management services are a promising means of ingesting data from globally dispersed devices. In this setting, it is important to regulate access to data managed by potentially untrusted cloud servers. Attribute-based encryption (ABE) is a highly effective tool for access control. However, applying ABE to IoT environments shows limitations in the following three aspects: First, the demands for storage resources increase in proportion to the complexity of the access control policies. Second, the computation cost of ABE is onerous for resource-limited devices. Lastly, ABE alone is intractable to prevent illegal key-sharing which leads to unauthorized access to data. In this article, we propose an efficient and secure cloud-based IoT data management scheme using ABE. First, we remove the storage-side dependency on the complexity of the access control policies. Second, a substantial part of computationally intensive operations is securely outsourced to the cloud servers. Lastly, unauthorized access to data via illegal key-sharing is strictly forbidden. Our security analysis and experimental results show the security and practicability of the proposed scheme.

AB - Cloud-based Internet of Things (IoT) management services are a promising means of ingesting data from globally dispersed devices. In this setting, it is important to regulate access to data managed by potentially untrusted cloud servers. Attribute-based encryption (ABE) is a highly effective tool for access control. However, applying ABE to IoT environments shows limitations in the following three aspects: First, the demands for storage resources increase in proportion to the complexity of the access control policies. Second, the computation cost of ABE is onerous for resource-limited devices. Lastly, ABE alone is intractable to prevent illegal key-sharing which leads to unauthorized access to data. In this article, we propose an efficient and secure cloud-based IoT data management scheme using ABE. First, we remove the storage-side dependency on the complexity of the access control policies. Second, a substantial part of computationally intensive operations is securely outsourced to the cloud servers. Lastly, unauthorized access to data via illegal key-sharing is strictly forbidden. Our security analysis and experimental results show the security and practicability of the proposed scheme.

KW - access control

KW - attribute-based encryption

KW - cloud computing

KW - IoT

UR - http://www.scopus.com/inward/record.url?scp=85132324754&partnerID=8YFLogxK

U2 - 10.1109/TCC.2020.2985046

DO - 10.1109/TCC.2020.2985046

M3 - Article

AN - SCOPUS:85132324754

SN - 2168-7161

VL - 10

SP - 1008

EP - 1020

JO - IEEE Transactions on Cloud Computing

JF - IEEE Transactions on Cloud Computing

IS - 2

ER -

Efficient IoT Management With Resilience to Unauthorized Access to Cloud Storage

Abstract

Keywords

Access to Document

Fingerprint

Cite this