Paper 2014/966

Privacy-Preserving Data Publish-Subscribe Service on Cloud-based Platforms

Kan Yang, Xiaohua Jia, Kuan Zhang, and Xuemin (Sherman) Shen


Data publish-subscribe service is an effective approach to share and filter data. Due to the huge volume and velocity of data generated daily, cloud systems are inevitably becoming the platform for data publication and subscription. However, the privacy becomes a challenging issue as the cloud server cannot be fully trusted by both data publishers and data subscribers. In this paper, we propose a privacy-preserving data publish-subscribe service for cloud-based platforms. Specifically, we first formulate the problem of privacy-preserving data publish-subscribe service by refining its security requirements on cloud-based platforms. Then, we propose a bi-policy attribute-based encryption (BP-ABE) scheme as the underlying technique that enables the encryptor to define access policies and the decryptor to define filtering policies. Based on BP-ABE, we also propose a \underline{P}rivacy-preserving \underline{D}ata \underline{P}ublish-\underline{S}ubscribe (PDPS) scheme on cloud-based platforms, which enables the cloud server to evaluate both subscription policy and access policy in a privacy-preserving way. The security analysis and performance evaluation show that the PDPS scheme is secure in standard model and efficient in practice.

Available format(s)
Publication info
Preprint. MINOR revision.
Publish-SubscribeBP-ABESubscription PolicyAccess PolicySubscription PrivacyData Privacy.
Contact author(s)
kan yang @ uwaterloo ca
2014-11-28: received
Short URL
Creative Commons Attribution


      author = {Kan Yang and Xiaohua Jia and Kuan Zhang and Xuemin (Sherman) Shen},
      title = {Privacy-Preserving Data Publish-Subscribe Service on Cloud-based Platforms},
      howpublished = {Cryptology ePrint Archive, Paper 2014/966},
      year = {2014},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.