CrypSH: A Novel IoT Data Protection Scheme Based on BGN Cryptosystem

Subir Halder, Mauro Conti

Research output: Contribution to journalArticlepeer-review

Abstract

The Internet of Things (IoT) is an emerging paradigm and has penetrated deeply into our daily life. Due to the seamless connections of the IoT devices with the physical world through the Internet, the IoT applications use the cloud to store and provide ubiquitous access to collected data. Sharing of data with third party services and other users incurs potential risks and leads to unique security and privacy concerns, e.g., data breaches. Existing cryptographic solutions are inapt for resource-constrained IoT devices, because of their significant computational overhead. To address these concerns, we propose a data protection scheme to store the encrypted IoT data in a cloud, while still allowing query processing over the encrypted data. Our proposed scheme features a novel encrypted data sharing scheme based on Boneh-Goh-Nissim (BGN) cryptosystem, with revocation capabilities and in-situ key updates. We perform exhaustive experiments on real datasets, to assess the feasibility of the proposed scheme on the resource constrained IoT devices. The results show the feasibility of our scheme, together with the ability to provide a high level of security. The results also show that our scheme significantly reduces the computation, storage and energy overheads than the best performed scheme in the state-of-the-art.

Original languageEnglish
Pages (from-to)2437-2450
Number of pages14
JournalIEEE Transactions on Cloud Computing
Volume10
Issue number4
DOIs
Publication statusPublished - 1 Oct 2022
Externally publishedYes

Keywords

  • BGN cryptosystem
  • cloud computing
  • data security
  • Internet of Things
  • secure sharing
  • somewhat homomorphic encryption

Fingerprint

Dive into the research topics of 'CrypSH: A Novel IoT Data Protection Scheme Based on BGN Cryptosystem'. Together they form a unique fingerprint.

Cite this