Privacy-preserving attribute-based access control using homomorphic encryption
Abstract Authentication and access control for Cyber-Physical Systems (CPSs) are pivotal for protecting systems and their users from problems related to harmful actions and the malicious use of retrieved data. In some situations, making access decisions requires using user information, thereby chall...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
SpringerOpen
2025-01-01
|
| Series: | Cybersecurity |
| Subjects: | |
| Online Access: | https://doi.org/10.1186/s42400-024-00323-8 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832585679376220160 |
|---|---|
| author | Malte Kerl Ulf Bodin Olov Schelén |
| author_facet | Malte Kerl Ulf Bodin Olov Schelén |
| author_sort | Malte Kerl |
| collection | DOAJ |
| description | Abstract Authentication and access control for Cyber-Physical Systems (CPSs) are pivotal for protecting systems and their users from problems related to harmful actions and the malicious use of retrieved data. In some situations, making access decisions requires using user information, thereby challenging their privacy. Attribute-based access control (ABAC) supports dynamic and context-aware access decisions that are attractive in cyber-physical system environments. However, privacy preservation for access decisions is an open issue for authorization and is not supported by existing ABAC models. For example, if access decisions need to be made based on private attribute values such as health data, the corresponding access control policies need to be revealed. This paper reviews the ABAC, homomorphic encryption (HE), and zero-knowledge proof (ZKP) approaches, confirming the gap in privacy preservation in ABAC. Based on this observation, we further present the application of a new ZKP-based protocol in which ABAC allows for the privacy-preserving evaluation of attributes. This protocol is implemented and evaluated in terms of its performance and security. The evaluation demonstrates that there is a possibility for privacy-preserving ABAC, which may benefit the use of CPS, e.g., in underground and open-pit mines. |
| format | Article |
| id | doaj-art-f9f417f7544e4b88b1c4fae04cd8e078 |
| institution | Kabale University |
| issn | 2523-3246 |
| language | English |
| publishDate | 2025-01-01 |
| publisher | SpringerOpen |
| record_format | Article |
| series | Cybersecurity |
| spelling | doaj-art-f9f417f7544e4b88b1c4fae04cd8e0782025-01-26T12:39:21ZengSpringerOpenCybersecurity2523-32462025-01-018111610.1186/s42400-024-00323-8Privacy-preserving attribute-based access control using homomorphic encryptionMalte Kerl0Ulf Bodin1Olov Schelén2Department of Computer Science, Electrical and Space Engineering, Luleå University of TechnologyDepartment of Computer Science, Electrical and Space Engineering, Luleå University of TechnologyDepartment of Computer Science, Electrical and Space Engineering, Luleå University of TechnologyAbstract Authentication and access control for Cyber-Physical Systems (CPSs) are pivotal for protecting systems and their users from problems related to harmful actions and the malicious use of retrieved data. In some situations, making access decisions requires using user information, thereby challenging their privacy. Attribute-based access control (ABAC) supports dynamic and context-aware access decisions that are attractive in cyber-physical system environments. However, privacy preservation for access decisions is an open issue for authorization and is not supported by existing ABAC models. For example, if access decisions need to be made based on private attribute values such as health data, the corresponding access control policies need to be revealed. This paper reviews the ABAC, homomorphic encryption (HE), and zero-knowledge proof (ZKP) approaches, confirming the gap in privacy preservation in ABAC. Based on this observation, we further present the application of a new ZKP-based protocol in which ABAC allows for the privacy-preserving evaluation of attributes. This protocol is implemented and evaluated in terms of its performance and security. The evaluation demonstrates that there is a possibility for privacy-preserving ABAC, which may benefit the use of CPS, e.g., in underground and open-pit mines.https://doi.org/10.1186/s42400-024-00323-8Non-interactive zero knowledge proofPrivacy preservationAuthenticationConfidentialityCyber securityData protection |
| spellingShingle | Malte Kerl Ulf Bodin Olov Schelén Privacy-preserving attribute-based access control using homomorphic encryption Cybersecurity Non-interactive zero knowledge proof Privacy preservation Authentication Confidentiality Cyber security Data protection |
| title | Privacy-preserving attribute-based access control using homomorphic encryption |
| title_full | Privacy-preserving attribute-based access control using homomorphic encryption |
| title_fullStr | Privacy-preserving attribute-based access control using homomorphic encryption |
| title_full_unstemmed | Privacy-preserving attribute-based access control using homomorphic encryption |
| title_short | Privacy-preserving attribute-based access control using homomorphic encryption |
| title_sort | privacy preserving attribute based access control using homomorphic encryption |
| topic | Non-interactive zero knowledge proof Privacy preservation Authentication Confidentiality Cyber security Data protection |
| url | https://doi.org/10.1186/s42400-024-00323-8 |
| work_keys_str_mv | AT maltekerl privacypreservingattributebasedaccesscontrolusinghomomorphicencryption AT ulfbodin privacypreservingattributebasedaccesscontrolusinghomomorphicencryption AT olovschelen privacypreservingattributebasedaccesscontrolusinghomomorphicencryption |