From the September 2014 issue
An Efficient Certificateless Encryption for Secure Data Sharing in Public Clouds
By Seung-Hyun Seo, Mohamed Nabeel, Xiaoyu Ding and Elisa Bertino
We propose a mediated certificateless encryption scheme without pairing operations for securely sharing sensitive information in public clouds. Mediated certificateless public key encryption (mCL-PKE) solves the key escrow problem in identity based encryption and certificate revocation problem in public key cryptography. However, existing mCL-PKE schemes are either inefficient because of the use of expensive pairing operations or vulnerable against partial decryption attacks. In order to address the performance and security issues, in this paper, we first propose a mCL-PKE scheme without using pairing operations. We apply our mCL-PKE scheme to construct a practical solution to the problem of sharing sensitive information in public clouds. The cloud is employed as a secure storage as well as a key generation center. In our system, the data owner encrypts the sensitive data using the cloud generated users' public keys based on its access control policies and uploads the encrypted data to the cloud. Upon successful authorization, the cloud partially decrypts the encrypted data for the users. The users subsequently fully decrypt the partially decrypted data using their private keys. The confidentiality of the content and the keys is preserved with respect to the cloud, because the cloud cannot fully decrypt the information. We also propose an extension to the above approach to improve the efficiency of encryption at the data owner. We implement our mCL-PKE scheme and the overall cloud based system, and evaluate its security and performance. Our results show that our schemes are efficient and practical.
Editorials and Announcements
- Get Your Journals as eBooks for Free
- TKDE celebrates its 25th Anniversary. Editor-in-Chief Jian Pei says, "We are celebrating the 25th Anniversary of TKDE. Since its first issue in March 1989, TKDE has published 2,981 articles, and another 220 articles in the early access portal. With 898 submissions and 79 accepted articles in 2012, TKDE is now the premier journal in the broad and general fields of data management, data mining, and knowledge engineering. We thank all the authors, reviewers, and readers for their continuing support to TKDE. As always, we are eager to hear your ideas and suggestions, and will do our best to meet your expectations. With all your passions, contributions, and supports, TKDE is embracing the new era of big data and big data analytics. Happy birthday to TKDE!"
- eBooks of issues of TKDE can now be downloaded from the Computer Society Digital Library
- Editorial: State of the Transactions (January 2014)
- Editorial (August 2013)
- New EIC Editorial (Feb 2013)
- Outgoing EIC Editorial (Feb 2013)
- State of the Journal (Feb 2012)
- EIC Editorial (January 2011)
- Special Section on the International Conference on Data Engineering (June 2014)
- Special Section on the 27th International Conference on Data Engineering (ICDE 2011)(Oct 2012)
- Special Section on Keyword Search on Structured Data (Dec 2011)
- Cloud Data Management (Sept 2011)
- Special Section on the 26th International Conference on Data Engineering (Aug 2011)
Access recently published TKDE articles
Subscribe to the RSS feed of latest TKDE content added to the digital library.
Sign up for the Transactions Connection newsletter.
IEEE Transactions on Knowledge and Data Engineering (TKDE) is an archival journal published monthly designed to inform researchers, developers, managers, strategic planners, users, and others interested in state-of-the-art and state-of-the-practice activities in the knowledge and data engineering area.
Read the full scope of TKDE