IJRET: International Journal of Research in Engineering and Technology
eISSN: 2319-1163 | pISSN: 2321-7308
A REVIEW ON KEY-AGGREGATE CRYPTOSYSTEM FOR
SCALABLE DATA SHARING IN CLOUD STORAGE
Ramakrishna Jadhav1, Snehal Nargundi2
1
ME student, Information Technology, RMD Sinhgad school of Engineering, Pune, India
Asst. Professor, Information Technology, RMD Sinhgad school of Engineering, Pune, India
Abstract
Cloud computing technology is widely used so that the data can be outsourced on cloud can accessed easily. Different members
can share that data through different virtual machines but present on single physical machine. But the thing is user dont have
physical control over the outsourced data. The need is to share data securely among users. The cloud service provider and users
authentication is necessary to make sure no loss or leak of users data. Privacy preserving in cloud is important make sure the
users identity is not revealed to everyone. On cloud anyone can share data as much they want to i.e. only selected content can be
shared. Cryptography helps the data owner to share the data to in safe way. So user encrypts data and uploads on server.
Different encryption and decryption keys are generated for different data. The encryption and decryption keys may be different for
different set of data. Only those set of decryption keys are shared that the selected data can be decrypted. Here a public-key
cryptosystems which generate a ciphertext which is of constant size. So that to transfer the decryption rules for number of
ciphertext. The difference is one can collect a set of secret keys and make them as small size as a single key with holding the same
ability of all the keys that are formed in a group. This compact aggregate key can be efficiently sent to others or to be stored in a
smart card with little secure storage.
Keywords: Cloud storage, Attribute base encryption, Identity base encryption, Cloud storage, data sharing, keyaggregate encryption
--------------------------------------------------------------------***---------------------------------------------------------------------1. INTRODUCTION
Cloud computing is widely increasing technology; data can
be saved on cloud remotely and can have access to huge
applications with quality services which are shared among
customers. As increase in outsourcing of data the cloud
computing serves does the management of data [1].
doesnt want to share it with everyone. As the attacker may
access the data so it is not possible to rely on predefine
privacy preserving mechanism so she all the photos were
encrypted by her on encryption key while uploading it.
Its flexible and cost optimizing characteristic motivates the
end user as well as enterprises to store the data on cloud.
The insider attack is one of security concern whichs needs
to be focused. Cloud Service provider need to make sure
whether audits are held for users who have physical access
to the server. As cloud service provider stores the data of
different users on same server it is possible that users
private data is leaked to others. The public auditing system
of data storage security in cloud computing provides a
privacy-preserving auditing protocol [2].
It is necessary to make sure that the data integrity without
compromising the anonymity of the data user. To ensure the
integrity the user can verify metadata on their data, upload
and verify metadata [3].
The main concern is how to share the data securely the
answer is cryptography. The question is how can the
encrypted data is to be shared. The user must provide the
access rights to the other user as the data is encrypted and
the decryption key should be send securely. For an example
Alice keeps her private data i.e. photos on dropbox and she
Fig 1 File sharing between Alice and Bob
_______________________________________________________________________________________
Volume: 03 Issue: 11 | Nov-2014, Available @ http://www.ijret.org
376
IJRET: International Journal of Research in Engineering and Technology
Suppose some day she wants to share few photos with her
friend Bob, either she can encrypt all photos with one key
and send to him or she can create encrypt with different keys
and send it. The un-chosen data may be leaked to Bob if the
single key generated for encryption so create distinct keys of
data and send single key for sharing.
A new way for public-key encryption is used called as keyaggregate cryptosystem (KAC)[1]. The encryption is done
through an identifier of Ciphertext known as class, with
public key. The classes are formed by classifying the
ciphertext. The key owner has the master secret key which
is helpful for extracting secret key. So in above senario now
the aice can send a aggregate key to bob through a email and
the encrypted data is downloaded from dropbox through the
aggregate key.This is shown in figure1.
2. LITERATURE SURVEY
Cloud computing is visualized as architecture for succeeding
generation. It has many facilities though have a risk of
attacker who can access the data or leak the users identity.
While setting a cloud users and service providers
authentication is necessary. The issue arises whether loud
service provider or user is not compromised. The data will
leak if any one of them in compromised. The cloud should
be simple, preserving the privacy and also maintaining users
identity [1]
The flexible use of cloud storage for user is a need as it is
seams accessing data locally though that is present at remote
side. It is important to inspect the data set on the cloud. So it
is necessary to allow a public audit for integrity of
outsourced data through third party auditor (TPA). TPA is
also beneficial for cloud service provider. It checks the
correctness of the outsourced data. TPA should be able to do
public auditability, storage correctness, privacy preserving,
Batch auditing with minimum communication and
computation overhead [2].
There are many cloud users who wants to upload there data
without providing much personal details to other users. The
anonymity of the user is to be preserved so that not to reveal
the identity of data owner. Provable data possession (PDP)
uses similar demonstrating marks to reduce computation on
server, and network traffic. PDA ensures the data present
on cloud which is un-trusted is original without accessing it.
Security mediator (SEM) is approach allows the user to
preserve the anonymity. Users are meant to upload all their
data to SEM so that the SEM is not able to understand the
data although its going to generate the verification on data.
As the users are signed at SEM it should not know the
identity of uploader [3].
Another way for sharing encrypted data is Attribute-Based
Encryption (ABE). It is likely to encrypt the data with
attributes which are equivalent to users attribute rather than
only encrypting each part of data. In ABE attributes
description is considered as set so that only a particular key
which is matched with attribute can decrypt the ciphertext.
The user key and the attribute are matched if it matches it
eISSN: 2319-1163 | pISSN: 2321-7308
can decrypt a particular ciphertext. When there are k
attributes are overlay among the ciphertext and a private key
the decryption is granted [5].
A multi group key management accomplishes a hierarchical
access control by applying an integrated key graph also
handling the group keys for different users with multiple
access authorities. Centralized key management plan uses
tree structure to minimize the data processing,
communication and storage overhead. It maintains things
related to keying and also updates it. It accomplishes an
integrated key graph for every user [6].
Identity-based encryption (IBE) is a vital primary thing of
identity bases cryptography. The public key of user contains
distinct information of users identity. The key can be
textual value or domain name, etc. IDE is used to deploy the
public key infrastructure. The identity of the user is used as
identity string for public key encryption. A trusted party
called private key generator (PKG) in IBE which has the
master secret key and gives secret key to users according to
the user identity. The data owner collaborate the public
value and the identity of user to encrypt the data. The
ciphertext is decrypted using secret key [7].
In a multi attribute-authorities numbers of attributes are
analyzed regarding the decryption key and the user must get
a particular key related to the attribute while decrypting a
message. The decryption keys are allocated independently to
users those who have attribute identity without interaction
between each other. Multi-authority attribute-based
encryption allows real time deployment of attribute based
privileges as different attributes are issued by different
authorities. The attribute authorities ensure the honesty of
the user privilege so the confidentiality is maintained by
central authority [8].
3. KEY-AGGREGATE ENCRYPTION
A key aggregate encryption has five polynomial-time
algorithms as
3.1 Setup Phase
The data owner executes the setup phase for an account on
server which is not trusted. The setup algorithm only takes
implicit security parameter.
3.2 KeyGen Phase
This phase is executed by data owner to generate the public
or the master key pair (pk, msk).
3.3 Encrypt Phase
This phase is executed by anyone who wants to send the
encrypted data. Encrypt (pk, m, i), the encryption algorithm
takes input as public parameters pk, a message m, and i
denoting ciphertext class. The algorithm encrypts message
m and produces a ciphertext C such that only a user that has
a set of attributes that satisfies the access structure is able to
decrypt the message.
_______________________________________________________________________________________
Volume: 03 Issue: 11 | Nov-2014, Available @ http://www.ijret.org
377
IJRET: International Journal of Research in Engineering and Technology
Input= public key pk, an index i, and message m
Output = ciphertext C.
3.4 Extract Phase
This is executed by the data owner for delegating the
decrypting power for a certain set of ciphertext classes to a
delegate.
Input = master-secret key mk and a set S of indices
corresponding to different classes
Outputs = aggregate key for set S denoted by kS.
3.5 Decrypt Phase
This is executed by the candidate who has the decryption
authorities. Decrypt (kS, S, i, C), the decryption algorithm
takes input as public parameters pk, a ciphertext C, i
denoting ciphertext classes for a set S of attributes.
Input = kS and the set S, where index i = ciphertext
class
Outputs = m if i element of S
eISSN: 2319-1163 | pISSN: 2321-7308
of her data with a friend Bob then she can perform the
aggregate key KS for Bob by executing Extract (mk, S). As
kS is a constant size key and the key can be shared through
secure e-mail. When the aggregate key has got Bob can
download the data and access it.
5. CONCLUSION
To share data flexibly is vital thing in cloud computing.
Users prefer to upload there data on cloud and among
different users. Outsourcing of data to server may lead to
leak the private data of user to everyone. Encryption is a one
solution which provides to share selected data with desired
candidate. Sharing of decryption keys in secure way plays
important role. Public-key cryptosystems provides
delegation of secret keys for different ciphertext classes in
cloud storage. The delegatee gets securely an aggregate key
of constant size. It is required to keep enough number of
cipher texts classes as they increase fast and the ciphertext
classes are bounded that is the limitation.
ACKNOWLEDGEMENTS
4. DATA SHARING
KAC in meant for the data sharing. The data owner can
share the data in desired amount with confidentiality. KCA
is easy and secure way to transfer the delegation authority.
The aim of KCA is illustrated in Figure 2.
I would like to extend my gratitude to many people who
helped me to bring this paper fruition. First I would like to
thank Prof. Snehal Nargundi. I am so deeply grateful for her
help, professionalism, and valuable guidance throughout this
paper. I would also like to thank to my friends and
colleague. This accomplishment would not have been
possible without them. Thank you.
REFERENCES
Fig 2 Use of KAC for data sharing
For sharing selected data on the server Alice first performs
the Setup. Later the public/master key pair (pk, mk) is
generated by executing the KeyGen. The msk master key is
kept secret and the public key pk and param are made
public. Anyone can encrypt the data m and this data is
uploaded on server. With the decrypting authority the other
users can access those data. If Alice is wants to share a set S
[1]. S. S. M. Chow, Y. J. He, L. C. K. Hui, and S.-M. Yiu,
SPICE - Simple Privacy-Preserving Identity-Management
for Cloud Environment, in Applied Cryptography and
Network Security ACNS 2012, ser. LNCS, vol. 7341.
Springer, 2012, pp. 526543.
[2]. C. Wang, S. S. M. Chow, Q. Wang, K. Ren, and W.
Lou, Privacy-Preserving Public Auditing for Secure Cloud
Storage, IEEE Trans.Computers, vol. 62, no. 2, pp. 362
375, 2013.
[3]. B. Wang, S. S. M. Chow, M. Li, and H. Li, Storing
Shared Dataon the Cloud via Security-Mediator, in
International Conference on Distributed Computing Systems
- ICDCS 2013. IEEE, 2013.
[4]. Cheng-Kang Chu, Sherman S.M. Chow, Wen-Guey
Tzeng, Jianying Zhou, and Robert H. Deng,Key-Aggregate
Cryptosystem for Scalable Data Sharing in Cloud Storage
IEEE Transactions On Parallel And Distributed System, Vol
25, No. 2 February 2014.
[5]. V. Goyal, O. Pandey, A. Sahai, and B. Waters,
Attribute-Based Encryption for Fine-Grained Access
Control of Encrypted data,in Proceedings of the 13th ACM
Conference on Computer and Communications Security
(CCS 06). ACM, 2006, pp. 8998.
[6]. Y. Sun and K. J. R. Liu, Scalable Hierarchical Access
Control in Secure Group Communications, in Proceedings
of the 23th IEEE International Conference on Computer
Communications (INFOCOM 04). IEEE, 2004.
_______________________________________________________________________________________
Volume: 03 Issue: 11 | Nov-2014, Available @ http://www.ijret.org
378
IJRET: International Journal of Research in Engineering and Technology
eISSN: 2319-1163 | pISSN: 2321-7308
[7]. D. Boneh and M. K. Franklin, Identity-Based
Encryption from the Weil Pairing, in Proceedings of
Advances in Cryptology CRYPTO 01, ser. LNCS, vol.
2139. Springer, 2001, pp. 213229.
[8]. M. Chase and S. S. M. Chow, Improving Privacy and
Security in Multi-Authority Attribute-Based Encryption, in
CM Conference on Computer and Communications
Security, 2009, pp. 121130.
BIOGRAPHIES
Ramakrishna Jadhav has obtained
Bachelor degree from Shivaji Unversity,
Kolhapur. Presently ME student at
R.M.D. Sinhagad School Of Engg.,Warje,
Savitribai
Phule
Pune
university,
Maharahstra ,India.
Snehal Nargundi is Assistant Professor at
R.M.D.
Sinhagad
School
Of
Engg.,Warje, Savitribai Phule Pune
university, Maharahstra ,India.
_______________________________________________________________________________________
Volume: 03 Issue: 11 | Nov-2014, Available @ http://www.ijret.org
379
You might also like
- The Subtle Art of Not Giving a F*ck: A Counterintuitive Approach to Living a Good LifeFrom EverandThe Subtle Art of Not Giving a F*ck: A Counterintuitive Approach to Living a Good LifeRating: 4 out of 5 stars4/5 (5795)
- Analysis and Optimization of Electrodes For Improving The Performance of Ring Laser Gyro PDFDocument4 pagesAnalysis and Optimization of Electrodes For Improving The Performance of Ring Laser Gyro PDFesatjournalsNo ratings yet
- Grit: The Power of Passion and PerseveranceFrom EverandGrit: The Power of Passion and PerseveranceRating: 4 out of 5 stars4/5 (588)
- Analysis and Design of A Multi Compartment Central Cone Cement Storing Silo PDFDocument7 pagesAnalysis and Design of A Multi Compartment Central Cone Cement Storing Silo PDFesatjournalsNo ratings yet
- The Yellow House: A Memoir (2019 National Book Award Winner)From EverandThe Yellow House: A Memoir (2019 National Book Award Winner)Rating: 4 out of 5 stars4/5 (98)
- PTE 3 Week Study ScheduleDocument3 pagesPTE 3 Week Study ScheduleesatjournalsNo ratings yet
- Hidden Figures: The American Dream and the Untold Story of the Black Women Mathematicians Who Helped Win the Space RaceFrom EverandHidden Figures: The American Dream and the Untold Story of the Black Women Mathematicians Who Helped Win the Space RaceRating: 4 out of 5 stars4/5 (895)
- Analysis and Optimization of Sand Casting Defects With The Help of Artificial Neural Network PDFDocument6 pagesAnalysis and Optimization of Sand Casting Defects With The Help of Artificial Neural Network PDFesatjournalsNo ratings yet
- Shoe Dog: A Memoir by the Creator of NikeFrom EverandShoe Dog: A Memoir by the Creator of NikeRating: 4.5 out of 5 stars4.5/5 (537)
- Analysis of Cylindrical Shell Structure With Varying Parameters PDFDocument6 pagesAnalysis of Cylindrical Shell Structure With Varying Parameters PDFesatjournalsNo ratings yet
- The Emperor of All Maladies: A Biography of CancerFrom EverandThe Emperor of All Maladies: A Biography of CancerRating: 4.5 out of 5 stars4.5/5 (271)
- A Review Paper On Smart Health Care System Using Internet of ThingsDocument5 pagesA Review Paper On Smart Health Care System Using Internet of ThingsesatjournalsNo ratings yet
- The Little Book of Hygge: Danish Secrets to Happy LivingFrom EverandThe Little Book of Hygge: Danish Secrets to Happy LivingRating: 3.5 out of 5 stars3.5/5 (400)
- A Servey On Wireless Mesh Networking ModuleDocument5 pagesA Servey On Wireless Mesh Networking ModuleesatjournalsNo ratings yet
- Elon Musk: Tesla, SpaceX, and the Quest for a Fantastic FutureFrom EverandElon Musk: Tesla, SpaceX, and the Quest for a Fantastic FutureRating: 4.5 out of 5 stars4.5/5 (474)
- A Three-Level Disposal Site Selection Criteria System For Toxic and Hazardous Wastes in The PhilippinesDocument9 pagesA Three-Level Disposal Site Selection Criteria System For Toxic and Hazardous Wastes in The PhilippinesesatjournalsNo ratings yet
- On Fire: The (Burning) Case for a Green New DealFrom EverandOn Fire: The (Burning) Case for a Green New DealRating: 4 out of 5 stars4/5 (74)
- A Review On Fake Biometric Detection System For Various ApplicationsDocument4 pagesA Review On Fake Biometric Detection System For Various ApplicationsesatjournalsNo ratings yet
- The Hard Thing About Hard Things: Building a Business When There Are No Easy AnswersFrom EverandThe Hard Thing About Hard Things: Building a Business When There Are No Easy AnswersRating: 4.5 out of 5 stars4.5/5 (345)
- A Study and Survey On Various Progressive Duplicate Detection MechanismsDocument3 pagesA Study and Survey On Various Progressive Duplicate Detection MechanismsesatjournalsNo ratings yet
- A Heartbreaking Work Of Staggering Genius: A Memoir Based on a True StoryFrom EverandA Heartbreaking Work Of Staggering Genius: A Memoir Based on a True StoryRating: 3.5 out of 5 stars3.5/5 (231)
- A Survey On Identification of Ranking Fraud For Mobile ApplicationsDocument6 pagesA Survey On Identification of Ranking Fraud For Mobile ApplicationsesatjournalsNo ratings yet
- Never Split the Difference: Negotiating As If Your Life Depended On ItFrom EverandNever Split the Difference: Negotiating As If Your Life Depended On ItRating: 4.5 out of 5 stars4.5/5 (838)
- A Women Secure Mobile App For Emergency Usage (Go Safe App)Document3 pagesA Women Secure Mobile App For Emergency Usage (Go Safe App)esatjournalsNo ratings yet
- A Research On Significance of Kalman Filter-Approach As Applied in Electrical Power SystemDocument8 pagesA Research On Significance of Kalman Filter-Approach As Applied in Electrical Power SystemesatjournalsNo ratings yet
- Team of Rivals: The Political Genius of Abraham LincolnFrom EverandTeam of Rivals: The Political Genius of Abraham LincolnRating: 4.5 out of 5 stars4.5/5 (234)
- BMSIT (Techincal Seminar)Document16 pagesBMSIT (Techincal Seminar)Manish ManiNo ratings yet
- Devil in the Grove: Thurgood Marshall, the Groveland Boys, and the Dawn of a New AmericaFrom EverandDevil in the Grove: Thurgood Marshall, the Groveland Boys, and the Dawn of a New AmericaRating: 4.5 out of 5 stars4.5/5 (266)
- Pki MRTD LixembourgDocument18 pagesPki MRTD LixembourgZeineb HajjiNo ratings yet
- 3.2 AES and Multiple DESDocument29 pages3.2 AES and Multiple DESPratibha JadhavNo ratings yet
- The World Is Flat 3.0: A Brief History of the Twenty-first CenturyFrom EverandThe World Is Flat 3.0: A Brief History of the Twenty-first CenturyRating: 3.5 out of 5 stars3.5/5 (2259)
- Cryptography Report of LIUCryptoDocument7 pagesCryptography Report of LIUCryptoBob Wazneh100% (1)
- The Gifts of Imperfection: Let Go of Who You Think You're Supposed to Be and Embrace Who You AreFrom EverandThe Gifts of Imperfection: Let Go of Who You Think You're Supposed to Be and Embrace Who You AreRating: 4 out of 5 stars4/5 (1091)
- CSE403 Network Security and Cryptography 12376::chetna Kwatra 3.0 0.0 0.0 3.0 Courses With Research FocusDocument8 pagesCSE403 Network Security and Cryptography 12376::chetna Kwatra 3.0 0.0 0.0 3.0 Courses With Research FocusParas ChadhaNo ratings yet
- SSL and TLS Building and Designing Secure Systems - Eric Rescorla 2000Document532 pagesSSL and TLS Building and Designing Secure Systems - Eric Rescorla 2000dfabf0a5No ratings yet
- Problems Chaptr 6Document2 pagesProblems Chaptr 6KhanNo ratings yet
- Practical Exploitation of RC4 Weaknesses in WEP EnvironmentsDocument11 pagesPractical Exploitation of RC4 Weaknesses in WEP EnvironmentsRoxana Aldea-CiaciruNo ratings yet
- Pgcrypto Avast!: A Study in Django's Password HashersDocument52 pagesPgcrypto Avast!: A Study in Django's Password Hasherskrishna.setwinNo ratings yet
- The Unwinding: An Inner History of the New AmericaFrom EverandThe Unwinding: An Inner History of the New AmericaRating: 4 out of 5 stars4/5 (45)
- Hill CipherDocument2 pagesHill CipherDil Prasad Kunwar50% (2)
- Secure Socket LayerDocument4 pagesSecure Socket LayerAkhilJaanuNo ratings yet
- Group 12 - Contributors: Hajrah Choudhry Vu Pham Nathaniel Lovgren Roozah Khan Joycelyn Joo Teddy SadowskiDocument9 pagesGroup 12 - Contributors: Hajrah Choudhry Vu Pham Nathaniel Lovgren Roozah Khan Joycelyn Joo Teddy SadowskiVũ Khánh PhạmNo ratings yet
- HPC-Spezifikation 2.3.2 - COS Teil 1Document278 pagesHPC-Spezifikation 2.3.2 - COS Teil 1Michael LawrenceNo ratings yet
- Basics To CryptographyDocument18 pagesBasics To CryptographyEvehn KadusaleNo ratings yet
- The Sympathizer: A Novel (Pulitzer Prize for Fiction)From EverandThe Sympathizer: A Novel (Pulitzer Prize for Fiction)Rating: 4.5 out of 5 stars4.5/5 (121)
- Communication Network Security PDFDocument2 pagesCommunication Network Security PDFVanessaNo ratings yet
- Presentation AES Vs SerpentDocument23 pagesPresentation AES Vs SerpentghionoiucNo ratings yet
- Panama Papers - Empresas de ArgentinosDocument17 pagesPanama Papers - Empresas de ArgentinosEl Destape100% (3)
- Ch5 - E-Commerce Security and Payment Systems - DR Nael QtatiDocument34 pagesCh5 - E-Commerce Security and Payment Systems - DR Nael QtatiMohammed LubbadNo ratings yet
- " Image Encryption Using AES ": End Semester Project Report OnDocument18 pages" Image Encryption Using AES ": End Semester Project Report OnShivam KumarNo ratings yet
- KRB 5 ApiDocument68 pagesKRB 5 Apiitspaulryan9085No ratings yet
- Applied Cryptography and Network SecurityDocument715 pagesApplied Cryptography and Network SecurityzxarisNo ratings yet
- Provable SecurityDocument61 pagesProvable SecurityAbdul Moid KhanNo ratings yet
- Data Integrity Auditing Without Private Key Storage For Secure Cloud StorageDocument3 pagesData Integrity Auditing Without Private Key Storage For Secure Cloud StorageInternational Journal of Trendy Research in Engineering and TechnologyNo ratings yet
- Week13-Cryptography Substitution CipherDocument21 pagesWeek13-Cryptography Substitution CipherMalaika MunawarNo ratings yet
- Cryptography and Public Key InfrastructureDocument58 pagesCryptography and Public Key InfrastructureDhruv PandyaNo ratings yet
- Her Body and Other Parties: StoriesFrom EverandHer Body and Other Parties: StoriesRating: 4 out of 5 stars4/5 (821)
- 501 CH 10 CryptographyDocument66 pages501 CH 10 CryptographysomethingNo ratings yet
- Cis 700/002: Special Topics: Secure MQTT For Iot: Sangdon Park Cis 700/002: Security of Embs/Cps/IotDocument16 pagesCis 700/002: Special Topics: Secure MQTT For Iot: Sangdon Park Cis 700/002: Security of Embs/Cps/IotShanaya chauhanNo ratings yet
- Lesson 15 - Unit 2 - Networks (Part 2)Document22 pagesLesson 15 - Unit 2 - Networks (Part 2)shahanaNo ratings yet
- Data Encryption Standard DES Set 1Document11 pagesData Encryption Standard DES Set 1PrasiNo ratings yet
- Kerlerec's CipherDocument17 pagesKerlerec's CipherDonald E. PuschNo ratings yet
