[go: up one dir, main page]
Skip to main content
Springer Nature Link
Log in

CTDRB: Controllable Timed Data Release Using Blockchains

  • Conference paper
  • First Online:
Security and Privacy in Communication Networks (SecureComm 2022)

Abstract

The notion of Timed Data ReleaseĀ (TDR) supports time-based sensitive data protection in such a way that sensitive data can be accessed only after a prescribed amount of time has passed. With recent advancements in blockchain techniques, practical solutions to support decentralized TDR using blockchains (BTDR) is gaining importance. Briefly, such designs entrust blockchain decentralized networks to serve as a decentralized time agent to protect the data and release the data at a prescribed release time. However, as a variant of outsourced data management service, BTDR inherently incurs the tension between data confidentiality protection as well as data control. Unfortunately, the off-the-shelf arts only strive to protect the data without rigorous support for the control of data.

In this paper, we design a controllable framework for BTDR called CTDRB. At a high level, CTDRB realizes data access control as well as data lifetime control while protecting data confidentiality. The novel technical contributions of CTDRB are three-fold: first, we adopt a temporal CP-ABE cryptographic scheme, serving as a basis, to enable the data access control; second, on top of such a design, we enable data lifetime control by carefully designing a time token control service on Ethereum. We then design two representative data lifetime control primitives, namely Data Revocation and Data Release Time Modification. The former refers to revoking the data before its prescribed release time while the latter modifies the release of data at a time ahead of its prescribed release time; third but not the least, we perform security analysis of CTDRB and implement it using the Ethereum blockchain. Our results show that CTDRB incurs only a moderate on-chain gas consumption and demonstrates high efficiency.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 99.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 129.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Brownie. https://eth-brownie.readthedocs.io/en/stable/

  2. Ethereum. https://ethereum.org/en/

  3. Infura. https://infura.io/

  4. Kimono: trustless secret sharing using time-locks on ethereum. https://github.com/hillstreetlabs/kimono

  5. Python. https://www.python.org/

  6. A python interface for interacting with the ethereum blockchain and ecosystem. https://github.com/ethereum/web3.py

  7. Solidity. https://docs.soliditylang.org/en/v0.8.10/

  8. Akinyele, J.A., et al.: Charm: a framework for rapidly prototyping cryptosystems. J. Cryptographic Eng. 3(2), 111ā€“128 (2013)

    Google ScholarĀ 

  9. Androulaki, E., Soriente, C., Malisa, L., Capkun, S.: Enforcing location and time-based access control on cloud-stored data. In: 2014 IEEE 34th International Conference on Distributed Computing Systems, pp. 637ā€“648. IEEE (2014)

    Google ScholarĀ 

  10. Bacis, E., Facchinetti, D., Guarnieri, M., Rosa, M., Rossi, M., Paraboschi, S.: I told you tomorrow: practical time-locked secrets using smart contracts. In: The 16th International Conference on Availability, Reliability and Security, ARES 2021, New York, NY, USA. Association for Computing Machinery (2021)

    Google ScholarĀ 

  11. Benet, J.: IPFs-content addressed, versioned, p2p file system. arXiv preprint arXiv:1407.3561 (2014)

  12. Bethencourt, J., Sahai, A., Waters, B.: Ciphertext-policy attribute-based encryption. In: 2007 IEEE Symposium on Security and Privacy (SP 2007), pp. 321ā€“334. IEEE (2007)

    Google ScholarĀ 

  13. Hao, F., Clarke, D., Zorzo, A.F.: Deleting secret data with public verifiability. IEEE Trans. Dependable Secure Comput. 13(6), 617ā€“629 (2016)

    Google ScholarĀ 

  14. Hong, J., et al.: TAFC: time and attribute factors combined access control for time-sensitive data in public cloud. IEEE Trans. Serv. Comput. 13(1), 158ā€“171 (2017)

    Google ScholarĀ 

  15. Huang, Q., Yang, Y., Fu, J.: Secure data group sharing and dissemination with attribute and time conditions in public cloud. IEEE Trans. Serv. Comput. 14, 1013ā€“1025 (2018)

    Google ScholarĀ 

  16. Jiang, P., Qiu, B., Zhu, L.: Toward reliable and confidential release for smart contract via id-based TRE. IEEE Internet Things J. 9(13), 11422ā€“11433 (2022)

    ArticleĀ  Google ScholarĀ 

  17. Li, C., Palanisamy, B.: Decentralized release of self-emerging data using smart contracts. In: 2018 IEEE 37th Symposium on Reliable Distributed Systems (SRDS), pp. 213ā€“220. IEEE (2018)

    Google ScholarĀ 

  18. Li, C., Palanisamy, B.: SilentDelivery: practical timed-delivery of private information using smart contracts. IEEE Trans. Serv. Comput. (to appear)

    Google ScholarĀ 

  19. Li, Y., Dong, Z., Sha, K., Jiang, C., Wan, J., Wang, Y.: TMO: time domain outsourcing attribute-based encryption scheme for data acquisition in edge computing. IEEE Access 7, 40240ā€“40257 (2019)

    ArticleĀ  Google ScholarĀ 

  20. Liu, J., Garcia, F., Ryan, M.: Time-release protocol from bitcoin and witness encryption for sat. Korean Circulation J. 40(10), 530ā€“535 (2015)

    Google ScholarĀ 

  21. Liu, J., Jager, T., Kakvi, S.A., Warinschi, B.: How to build time-lock encryption. Des. Codes Crypt. 86(11), 2549ā€“2586 (2018)

    Google ScholarĀ 

  22. Liu, J., Kakvi, S.A., Warinschi, B.: Extractable witness encryption and timed-release encryption from bitcoin. IACR Cryptology ePrint Archive, 2015:482 (2015)

    Google ScholarĀ 

  23. Liu, Z., Jiang, Z.L., Wang, X., Yiu, S.-M., Zhang, R., Wu, Y.: A temporal and spatial constrained attribute-based access control scheme for cloud storage. In: 2018 17th IEEE International Conference on Trust, Security And Privacy In Computing and Communications/12th IEEE International Conference on Big Data Science and Engineering (TrustCom/BigDataSE), pp. 614ā€“623. IEEE (2018)

    Google ScholarĀ 

  24. Ning, J., Dang, H., Hou, R., Chang, E.-C.: Keeping time-release secrets through smart contracts. IACR Cryptology ePrint Archive, p. 1166 (2018)

    Google ScholarĀ 

  25. Perlman, R.: The ephemerizer: Making data disappear (2005)

    Google ScholarĀ 

  26. Perlman, R.: File system design with assured delete. In: Third IEEE International Security in Storage Workshop (SISW 2005), p. 6. IEEE (2005)

    Google ScholarĀ 

  27. Rivest, R.L., Shamir, A., Wagner, D.A.: Time-lock puzzles and timed-release crypto (1996)

    Google ScholarĀ 

  28. Shamir, A.: How to share a secret. Commun. ACM 22(11), 612ā€“613 (1979)

    ArticleĀ  MathSciNetĀ  MATHĀ  Google ScholarĀ 

  29. Szabo, N.: Formalizing and securing relationships on public networks. First Monday (1997)

    Google ScholarĀ 

  30. Tang, Y., Lee, P.P.C., Lui, J.C.S., Perlman, R.: FADE: secure overlay cloud storage with file assured deletion. In: Jajodia, S., Zhou, J. (eds.) SecureComm 2010. LNICST, vol. 50, pp. 380ā€“397. Springer, Heidelberg (2010). https://doi.org/10.1007/978-3-642-16161-2_22

    ChapterĀ  Google ScholarĀ 

  31. Tang, Y., Lee, P.P.C., Lui, J.C.S., Perlman, R.: Secure overlay cloud storage with access control and assured deletion. IEEE Trans. Dependable Secure Comput. 9(6), 903ā€“916 (2012)

    Google ScholarĀ 

  32. Wang, J., Palanisamy, B.: Attack-resilient blockchain-based decentralized timed data release. In: 36th Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy (DBSec2022) (2022, to appear)

    Google ScholarĀ 

  33. Wang, J., Palanisamy, B.: Protecting blockchain-based decentralized timed release of data from malicious adversaries. In: 2022 IEEE International Conference on Blockchain and Cryptocurrency (2022)

    Google ScholarĀ 

  34. Xia, Q., et al.: TSLS: time sensitive, lightweight and secure access control for information centric networking. In: 2019 IEEE Global Communications Conference (GLOBECOM), pp. 1ā€“6. IEEE (2019)

    Google ScholarĀ 

  35. Yang, K., Liu, Z., Jia, X., Shen, X.S.: Time-domain attribute-based access control for cloud-based video content sharing: a cryptographic approach. IEEE Trans. Multimedia 18(5), 940ā€“950 (2016)

    Google ScholarĀ 

  36. Zhu, Y., Hu, H., Ahn, G.-J., Huang, D., Wang, S.: Towards temporal access control in cloud computing. In: 2012 Proceedings IEEE INFOCOM, pp. 2576ā€“2580. IEEE (2012)

    Google ScholarĀ 

Download references

Acknowledgement

This material is based upon work supported by the National Science Foundation under Grant #2020071. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation.

Author information

Authors and Affiliations

  1. University of Pittsburgh, Pittsburgh, PA, USA

    Jingzhe WangĀ &Ā Balaji Palanisamy

Authors
  1. Jingzhe Wang
    View author publications

    You can also search for this author in PubMedĀ Google Scholar

  2. Balaji Palanisamy
    View author publications

    You can also search for this author in PubMedĀ Google Scholar

Corresponding author

Correspondence to Jingzhe Wang .

Editor information

Editors and Affiliations

  1. University of Kansas, Lawrence, KS, USA

    Fengjun Li

  2. Delft University of Technology, Delft, The Netherlands

    Kaitai Liang

  3. The Ohio State University, Columbus, OH, USA

    Zhiqiang Lin

  4. Norwegian University of Science and Tech, GjĆøvik, Norway

    Sokratis K. Katsikas

Rights and permissions

Reprints and permissions

Copyright information

Ā© 2023 ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Wang, J., Palanisamy, B. (2023). CTDRB: Controllable Timed Data Release Using Blockchains. In: Li, F., Liang, K., Lin, Z., Katsikas, S.K. (eds) Security and Privacy in Communication Networks. SecureComm 2022. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 462. Springer, Cham. https://doi.org/10.1007/978-3-031-25538-0_13

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-25538-0_13

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-25537-3

  • Online ISBN: 978-3-031-25538-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation