TY - JOUR
T1 - TraceChain
T2 - A blockchain-based scheme to protect data confidentiality and traceability
AU - Fan, Yongkai
AU - Lin, Xiaodong
AU - Liang, Wei
AU - Wang, Jinghan
AU - Tan, Gang
AU - Lei, Xia
AU - Jing, Lei
N1 - Publisher Copyright:
© 2019 John Wiley & Sons, Ltd.
PY - 2022/1
Y1 - 2022/1
N2 - The risk of sharing data in cloud computing has gathered increasing attention. After the owner of some confidential data outsources the data to cloud storage services and shares it with others, the data owner lost the control to the data to a large extent. To achieve data sharing while keeping data confidentiality, attribute-based encryption (ABE) can be employed by cloud storage services. However, ABE can only guarantee that outsourced data on the cloud is decrypted by attribute-satisfying users but cannot restrict data from being accessed by dishonest users whose attributes also satisfy the access-control policy. It is impossible for the data owner to control the shared data after it has been decrypted by dishonest users, especially when a set of attribute-satisfying dishonest users may collude. To address this concern, we propose a traceable data sharing scheme called TraceChain. In TraceChain, data is encrypted over a new CP-ABE scheme called E-CP-ABE. Furthermore, the system parameters for generating the private key in E-CP-ABE are uploaded to the private blockchain and transactions are performed on the chain. The data owner can obtain the identity of users by monitoring system parameters simultaneously and control data sharing on the blockchain. To prove the security of our scheme, the security analysis is given in this paper. Meanwhile, experimental results also show that our system is viable and efficient.
AB - The risk of sharing data in cloud computing has gathered increasing attention. After the owner of some confidential data outsources the data to cloud storage services and shares it with others, the data owner lost the control to the data to a large extent. To achieve data sharing while keeping data confidentiality, attribute-based encryption (ABE) can be employed by cloud storage services. However, ABE can only guarantee that outsourced data on the cloud is decrypted by attribute-satisfying users but cannot restrict data from being accessed by dishonest users whose attributes also satisfy the access-control policy. It is impossible for the data owner to control the shared data after it has been decrypted by dishonest users, especially when a set of attribute-satisfying dishonest users may collude. To address this concern, we propose a traceable data sharing scheme called TraceChain. In TraceChain, data is encrypted over a new CP-ABE scheme called E-CP-ABE. Furthermore, the system parameters for generating the private key in E-CP-ABE are uploaded to the private blockchain and transactions are performed on the chain. The data owner can obtain the identity of users by monitoring system parameters simultaneously and control data sharing on the blockchain. To prove the security of our scheme, the security analysis is given in this paper. Meanwhile, experimental results also show that our system is viable and efficient.
UR - http://www.scopus.com/inward/record.url?scp=85074323310&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85074323310&partnerID=8YFLogxK
U2 - 10.1002/spe.2753
DO - 10.1002/spe.2753
M3 - Article
AN - SCOPUS:85074323310
SN - 0038-0644
VL - 52
SP - 115
EP - 129
JO - Software - Practice and Experience
JF - Software - Practice and Experience
IS - 1
ER -