H-IBE: Hybrid-identity based encryption approach for cloud security with outsourced revocation

Abstract

As tremendous growth of cloud computing services in real time applications allows end users of cloud to share their data with each other easily. Multi user data sharing should be secure and integrity should be achieved on cloud. To achieve the data security the methods like IBE (Identity Based Encryption), ABE (Attribute Based Encryption) etc. are widely used in cloud computing environment. However, the problems associated with IBE are extra overhead on private key generator (PKG) for computations required during the user revocation process. From the recent studies, there are two main research problems for cloud computing security such as security improvement using IBE and efficient IBE revocation process. The goal of this paper is to present framework to address both this research challenges. In this paper novel hybrid cloud security method is proposed in order to deliver both efficient revocation and enhanced security. This hybrid approach is combination of two well know security techniques such as IBE and ABE. The ABE method is combined with IBE to achieve the strong security against different threats. Along with user identity, his/her attributes like country or kind of subscription he/she has are used for further process of IBE encryption, decryption and revocation. Another problem of efficient identity revocation is further addressed by presenting the outsourcing computation into hybrid IBE (H-IBE) method at server aided settings. The other components and methods of proposed H-IBE are discussed during this paper and evaluated the performance against existing method.