An Efficient and Flexible Scheme to Support Biometric-Based and Role-Based Access Control

Authors:
Deholo Nali;Carlisle Adams;Ali Miri
Affiliations:
School of Information Technology and Engineering (SITE), University of Ottawa;School of Information Technology and Engineering (SITE), University of Ottawa;School of Information Technology and Engineering (SITE), University of Ottawa
Venue:
Proceedings of the 2005 conference on Applied Public Key Infrastructure: 4th International Workshop: IWAP 2005
Year:
2005

Citing 13
Cited 0

Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
A fuzzy commitment scheme

CCS '99 Proceedings of the 6th ACM conference on Computer and communications security
Password hardening based on keystroke dynamics

CCS '99 Proceedings of the 6th ACM conference on Computer and communications security
Understanding PKI: Concepts, Standards, and Deployment Considerations

Understanding PKI: Concepts, Standards, and Deployment Considerations
Hierarchical ID-Based Cryptography

ASIACRYPT '02 Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Toward Speech-Generated Cryptographic Keys on Resource-Constrained Devices

Proceedings of the 11th USENIX Security Symposium
Efficient revocation and threshold pairing based cryptosystems

Proceedings of the twenty-second annual symposium on Principles of distributed computing
Cryptographic Key Generation from Voice

SP '01 Proceedings of the 2001 IEEE Symposium on Security and Privacy
Reusable cryptographic fuzzy extractors

Proceedings of the 11th ACM conference on Computer and communications security
ID-based encryption for complex hierarchies with applications to forward security and broadcast encryption

Proceedings of the 11th ACM conference on Computer and communications security
A method for fast revocation of public key certificates and security capabilities

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
Fuzzy identity-based encryption

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
How iris recognition works

IEEE Transactions on Circuits and Systems for Video Technology

Quantified Score

Hi-index	0.00

Visualization

Abstract

Introduced at EuroCrypt'05, threshold attribute-based encryption (thABE) is a subclass of identity-based encryption which views each identity as a set of descriptive attributes. In order to decrypt a ciphertext c encrypted for a set ω of attributes, users must have attribute keys associated with a sufficiently large subset of ω. Applications of thABE include both biometric-based and role-based cryptographic access control. This paper presents an efficient and flexible thABE scheme which is provably secure in the random oracle model. Let d be a minimal number of attributes which a decryptor must have to decipher a ciphertext. The proposed scheme requires only two pairings for decryption (instead of d pairings as in the original thABE scheme). Moreover, the new scheme enables system engineers to specify various threshold values for distinct sets of attributes. Therefore, this paper describes a practical cryptographic mechanism to support both biometric-based and role-based access control.