Secure Search and Storage Services in Cloud and Fog/Edge Computing

Abstract

As an extension of cloud computing, fog/edge computing migrates enormous computing and storage resources to the network edge, which forms an edge layer that is close to end devices. However, security concerns hinder the adoption of fog/edge computing. This book chapter researches the problem of secure storage and search services in fog/edge computing. From the aspect of storage security, we first propose a hierarchical-attribute-based encryption (HABE) scheme to efficiently achieve fine-grained access control in clouds, and then we combine HABE and Proxy Re-Encryption (PRE) by incorporating time concept into PRE to achieve user revocation automatically. From the aspect of search privacy, we propose a dynamic attribute-based keyword search (DABKS) scheme to achieve fine-grained search authorization in cloud computing. DABKS delegates the policy updating operations to the cloud, by incorporating proxy re-encryption (PRE) and a secret sharing scheme (SSS) into attribute-based keyword search (ABKS). The research results will play an important role in attribute-based encryption and searchable encryption, which could help create new situations for providing secure services in cloud computing and fog/edge computing.KeywordsCloud computingFog/edge computingHierarchical-attribute-based encryption (HABE)Time-based proxy re-encryption (TimePRE)Dynamic attribute-based keyword search (DABKS)