Next Article in Journal
Fabrication of Circuits on Flexible Substrates Using Conductive SU-8 for Sensing Applications
Next Article in Special Issue
Unequal Probability Marking Approach to Enhance Security of Traceback Scheme in Tree-Based WSNs
Previous Article in Journal
Initial Alignment for SINS Based on Pseudo-Earth Frame in Polar Regions
Previous Article in Special Issue
Vulnerability- and Diversity-Aware Anonymization of Personally Identifiable Information for Improving User Privacy and Utility of Publishing Data
Article Menu
Issue 6 (June) cover image

Export Article

Open AccessArticle
Sensors 2017, 17(6), 1423; doi:10.3390/s17061423

A Hybrid Scheme for Fine-Grained Search and Access Authorization in Fog Computing Environment

1
School of Cyber Security and Information Law, Chongqing University of Posts and Telecommunicaitons, Chongqing 400065, China
2
College of Computer Science and Technology, Chongqing University of Posts and Telecommunicaitons, Chongqing 400065, China
3
Institute of Service Engineering, Hangzhou Normal University, Hangzhou 311121, China
*
Author to whom correspondence should be addressed.
Received: 6 April 2017 / Revised: 9 June 2017 / Accepted: 9 June 2017 / Published: 17 June 2017
(This article belongs to the Special Issue Security and Privacy Challenges in Emerging Fog Computing)
View Full-Text   |   Download PDF [1593 KB, uploaded 20 June 2017]   |  

Abstract

In the fog computing environment, the encrypted sensitive data may be transferred to multiple fog nodes on the edge of a network for low latency; thus, fog nodes need to implement a search over encrypted data as a cloud server. Since the fog nodes tend to provide service for IoT applications often running on resource-constrained end devices, it is necessary to design lightweight solutions. At present, there is little research on this issue. In this paper, we propose a fine-grained owner-forced data search and access authorization scheme spanning user-fog-cloud for resource constrained end users. Compared to existing schemes only supporting either index encryption with search ability or data encryption with fine-grained access control ability, the proposed hybrid scheme supports both abilities simultaneously, and index ciphertext and data ciphertext are constructed based on a single ciphertext-policy attribute based encryption (CP-ABE) primitive and share the same key pair, thus the data access efficiency is significantly improved and the cost of key management is greatly reduced. Moreover, in the proposed scheme, the resource constrained end devices are allowed to rapidly assemble ciphertexts online and securely outsource most of decryption task to fog nodes, and mediated encryption mechanism is also adopted to achieve instantaneous user revocation instead of re-encrypting ciphertexts with many copies in many fog nodes. The security and the performance analysis show that our scheme is suitable for a fog computing environment. View Full-Text
Keywords: searchable encryption; attribute-based encryption; online/offline encryption; mediated encryption; cloud computing; fog computing searchable encryption; attribute-based encryption; online/offline encryption; mediated encryption; cloud computing; fog computing
Figures

Figure 1

This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. (CC BY 4.0).

Scifeed alert for new publications

Never miss any articles matching your research from any publisher
  • Get alerts for new papers matching your research
  • Find out the new papers from selected authors
  • Updated daily for 49'000+ journals and 6000+ publishers
  • Define your Scifeed now

SciFeed Share & Cite This Article

MDPI and ACS Style

Xiao, M.; Zhou, J.; Liu, X.; Jiang, M. A Hybrid Scheme for Fine-Grained Search and Access Authorization in Fog Computing Environment. Sensors 2017, 17, 1423.

Show more citation formats Show less citations formats

Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Related Articles

Article Metrics

Article Access Statistics

1

Comments

[Return to top]
Sensors EISSN 1424-8220 Published by MDPI AG, Basel, Switzerland RSS E-Mail Table of Contents Alert
Back to Top