Secure publish and subscribe systems with efficient revocation

Sana Belguith; S Cui; MR Asghar; G Russello

doi:10.1145/3167132.3167176

Secure publish and subscribe systems with efficient revocation

Sana Belguith, S Cui, MR Asghar, G Russello

School of Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

10 Citations (Scopus)

Abstract

User revocation is one of the main security issues in publish and subscribe (pub/sub) systems. Indeed, to ensure data confidentiality, the system should be able to remove malicious subscribers without affecting the functionalities and decoupling of authorised subscribers and publishers. To revoke a user, there are solutions, but existing schemes inevitably introduce high computation and communication overheads, which can ultimately affect the system capabilities. In this paper, we propose a novel revocation technique for pub/sub systems that can efficiently remove compromised subscribers without requiring regeneration and redistribution of new keys as well as re-encryption of existing data with those keys. Our proposed solution is such that a subscriber’s interest is not revealed to curious brokers and published data can only be accessed by the authorised subscribers. Finally, the proposed protocol is secure against the collusion attacks between brokers and revoked subscribers.

Original language	Undefined/Unknown
Title of host publication	SAC 2018: The 33rd ACM/SIGAPP Symposium On Applied Computing
DOIs	https://doi.org/10.1145/3167132.3167176
Publication status	Published - 13 Apr 2018

Access to Document

10.1145/3167132.3167176

Handle.net

Persistent link

Cite this

@inproceedings{0f6acaa34e484dfdb5568f752fb99c15,

title = "Secure publish and subscribe systems with efficient revocation",

abstract = "User revocation is one of the main security issues in publish and subscribe (pub/sub) systems. Indeed, to ensure data confidentiality, the system should be able to remove malicious subscribers without affecting the functionalities and decoupling of authorised subscribers and publishers. To revoke a user, there are solutions, but existing schemes inevitably introduce high computation and communication overheads, which can ultimately affect the system capabilities. In this paper, we propose a novel revocation technique for pub/sub systems that can efficiently remove compromised subscribers without requiring regeneration and redistribution of new keys as well as re-encryption of existing data with those keys. Our proposed solution is such that a subscriber{\textquoteright}s interest is not revealed to curious brokers and published data can only be accessed by the authorised subscribers. Finally, the proposed protocol is secure against the collusion attacks between brokers and revoked subscribers.",

author = "Sana Belguith and S Cui and MR Asghar and G Russello",

year = "2018",

month = apr,

day = "13",

doi = "10.1145/3167132.3167176",

language = "Undefined/Unknown",

booktitle = "SAC 2018: The 33rd ACM/SIGAPP Symposium On Applied Computing",

}

TY - GEN

T1 - Secure publish and subscribe systems with efficient revocation

AU - Belguith, Sana

AU - Cui, S

AU - Asghar, MR

AU - Russello, G

PY - 2018/4/13

Y1 - 2018/4/13

N2 - User revocation is one of the main security issues in publish and subscribe (pub/sub) systems. Indeed, to ensure data confidentiality, the system should be able to remove malicious subscribers without affecting the functionalities and decoupling of authorised subscribers and publishers. To revoke a user, there are solutions, but existing schemes inevitably introduce high computation and communication overheads, which can ultimately affect the system capabilities. In this paper, we propose a novel revocation technique for pub/sub systems that can efficiently remove compromised subscribers without requiring regeneration and redistribution of new keys as well as re-encryption of existing data with those keys. Our proposed solution is such that a subscriber’s interest is not revealed to curious brokers and published data can only be accessed by the authorised subscribers. Finally, the proposed protocol is secure against the collusion attacks between brokers and revoked subscribers.

AB - User revocation is one of the main security issues in publish and subscribe (pub/sub) systems. Indeed, to ensure data confidentiality, the system should be able to remove malicious subscribers without affecting the functionalities and decoupling of authorised subscribers and publishers. To revoke a user, there are solutions, but existing schemes inevitably introduce high computation and communication overheads, which can ultimately affect the system capabilities. In this paper, we propose a novel revocation technique for pub/sub systems that can efficiently remove compromised subscribers without requiring regeneration and redistribution of new keys as well as re-encryption of existing data with those keys. Our proposed solution is such that a subscriber’s interest is not revealed to curious brokers and published data can only be accessed by the authorised subscribers. Finally, the proposed protocol is secure against the collusion attacks between brokers and revoked subscribers.

UR - https://doi.org/10.1145/3167132.3167176

U2 - 10.1145/3167132.3167176

DO - 10.1145/3167132.3167176

M3 - Conference Contribution (Conference Proceeding)

BT - SAC 2018: The 33rd ACM/SIGAPP Symposium On Applied Computing

ER -

Secure publish and subscribe systems with efficient revocation

Abstract

Access to Document

Handle.net

Other files and links

Cite this