Title :
Hierarchical and Shared Key Assignment
Author :
Castiglione, Arcangelo ; De Santis, Alfredo ; Masucci, Barbara
Author_Institution :
Dipt. di Inf., Univ. degli Studi di Salerno, Fisciano, Italy
Abstract :
Access control ensures that only the authorized users of a system are allowed to access certain resources or tasks. Usually, according to their powers and responsibilities, users are organized in hierarchies formed by a certain number of disjoint classes. Such hierarchies are implemented by assigning a key to each class, so that the keys for descendant classes can be derived efficiently from classes higher in the hierarchy. However, in many cases the only hierarchical access represents a limitation. Indeed, sometimes it might be useful or even necessary to ensure the access to a resource or task to both his direct responsible (or owner) and a group of users possessing certain credentials. In this paper, we first propose a novel model that extends the conventional hierarchical access and allows such access even by certain sets of qualified users. Afterwards, we propose a construction for hierarchical key assignment schemes in this new model. The proposed construction is provably secure with respect to key indistinguishability and relies on both symmetric encryption and perfect secret sharing.
Keywords :
authorisation; cryptography; access control; hierarchical access; hierarchical key assignment; perfect secret sharing; provable security; shared key assignment; symmetric encryption; Access control; Collaboration; Encryption; Medical services; Polynomials; Generalized access control; Generalized access model; Key assignment; Provable security; Shared key reconstruction; Multiple access structures;
Conference_Titel :
Network-Based Information Systems (NBiS), 2014 17th International Conference on
Conference_Location :
Salerno
Print_ISBN :
978-1-4799-4226-8
DOI :
10.1109/NBiS.2014.106
