TY - GEN
T1 - Cross-group secret sharing for secure cloud storage service
AU - Ke, Chenyutao
AU - Anada, Hiroaki
AU - Kawamoto, Junpei
AU - Morozov, Kirill
AU - Sakurai, Kouichi
N1 - Funding Information:
This project was partially supported by JSPS and DST under the Japan-India Science Cooperative Program. The second author is partially supported by a kakenhi Grant-in-Aid for Scientific Research (C) 15K00029 from Japan Society for the Promotion of Science. The fourth author is partially supported by a kakenhi Grant-in-Aid for Scientific Research (C) 15K00186 from Japan Society for the Promotion of Science. The fifth author is partially supported by a kakenhi Grant-in-Aid for Scientific Research (C) 15H02711 from Japan Society for the Promotion of Science.
Publisher Copyright:
© 2016 ACM.
PY - 2016/1/4
Y1 - 2016/1/4
N2 - With the spread of the Internet, many mobile devices are used in our daily lives, such as tablets and mobile phones. Then, personal data are often saved on data servers of the storage providers such as Amazon, Google, Yahoo, Baidu and others. In this context, the secret sharing can be used to store personal data onto several providers, simultaneously reducing the risk of data loss, the data leakage to unauthorized parties, and data falsification. Secret sharing is one of the solutions to combine security and availability in the distributed storage. However, few works considered servers' affiliations, and specifically, the problem that a malicious provider may recover secret data illegally through manipulation on servers that hold enough shares to recover the secret. In this paper, to resolve the problem, we propose a two-threshold secret sharing scheme in order to enforce a new type of cross-group policy. By combining t-out-of-m providers' secret sharing scheme and a k-out-of-n servers' secret sharing scheme via an one-way function or an one-time pad, we construct a scheme that forces k shares to be collected from m groups. Compared with previous work, our scheme can attain the functionalities of proactively updating shares and adding new shares with simple computation.
AB - With the spread of the Internet, many mobile devices are used in our daily lives, such as tablets and mobile phones. Then, personal data are often saved on data servers of the storage providers such as Amazon, Google, Yahoo, Baidu and others. In this context, the secret sharing can be used to store personal data onto several providers, simultaneously reducing the risk of data loss, the data leakage to unauthorized parties, and data falsification. Secret sharing is one of the solutions to combine security and availability in the distributed storage. However, few works considered servers' affiliations, and specifically, the problem that a malicious provider may recover secret data illegally through manipulation on servers that hold enough shares to recover the secret. In this paper, to resolve the problem, we propose a two-threshold secret sharing scheme in order to enforce a new type of cross-group policy. By combining t-out-of-m providers' secret sharing scheme and a k-out-of-n servers' secret sharing scheme via an one-way function or an one-time pad, we construct a scheme that forces k shares to be collected from m groups. Compared with previous work, our scheme can attain the functionalities of proactively updating shares and adding new shares with simple computation.
UR - http://www.scopus.com/inward/record.url?scp=84965007017&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84965007017&partnerID=8YFLogxK
U2 - 10.1145/2857546.2857610
DO - 10.1145/2857546.2857610
M3 - Conference contribution
AN - SCOPUS:84965007017
T3 - ACM IMCOM 2016: Proceedings of the 10th International Conference on Ubiquitous Information Management and Communication
BT - ACM IMCOM 2016
PB - Association for Computing Machinery, Inc
T2 - 10th International Conference on Ubiquitous Information Management and Communication, IMCOM 2016
Y2 - 4 January 2016 through 6 January 2016
ER -