Abstract:Expressive data sharing and efficient data deletion are essential to drive the development of cloud-assisted IoT. But insecure transmission and the vulnerability of the cloud server may cause potential threats to IoT data, attribute-based encryption (ABE) is widely applied to ensure data confidentially. Nonetheless, the potential data exposure caused by the compromised long-term key and the contradiction between conventional access structures in ABE and the various demands of data owners are still two huge challenges. To overcome these challenges, this article designs an unbounded and puncturable ciphertext-policy ABE with arithmetic span program ( <inline-formula><tex-math notation="LaTeX">$\mathcal {UP}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {CP}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {ABE}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {ASP}$</tex-math></inline-formula> ) scheme and presents an expressive data sharing and self-controlled fine-grained data deletion solution in cloud-assisted IoT, which allows data owners to efficiently encrypt and share data with various computable access policies, but also enables data owners and data users to independently delete specific data stored in the cloud. The designed <inline-formula><tex-math notation="LaTeX">$\mathcal {UP}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {CP}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {ABE}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {ASP}$</tex-math></inline-formula> leverages unbounded ABE and puncturable encryption to support the flexible update of system parameters and the deletion of specific data. Also, the arithmetic span program access structure is combined to realize expressive data sharing. Moreover, the <inline-formula><tex-math notation="LaTeX">$\mathcal {UP}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {CP}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {ABE}$</tex-math></inline-formula> - <inline-formula><tex-math notation="LaTeX">$\mathcal {ASP}$</tex-math></inline-formula> is adaptively secure in the standard model, and comprehensive performance evaluations demonstrate its practicability and scalability in cloud-assisted IoT.

Expressive Data Sharing and Self-Controlled Fine-Grained Data Deletion in Cloud-Assisted IoT

Attribute Based Encryption with Privacy Protection and Accountability for CloudIoT

Fine-grained Data Access Control with Attribute-Hiding Policy for Cloud-Based IoT.

Efficient Outsourced Data Access Control with User Revocation for Cloud-Based IoT

Unbounded and Efficient Revocable Attribute-Based Encryption With Adaptive Security for Cloud-Assisted Internet of Things

Efficient Revocable Storage Attribute-based Encryption with Arithmetic Span Programs in Cloud-assisted Internet of Things

Efficient Data Access Control With Fine-Grained Data Protection in Cloud-Assisted IIoT

A Lightweight Attribute-Based Access Control Scheme for Intelligent Transportation System With Full Privacy Protection

Combining Data Owner-Side and Cloud-Side Access Control for Encrypted Cloud Storage.

An Efficient ECC-Based CP-ABE Scheme for Power IoT

Achieving Secure, Scalable, and Fine-grained Data Access Control in Cloud Computing

Secure Data Sharing with Flexible User Access Privilege Update in Cloud-Assisted IoMT

An Attribute-Based Controlled Collaborative Access Control Scheme for Public Cloud Storage.

Enabling Ciphertext Deduplication for Secure Cloud Storage and Access Control

A tunable emerald laser

Privacy-Preserving Flexible Access Control for Encrypted Data in Internet of Things

Efficient and Secure Attribute-Based Access Control with Identical Sub-Policies Frequently Used in Cloud Storage

Efficient CP-ABE Scheme With Shared Decryption in Cloud Storage

TAFC: Time and Attribute Factors Combined Access Control on Time-Sensitive Data in Public Cloud

A Secure Data-Sharing Scheme for Privacy-Preserving Supporting Node–Edge–Cloud Collaborative Computation

An efficient fine-grained data access control system with a bounded service number