TRA-PS: Accountable data Pub/Sub service with fast and fine-grained controllable subscription

IF 3.7 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE Journal of Systems Architecture Pub Date : 2024-06-03 DOI:10.1016/j.sysarc.2024.103197

Kai Zhang , Xiaobing Shi , Jinguo Li , Yi Wu , Jianting Ning

{"title":"TRA-PS: Accountable data Pub/Sub service with fast and fine-grained controllable subscription","authors":"Kai Zhang , Xiaobing Shi , Jinguo Li , Yi Wu , Jianting Ning","doi":"10.1016/j.sysarc.2024.103197","DOIUrl":null,"url":null,"abstract":"<div><p>The Cloud-based data publish/subscribe (Pub/Sub) service presents a selective manner for publishers and subscribers to share and receive data, where confidentiality and authorized access to the data are the fundamental security properties. Therefore, the methodology of attribute-based keyword search (ABKS) was applied that recently considered bilateral access control between the publisher and subscriber. However, existing data Pub/Sub solutions fail to take into account the following features: (i) the efficient revocation of subscribers; (ii) the traceability and auditability of subscriptions; (iii) the excessive time cost of decryption procedure. Therefore, we propose TRA-PS, an accountable data Pub/Sub service that implements efficient revocation, traceability, and public auditability for subscriptions. Technically, we refine the secret key of subscriber in the classic ABKS schemes with associating its identity information and binding accountability module. In addition, we implement TRA-PS and evaluate its practical performance compared to state-of-the-art work in the real cloud environment. Besides achieving accountable property, TRA-PS significantly diminishes the decryption time cost (number of attributes/keywords is 25) by 91.8%, independent of the number of attributes/keywords.</p></div>","PeriodicalId":50027,"journal":{"name":"Journal of Systems Architecture","volume":"153 ","pages":"Article 103197"},"PeriodicalIF":3.7000,"publicationDate":"2024-06-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Systems Architecture","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1383762124001346","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

The Cloud-based data publish/subscribe (Pub/Sub) service presents a selective manner for publishers and subscribers to share and receive data, where confidentiality and authorized access to the data are the fundamental security properties. Therefore, the methodology of attribute-based keyword search (ABKS) was applied that recently considered bilateral access control between the publisher and subscriber. However, existing data Pub/Sub solutions fail to take into account the following features: (i) the efficient revocation of subscribers; (ii) the traceability and auditability of subscriptions; (iii) the excessive time cost of decryption procedure. Therefore, we propose TRA-PS, an accountable data Pub/Sub service that implements efficient revocation, traceability, and public auditability for subscriptions. Technically, we refine the secret key of subscriber in the classic ABKS schemes with associating its identity information and binding accountability module. In addition, we implement TRA-PS and evaluate its practical performance compared to state-of-the-art work in the real cloud environment. Besides achieving accountable property, TRA-PS significantly diminishes the decryption time cost (number of attributes/keywords is 25) by 91.8%, independent of the number of attributes/keywords.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

TRA-PS：提供快速、精细可控订阅的可问责数据发布/子服务

基于云的数据发布/订阅（Pub/Sub）服务为发布者和订阅者提供了一种有选择地共享和接收数据的方式，数据的保密性和授权访问是其基本的安全属性。因此，基于属性的关键字搜索（ABKS）方法得到了应用，该方法最近考虑了发布者和订阅者之间的双边访问控制。然而，现有的数据发布/订阅解决方案没有考虑到以下特点：(i) 订阅者的有效撤销；(ii) 订阅的可追溯性和可审计性；(iii) 解密过程的时间成本过高。因此，我们提出了 TRA-PS，一种可问责的数据 Pub/Sub 服务，它实现了订阅的高效撤销、可追溯性和公开可审计性。在技术上，我们通过关联订阅者的身份信息和绑定责任模块，完善了经典 ABKS 方案中订阅者的秘钥。此外，我们还实现了 TRA-PS，并在真实云环境中评估了其与最先进技术的实际性能。TRA-PS 除了实现了可问责特性外，还显著降低了解密时间成本（属性/关键字数量为 25），降幅达 91.8%，且与属性/关键字数量无关。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Journal of Systems Architecture 工程技术-计算机：硬件

CiteScore

8.70

自引率

15.60%

发文量

226

审稿时长

46 days

期刊介绍： The Journal of Systems Architecture: Embedded Software Design (JSA) is a journal covering all design and architectural aspects related to embedded systems and software. It ranges from the microarchitecture level via the system software level up to the application-specific architecture level. Aspects such as real-time systems, operating systems, FPGA programming, programming languages, communications (limited to analysis and the software stack), mobile systems, parallel and distributed architectures as well as additional subjects in the computer and system architecture area will fall within the scope of this journal. Technology will not be a main focus, but its use and relevance to particular designs will be. Case studies are welcome but must contribute more than just a design for a particular piece of software. Design automation of such systems including methodologies, techniques and tools for their design as well as novel designs of software components fall within the scope of this journal. Novel applications that use embedded systems are also central in this journal. While hardware is not a part of this journal hardware/software co-design methods that consider interplay between software and hardware components with and emphasis on software are also relevant here.