IoT devices collect large amounts of industrial and personal data, which can raise serious privacy and security concerns. Due to storage constraints, IoT devices need to upload the collected data to a third party's cloud server for storage. This situation would severely limit the data owner's ability to manage the data. If the data is uploaded directly, the data owner cannot guarantee that the service provider will not disclose and sell this data, which could lead to a data breach. In this paper, we formalize an encrypted access control framework for large-scale time-series data access control in IoT scenarios based on puncturable attribute-based encryption. The scheme allows data owners to share time-series data collected by IoT devices at a fine-grained level, while ensuring the confidentiality of the data during transmission and storage. The decryption keys can repeatedly be updated to revoke the recipients' ability to decrypt a selected message, or a message created during a specific time period. Through careful protocol design and implementation, the computational efficiency of the proposed scheme is comparable to the state-of-the-art method with the same functionalities. Encryption can be done in about several hundred milli-second, decryption takes only about tens of millisecond and the time required for decryption is constant.
Access to the requested content is limited to institutions that have purchased or subscribe to SPIE eBooks.
You are receiving this notice because your organization may not have SPIE eBooks access.*
*Shibboleth/Open Athens users─please
sign in
to access your institution's subscriptions.
To obtain this item, you may purchase the complete book in print or electronic format on
SPIE.org.
INSTITUTIONAL Select your institution to access the SPIE Digital Library.
PERSONAL Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.