A Key Management Method for Cryptographically Enforced Access Control

Anna Zych; Milan Petkovic; Willem  Jonker

doi:10.5220/0002432300090022

A Key Management Method for Cryptographically Enforced Access Control

Anna Zych, Milan Petkovic, Willem Jonker

Databases (Former)

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

6 Citations (Scopus)

Abstract

Cryptographic enforcement of access control mechanisms relies on encrypting protected data with the keys stored by authorized users. This approach poses the problem of the distribution of secret keys. In this paper, a key management scheme is presented where each user stores a single key and is capable of efficiently calculating appropriate keys needed to access requested data. The proposed scheme does not require to encrypt the same data (key) multiple times with the keys of different users or groups of users. It is designed especially for the purpose of access control. Thanks to that, the space needed for storing public parameters is significantly reduced. Furthermore, the proposed method supports flexible updates when users access rights change.

Original language	English
Title of host publication	Security in information systems
Subtitle of host publication	proceedings of the 5th International Workshop on Security in Information Systems, WOSIS 2007
Editors	Eduardo Fernández-Medina, Mariemma I. Yagüe
Publisher	INSTICC PRESS
Pages	9-22
Number of pages	14
ISBN (Print)	978-972-8865-96-2
DOIs	https://doi.org/10.5220/0002432300090022
Publication status	Published - Jun 2007
Event	5th International Workshop on Security in Information Systems, WoSIS 2007 - Funchal, Portugal Duration: 12 Jun 2007 → 16 Jun 2007 Conference number: 5

Workshop

Workshop	5th International Workshop on Security in Information Systems, WoSIS 2007
Abbreviated title	WoSIS
Country	Portugal
City	Funchal
Period	12/06/07 → 16/06/07

Access to Document

10.5220/0002432300090022

Fingerprint Dive into the research topics of 'A Key Management Method for Cryptographically Enforced Access Control'. Together they form a unique fingerprint.

Cite this

Zych, A., Petkovic, M., & Jonker, W. (2007). A Key Management Method for Cryptographically Enforced Access Control. In E. Fernández-Medina, & M. I. Yagüe (Eds.), Security in information systems: proceedings of the 5th International Workshop on Security in Information Systems, WOSIS 2007 (pp. 9-22). INSTICC PRESS. https://doi.org/10.5220/0002432300090022

@inproceedings{f1c18c629ada4b07a53b2525699da4a6,

title = "A Key Management Method for Cryptographically Enforced Access Control",

abstract = "Cryptographic enforcement of access control mechanisms relies on encrypting protected data with the keys stored by authorized users. This approach poses the problem of the distribution of secret keys. In this paper, a key management scheme is presented where each user stores a single key and is capable of efficiently calculating appropriate keys needed to access requested data. The proposed scheme does not require to encrypt the same data (key) multiple times with the keys of different users or groups of users. It is designed especially for the purpose of access control. Thanks to that, the space needed for storing public parameters is significantly reduced. Furthermore, the proposed method supports flexible updates when users access rights change.",

author = "Anna Zych and Milan Petkovic and Willem Jonker",

year = "2007",

month = "6",

doi = "10.5220/0002432300090022",

language = "English",

isbn = "978-972-8865-96-2",

pages = "9--22",

editor = "Eduardo Fern{\'a}ndez-Medina and Yag{\"u}e, {Mariemma I.}",

booktitle = "Security in information systems",

publisher = "INSTICC PRESS",

}

Zych, A, Petkovic, M & Jonker, W 2007, A Key Management Method for Cryptographically Enforced Access Control. in E Fernández-Medina & MI Yagüe (eds), Security in information systems: proceedings of the 5th International Workshop on Security in Information Systems, WOSIS 2007. INSTICC PRESS, pp. 9-22, 5th International Workshop on Security in Information Systems, WoSIS 2007, Funchal, Portugal, 12/06/07. https://doi.org/10.5220/0002432300090022

A Key Management Method for Cryptographically Enforced Access Control. / Zych, Anna; Petkovic, Milan; Jonker, Willem .

Security in information systems: proceedings of the 5th International Workshop on Security in Information Systems, WOSIS 2007. ed. / Eduardo Fernández-Medina; Mariemma I. Yagüe. INSTICC PRESS, 2007. p. 9-22.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - A Key Management Method for Cryptographically Enforced Access Control

AU - Zych, Anna

AU - Petkovic, Milan

AU - Jonker, Willem

PY - 2007/6

Y1 - 2007/6

N2 - Cryptographic enforcement of access control mechanisms relies on encrypting protected data with the keys stored by authorized users. This approach poses the problem of the distribution of secret keys. In this paper, a key management scheme is presented where each user stores a single key and is capable of efficiently calculating appropriate keys needed to access requested data. The proposed scheme does not require to encrypt the same data (key) multiple times with the keys of different users or groups of users. It is designed especially for the purpose of access control. Thanks to that, the space needed for storing public parameters is significantly reduced. Furthermore, the proposed method supports flexible updates when users access rights change.

AB - Cryptographic enforcement of access control mechanisms relies on encrypting protected data with the keys stored by authorized users. This approach poses the problem of the distribution of secret keys. In this paper, a key management scheme is presented where each user stores a single key and is capable of efficiently calculating appropriate keys needed to access requested data. The proposed scheme does not require to encrypt the same data (key) multiple times with the keys of different users or groups of users. It is designed especially for the purpose of access control. Thanks to that, the space needed for storing public parameters is significantly reduced. Furthermore, the proposed method supports flexible updates when users access rights change.

U2 - 10.5220/0002432300090022

DO - 10.5220/0002432300090022

M3 - Conference contribution

SN - 978-972-8865-96-2

SP - 9

EP - 22

BT - Security in information systems

A2 - Fernández-Medina, Eduardo

A2 - Yagüe, Mariemma I.

PB - INSTICC PRESS

ER -