In this paper, we present a new system with access control key updates and direct user revocation, that are beneficial features in IoT. Access control is done using Ciphertext-Policy Attribute-Based Encryption where attributes represent roles of devices within their networks. Moreover, we devise a novel approach, based on a binary tree, to append time credentials. This allows us to find an interesting trade-off between key update frequency and user revocation list length, as well as stressing time-sensitive data exchanged in IoT environments. The security of our scheme is proved under the Decisional Bilinear Diffie-Hellman Exponent assumption.
Future work will focus on the implementation and analysis of our solution, in order to confirm that the latter is fully deployable in IoT networks.
Category / Keywords: cryptographic protocols / Ciphertext-Policy Attribute-Based Encryption, time-based key update, user revocation Date: received 8 Feb 2021 Contact author: clementine gritti at canterbury ac nz Available format(s): PDF | BibTeX Citation Version: 20210210:073621 (All versions of this report) Short URL: ia.cr/2021/140