{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,3]],"date-time":"2026-05-03T11:03:53Z","timestamp":1777806233383,"version":"3.51.4"},"reference-count":42,"publisher":"SAGE Publications","issue":"6","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["JCS"],"published-print":{"date-parts":[[2023,11,10]]},"abstract":"<jats:p>Attribute based encryption (ABE) is a cryptographic technique allowing fine-grained access control by enabling one-to-many encryption. Existing ABE constructions suffer from at least one of the following limitations. First, single point of failure on security meaning that, once an authority is compromised, an adversary can either easily break the confidentiality of the encrypted data or effortlessly prevent legitimate users from accessing data; second, the lack of user and\/or attribute revocation mechanism achieving forward and backward secrecy; third, a heavy computation workload is placed on data user; last but not least, the lack of adaptive security in standard models. In this paper, we propose the first single-point-of-failure free multi-authority ciphertext-policy ABE that simultaneously (1) ensures robustness for both decryption key issuing and access revocation while achieving both backward and forward secrecy; (2) enables outsourced decryption to reduce the decryption overhead for data users that have limited computational resources; and (3) achieves adaptive (full) security in standard models. The provided theoretical complexity comparison as well as the conducted experiments show that our construction introduces linear storage and computation overheads that occurs only once during its setup phase, which we believe to be a reasonable price to pay to achieve all previous features.<\/jats:p>","DOI":"10.3233\/jcs-220129","type":"journal-article","created":{"date-parts":[[2023,9,12]],"date-time":"2023-09-12T13:43:38Z","timestamp":1694526218000},"page":"727-760","source":"Crossref","is-referenced-by-count":2,"title":["Robust, revocable, forward and backward adaptively secure attribute-based encryption with outsourced decryption1"],"prefix":"10.1177","volume":"31","author":[{"given":"Anis","family":"Bkakria","sequence":"first","affiliation":[{"name":"IRT SystemX, Palaiseau, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"179","reference":[{"key":"10.3233\/JCS-220129_ref1","doi-asserted-by":"crossref","unstructured":"A.S.\u00a0Ahmed and T.\u00a0Aura, Turning trust around: Smart contract-assisted public key infrastructure, in: 2018 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications\/12th IEEE International Conference on Big Data Science and Engineering (TrustCom\/BigDataSE), IEEE, 2018, pp.\u00a0104\u2013111.","DOI":"10.1109\/TrustCom\/BigDataSE.2018.00026"},{"key":"10.3233\/JCS-220129_ref2","doi-asserted-by":"publisher","DOI":"10.3390\/s19071695"},{"key":"10.3233\/JCS-220129_ref3","doi-asserted-by":"crossref","unstructured":"M.\u00a0Bertilsson and I.\u00a0Ingemarsson, A construction of practical secret sharing schemes using linear block codes, in: International Workshop on the Theory and Application of Cryptographic Techniques, Springer, 1992, pp.\u00a067\u201379.","DOI":"10.1007\/3-540-57220-1_53"},{"key":"10.3233\/JCS-220129_ref4","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2007.11"},{"key":"10.3233\/JCS-220129_ref5","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-10684-2_12"},{"key":"10.3233\/JCS-220129_ref6","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-85538-5_3"},{"key":"10.3233\/JCS-220129_ref7","doi-asserted-by":"crossref","unstructured":"H.\u00a0Cui, R.H.\u00a0Deng, Y.\u00a0Li and B.\u00a0Qin, Server-aided revocable attribute-based encryption, in: European Symposium on Research in Computer Security, Springer, 2016, pp.\u00a0570\u2013587.","DOI":"10.1007\/978-3-319-45741-3_29"},{"key":"10.3233\/JCS-220129_ref8","doi-asserted-by":"crossref","unstructured":"A.\u00a0De Caro and V.\u00a0Iovino, jPBC: Java pairing based cryptography, in: Proceedings of the 16th IEEE Symposium on Computers and Communications, ISCC 2011, June 28\u2013July 1, 2011, Kerkyra, Corfu, Greece, IEEE, 2011, pp.\u00a0850\u2013855, http:\/\/gas.dia.unisa.it\/projects\/jpbc\/.","DOI":"10.1109\/ISCC.2011.5983948"},{"key":"10.3233\/JCS-220129_ref9","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-00843-6_2"},{"issue":"5","key":"10.3233\/JCS-220129_ref10","doi-asserted-by":"publisher","first-page":"2864","DOI":"10.1109\/TDSC.2021.3065999","article-title":"Revocable attribute-based encryption with data integrity in clouds","volume":"19","author":"Ge","year":"2021","journal-title":"IEEE Transactions on Dependable and Secure Computing"},{"key":"10.3233\/JCS-220129_ref11","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-70583-3_47"},{"issue":"11","key":"10.3233\/JCS-220129_ref12","doi-asserted-by":"publisher","first-page":"2150","DOI":"10.1109\/TPDS.2012.50","article-title":"Privacy-preserving decentralized key-policy attribute-based encryption","volume":"23","author":"Han","year":"2012","journal-title":"IEEE transactions on parallel and distributed systems"},{"key":"10.3233\/JCS-220129_ref13","doi-asserted-by":"crossref","unstructured":"J.\u00a0Han, W.\u00a0Susilo, Y.\u00a0Mu, J.\u00a0Zhou and M.H.\u00a0Au, PPDCP-ABE: Privacy-preserving decentralized ciphertext-policy attribute-based encryption, in: European Symposium on Research in Computer Security, Springer, 2014, pp.\u00a073\u201390.","DOI":"10.1007\/978-3-319-11212-1_5"},{"issue":"7","key":"10.3233\/JCS-220129_ref14","doi-asserted-by":"publisher","first-page":"1214","DOI":"10.1109\/TPDS.2010.203","article-title":"Attribute-based access control with efficient revocation in data outsourcing systems","volume":"22","author":"Hur","year":"2011","journal-title":"IEEE Transactions on Parallel and Distributed Systems"},{"issue":"9","key":"10.3233\/JCS-220129_ref15","first-page":"56","article-title":"Secret sharing scheme realizing general access structure","volume":"72","author":"Ito","year":"1989","journal-title":"Electronics and Communications in Japan (Part III: Fundamental Electronic Science)"},{"key":"10.3233\/JCS-220129_ref17","doi-asserted-by":"publisher","DOI":"10.1109\/SCT.1993.336536"},{"key":"10.3233\/JCS-220129_ref18","doi-asserted-by":"publisher","first-page":"37","DOI":"10.1016\/j.jnca.2018.02.009","article-title":"Attribute based encryption in cloud computing: A survey, gap analysis, and future directions","volume":"108","author":"Kumar","year":"2018","journal-title":"Journal of Network and Computer Applications"},{"key":"10.3233\/JCS-220129_ref19","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.23"},{"key":"10.3233\/JCS-220129_ref20","doi-asserted-by":"crossref","unstructured":"A.\u00a0Lewko and B.\u00a0Waters, Decentralizing attribute-based encryption, in: Annual International Conference on the Theory and Applications of Cryptographic Techniques, Springer, 2011, pp.\u00a0568\u2013588.","DOI":"10.1007\/978-3-642-20465-4_31"},{"issue":"2","key":"10.3233\/JCS-220129_ref21","doi-asserted-by":"publisher","first-page":"1767","DOI":"10.1109\/JSYST.2017.2667679","article-title":"User collusion avoidance CP-ABE with efficient attribute revocation for cloud storage","volume":"12","author":"Li","year":"2017","journal-title":"IEEE Systems Journal"},{"key":"10.3233\/JCS-220129_ref22","doi-asserted-by":"publisher","first-page":"45","DOI":"10.1016\/j.cose.2016.02.002","article-title":"Secure, efficient and revocable multi-authority access control system in cloud storage","volume":"59","author":"Li","year":"2016","journal-title":"Computers & Security"},{"issue":"5","key":"10.3233\/JCS-220129_ref23","doi-asserted-by":"publisher","first-page":"1484","DOI":"10.1109\/TPDS.2015.2448095","article-title":"TMACS: A robust and verifiable threshold multi-authority access control system in public cloud storage","volume":"27","author":"Li","year":"2015","journal-title":"IEEE Transactions on parallel and distributed systems"},{"key":"10.3233\/JCS-220129_ref24","doi-asserted-by":"publisher","DOI":"10.1145\/1533057.1533094"},{"key":"10.3233\/JCS-220129_ref25","doi-asserted-by":"publisher","DOI":"10.1145\/1533057.1533102"},{"issue":"7","key":"10.3233\/JCS-220129_ref27","doi-asserted-by":"publisher","first-page":"983","DOI":"10.1093\/comjnl\/bxv101","article-title":"Practical attribute-based encryption: Traitor tracing, revocation and large universe","volume":"59","author":"Liu","year":"2016","journal-title":"The Computer Journal"},{"key":"10.3233\/JCS-220129_ref28","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-17650-0_28"},{"key":"10.3233\/JCS-220129_ref30","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-68914-0_7"},{"key":"10.3233\/JCS-220129_ref31","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315270"},{"key":"10.3233\/JCS-220129_ref32","doi-asserted-by":"crossref","unstructured":"T.P.\u00a0Pedersen, A threshold cryptosystem without a trusted party, in: Workshop on the Theory and Application of Cryptographic Techniques, Springer, 1991, pp.\u00a0522\u2013526.","DOI":"10.1007\/3-540-46416-6_47"},{"key":"10.3233\/JCS-220129_ref33","doi-asserted-by":"publisher","first-page":"487","DOI":"10.1007\/s10207-014-0270-9","article-title":"Privacy-preserving personal health record using multi-authority attribute-based encryption with revocation","volume":"14","author":"Qian","year":"2015","journal-title":"International Journal of Information Security"},{"key":"10.3233\/JCS-220129_ref34","doi-asserted-by":"publisher","first-page":"74","DOI":"10.1016\/j.ins.2019.03.053","article-title":"(Dual) server-aided revocable attribute-based encryption with decryption key exposure resistance","volume":"490","author":"Qin","year":"2019","journal-title":"Information Sciences"},{"key":"10.3233\/JCS-220129_ref35","doi-asserted-by":"crossref","unstructured":"A.\u00a0Sahai and B.\u00a0Waters, Fuzzy identity-based encryption, in: Annual International Conference on the Theory and Applications of Cryptographic Techniques, Springer, 2005, pp.\u00a0457\u2013473.","DOI":"10.1007\/11426639_27"},{"issue":"11","key":"10.3233\/JCS-220129_ref36","doi-asserted-by":"publisher","first-page":"612","DOI":"10.1145\/359168.359176","article-title":"How to share a secret","volume":"22","author":"Shamir","year":"1979","journal-title":"Communications of the ACM"},{"issue":"11","key":"10.3233\/JCS-220129_ref37","doi-asserted-by":"publisher","first-page":"2577","DOI":"10.1007\/s10623-021-00939-8","article-title":"Fast, compact, and expressive attribute-based encryption","volume":"89","author":"Tomida","year":"2021","journal-title":"Designs, Codes and Cryptography"},{"key":"10.3233\/JCS-220129_ref38","doi-asserted-by":"crossref","unstructured":"B.\u00a0Waters, Ciphertext-policy attribute-based encryption: An expressive, efficient, and provably secure realization, in: International Workshop on Public Key Cryptography, Springer, 2011, pp.\u00a053\u201370.","DOI":"10.1007\/978-3-642-19379-8_4"},{"key":"10.3233\/JCS-220129_ref42","doi-asserted-by":"crossref","unstructured":"A.\u00a0Yakubov, W.\u00a0Shbair, A.\u00a0Wallbom, D.\u00a0Sanda et al., A blockchain-based PKI management framework, in: The First IEEE\/IFIP International Workshop on Managing and Managed, by Blockchain (Man2Block) Colocated with IEEE\/IFIP NOMS 2018, Tapei, Tawain, April 23\u201327, 2018, 2018.","DOI":"10.1109\/NOMS.2018.8406325"},{"issue":"7","key":"10.3233\/JCS-220129_ref43","doi-asserted-by":"publisher","first-page":"1735","DOI":"10.1109\/TPDS.2013.253","article-title":"Expressive, efficient, and revocable data access control for multi-authority cloud storage","volume":"25","author":"Yang","year":"2013","journal-title":"IEEE transactions on parallel and distributed systems"},{"key":"10.3233\/JCS-220129_ref44","doi-asserted-by":"publisher","DOI":"10.1145\/2484313.2484383"},{"issue":"11","key":"10.3233\/JCS-220129_ref45","doi-asserted-by":"publisher","first-page":"1790","DOI":"10.1109\/TIFS.2013.2279531","article-title":"DAC-MACS: Effective data access control for multiauthority cloud storage systems","volume":"8","author":"Yang","year":"2013","journal-title":"IEEE Transactions on Information Forensics and Security"},{"issue":"2","key":"10.3233\/JCS-220129_ref46","doi-asserted-by":"publisher","first-page":"532","DOI":"10.1109\/TCC.2015.2485199","article-title":"Cloud-based fine-grained health information access control framework for LightweightIoT devices with dynamic auditing and attribute revocation","volume":"6","author":"Yeh","year":"2018","journal-title":"IEEE Transactions on Cloud Computing"},{"key":"10.3233\/JCS-220129_ref47","doi-asserted-by":"publisher","DOI":"10.1145\/1755688.1755720"},{"issue":"4","key":"10.3233\/JCS-220129_ref48","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3362031","article-title":"Attribute-based encryption for cloud computing access control: A survey","volume":"53","author":"Zhang","year":"2020","journal-title":"ACM Computing Surveys (CSUR)"}],"container-title":["Journal of Computer Security"],"original-title":[],"link":[{"URL":"https:\/\/content.iospress.com\/download?id=10.3233\/JCS-220129","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,29]],"date-time":"2026-04-29T20:45:45Z","timestamp":1777495545000},"score":1,"resource":{"primary":{"URL":"https:\/\/journals.sagepub.com\/doi\/full\/10.3233\/JCS-220129"}},"subtitle":[],"editor":[{"given":"Shamik","family":"Sural","sequence":"additional","affiliation":[],"role":[{"role":"editor","vocabulary":"crossref"}]},{"given":"Haibing","family":"Lu","sequence":"additional","affiliation":[],"role":[{"role":"editor","vocabulary":"crossref"}]}],"short-title":[],"issued":{"date-parts":[[2023,11,10]]},"references-count":42,"journal-issue":{"issue":"6"},"URL":"https:\/\/doi.org\/10.3233\/jcs-220129","relation":{},"ISSN":["1875-8924","0926-227X"],"issn-type":[{"value":"1875-8924","type":"electronic"},{"value":"0926-227X","type":"print"}],"subject":[],"published":{"date-parts":[[2023,11,10]]}}}