Privacy-preserving access control in publicly readable storage systems
2016 (English)In: 10th IFIP WG 9.2, 9.5, 9.6/11.7, 11.4, 11.6/SIG 9.2.2 International Summer School on Privacy and Identity Management, 2015, Springer-Verlag New York, 2016, 327-342 p.Conference paper (Refereed)
In this paper, we focus on achieving privacy-preserving access control mechanisms for decentralized storage, primarily intended for an asynchronous message passing setting. We propose two modular constructions, one using a pull strategy and the other a push strategy for sharing data. These models yield different privacy properties and requirements on the underlying system. We achieve hidden policies, hidden credentials and hidden decisions. We additionally achieve what could be called ‘hidden policy-updates’, meaning that previously-authorized subjects cannot determine if they have been excluded from future updates or not.
Place, publisher, year, edition, pages
Springer-Verlag New York, 2016. 327-342 p.
Access control, Cloud storage, Decentralized storage, Hidden credentials, Hidden policies, Hidden policy-updates, Privacy, Data privacy, Digital storage, Education, Message passing, Modular construction, Access control mechanism, Cloud storages, Hidden decisions, Message-passing settings, Privacy preserving, Underlying systems
IdentifiersURN: urn:nbn:se:kth:diva-195519DOI: 10.1007/978-3-319-41763-9_22ScopusID: 2-s2.0-84979210041ISBN: 9783319417622OAI: oai:DiVA.org:kth-195519DiVA: diva2:1046622
16 August 2015 through 21 August 2015
QC 201611142016-11-142016-11-032016-11-14Bibliographically approved