Abstract
Mobile cloud computing (MCC) enhances mobile device capabilities with cloud-based resources, allowing mobile users to outsource more data to the cloud to enjoy services of interest. It uses ciphertext policy attribute-based encryption (CP-ABE) to ensure the security and privacy of outsourced data and to implement fine-grained access control of data. However, the existing CP-ABE schemes exhibit the key escrow problem on the central authority and fail to grant data users full control over their identity which may expose user privacy. This paper proposes a multi-authority CP-ABE scheme to solve the key escrow problem and lack of user attribute privacy in the current literature. We design a novel SSI-aware communication model and seamlessly integrate it with our multi-authority CP-ABE to protect user identity privacy and strengthen the user’s sovereignty over their identity. We show how to conduct attribute revocation in our system. We prove security under the Decisional Bilinear Diffie-Hellman assumption. This research contributes to the existing body of knowledge on secure and privacy-preserving data sharing in the mobile cloud.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Bethencourt, J., Sahai, A., Waters, B.: Ciphertext-policy attribute-based encryption. In: 2007 IEEE Symposium on Security And Privacy (SP 2007), pp. 321–334. IEEE (2007)
Boneh, D., Lynn, B., Shacham, H.: Short signatures from the Weil pairing. In: International Conference on the Theory and Application of Cryptology and Information Security, pp. 514–532. Springer (2001)
Chase, M.: Multi-authority attribute based encryption. In: Vadhan, S.P. (ed.) TCC 2007. LNCS, vol. 4392, pp. 515–534. Springer, Heidelberg (2007). https://doi.org/10.1007/978-3-540-70936-7_28
He, Z., Chen, Y., Luo, Y., Zhang, L., Tang, Y.: Revocable and traceable undeniable attribute-based encryption in cloud-enabled e-health systems. Entropy 26(1), 45 (2023)
Huang, K.: Secure efficient revocable large universe multi-authority attribute-based encryption for cloud-aided iot. IEEE Access 9, 53576–53588 (2021)
Lewko, A., Waters, B.: Decentralizing attribute-based encryption. In: Annual International Conference on the Theory and Applications of Cryptographic Techniques, pp. 568–588. Springer (2011)
Liu, Y., Zhang, Y., Ling, J., Liu, Z.: Secure and fine-grained access control on e-healthcare records in mobile cloud computing. Futur. Gener. Comput. Syst. 78, 1020–1026 (2018)
Reed, D., et al.: Decentralized identifiers (DIDS) v1.0. Tech. rep., W3C (2022). https://www.w3.org/TR/2022/REC-did-core-20220719
Saeed, I., Baras, S., Hajjdiab, H.: Security and privacy of AWS S3 and azure blob storage services. In: 2019 IEEE 4th International Conference on Computer and Communication Systems (ICCCS), pp. 388–394. IEEE (2019)
Sanchol, P., Fugkeaw, S.: An analytical review of data access control schemes in mobile cloud computing. In: International Conference on Computing and Information Technology, pp. 310–321. Springer (2021)
Taha, M.B., Talhi, C., Ould-Slimane, H.: Performance evaluation of CP-ABE schemes under constrained devices. Procedia Comput. Sci. 155, 425–432 (2019)
Xiao, M., Ma, Z., Li, T.: Privacy-preserving and scalable data access control based on self-sovereign identity management in large-scale cloud storage. In: Security, Privacy, and Anonymity in Computation, Communication, and Storage: 13th International Conference, SpaCCS 2020, Nanjing, 18–20 December 2020, Proceedings 13, pp. 1–18. Springer (2021)
Xie, M., Ruan, Y., Hong, H., Shao, J.: A CP-ABE scheme based on multi-authority in hybrid clouds for mobile devices. Futur. Gener. Comput. Syst. 121, 114–122 (2021)
Yan, X., Tu, S., Alasmary, H., Huang, F.: Multiauthority ciphertext policy-attribute-based encryption (MA-CP-ABE) with revocation and computation outsourcing for resource-constraint devices. Appl. Sci. 13(20), 11269 (2023)
Yan, X., Chen, Y., Zhai, Y., Ba, Y., Li, X., Jia, H.: An encryption and decryption outsourcing CP-ABE scheme supporting efficient ciphertext evolution. In: Proceedings of the 2020 4th International Conference on Cryptography, Security and Privacy, pp. 116–125 (2020)
Zhao, Y., Ren, M., Jiang, S., Zhu, G., Xiong, H.: An efficient and revocable storage CP-ABE scheme in the cloud computing. Computing 101, 1041–1065 (2019)
Acknowledgments
This work was supported by the Open Research Fund of Guangdong Key Laboratory of Blockchain Security, Guangzhou University, the National Key Research and Development Program Young Scientist Scheme (No. 2022YFB3102400), the City School Joint Funding Project of Guangzhou City (No. 2023A03J0117) and Guangzhou University Research Project under Grant RQ2021013.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2025 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Li, J., Yan, H., Koe, A.S.V., Deng, W., Zhong, Z. (2025). Secure and Revocable Multi-authority CP-ABE for Mobile Cloud Computing. In: Zhu, T., Li, J., Castiglione, A. (eds) Algorithms and Architectures for Parallel Processing. ICA3PP 2024. Lecture Notes in Computer Science, vol 15252. Springer, Singapore. https://doi.org/10.1007/978-981-96-1528-5_5
Download citation
DOI: https://doi.org/10.1007/978-981-96-1528-5_5
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-96-1527-8
Online ISBN: 978-981-96-1528-5
eBook Packages: Computer ScienceComputer Science (R0)