Annual Computer Security Applications Conference (ACSAC) 2016

Full Program »

IOT: A Multi-Cloud based Privacy-Preserving Data Publishing Scheme for the Internet of Things

With the increased popularity of ubiquitous computing and connectivity, the Internet of Things (IoT) also introduces new vulnerabilities and attack vectors. While secure data collection (i.e. the upward link) has been well studied in the literature, secure data dissemination (i.e. the downward link) remains an open problem. Attribute-based encryption (ABE) and outsourced-ABE have been used for secure message distribution in IoT, however, existing mechanisms suffer from extensive computation and/or privacy issues. In this paper, we explore the problem of privacy-preserving targeted broadcast in IoT, and propose two multi-cloud-based outsourced-ABE schemes, namely the parallel-cloud ABE and the chain-cloud ABE. They enable the receivers to partially outsource the computationally expensive decryption operations to the clouds, while preventing attributes from being disclosed. The proposed solution protects three types of privacy (data, attribute and access policy) by enforcing collaboration between multiple clouds. Our schemes also enable verifiability, which allows receivers to verify whether the clouds have faithfully performed the outsourced operations. We extensively analyze the security guarantees of the proposed mechanisms. We also demonstrate the effectiveness and efficiency of our schemes with simulated resource-constrained IoT devices, which outsource operations to Amazon EC2 and Microsoft Azure.

Author(s):

Lei Yang    
University of Kansas
United States

Abdulmalik Humayed    
University of Kansas
United States

Fengjun Li    
University of Kansas
United States

 

Powered by OpenConf®
Copyright©2002-2016 Zakon Group LLC