Skip to main content
placeholder image

Attribute-based information flow control

Journal Article


Abstract


  • © 2019 The Author(s) 2019. Published by Oxford University Press on behalf of The British Computer Society. All rights reserved. Information flow control (IFC) regulates where information is permitted to travel within information systems. To enforce IFC, access control encryption (ACE) was proposed to support both the no read-up rule and the no write-down rule. There are some problems in existing schemes. First, the communication cost is linear with the number of receivers. Second, senders are not authenticated, namely an unauthorized sender can send a message to a receiver. To reduce communication cost and implement sender authentication, we propose an attribute-based IFC (ABIFC) scheme by introducing attribute-based systems into IFC. Our ABIFC scheme captures the following features: (i) flexible IFC policies are defined over a universal set of descriptive attributes; (ii) both the no read-up rule and the no write-down rule are supported; (iii) the communication cost is linear with the number of required attributes, instead of receivers; (iv) receivers can outsource heavy computation to a server without compromising data confidentiality; (v) authorized senders can control release their attributes when sending messages to receivers. To the best of our knowledge, it is the first IFC scheme where flexible policies are defined over descriptive attributes and outsourced computation is supported.

UOW Authors


  •   Han, Jinguang (external author)
  •   Bei, Maoxuan (external author)
  •   Chen, Liqun (external author)
  •   Xiang, Yang (external author)
  •   Cao, Jie (external author)
  •   Guo, Fuchun
  •   Meng, Weizhi (external author)

Publication Date


  • 2019

Citation


  • Han, J., Bei, M., Chen, L., Xiang, Y., Cao, J., Guo, F. & Meng, W. (2019). Attribute-based information flow control. Gerontologist, 59 (3), 1214-1231.

Scopus Eid


  • 2-s2.0-85084409059

Number Of Pages


  • 17

Start Page


  • 1214

End Page


  • 1231

Volume


  • 59

Issue


  • 3

Place Of Publication


  • United States

Abstract


  • © 2019 The Author(s) 2019. Published by Oxford University Press on behalf of The British Computer Society. All rights reserved. Information flow control (IFC) regulates where information is permitted to travel within information systems. To enforce IFC, access control encryption (ACE) was proposed to support both the no read-up rule and the no write-down rule. There are some problems in existing schemes. First, the communication cost is linear with the number of receivers. Second, senders are not authenticated, namely an unauthorized sender can send a message to a receiver. To reduce communication cost and implement sender authentication, we propose an attribute-based IFC (ABIFC) scheme by introducing attribute-based systems into IFC. Our ABIFC scheme captures the following features: (i) flexible IFC policies are defined over a universal set of descriptive attributes; (ii) both the no read-up rule and the no write-down rule are supported; (iii) the communication cost is linear with the number of required attributes, instead of receivers; (iv) receivers can outsource heavy computation to a server without compromising data confidentiality; (v) authorized senders can control release their attributes when sending messages to receivers. To the best of our knowledge, it is the first IFC scheme where flexible policies are defined over descriptive attributes and outsourced computation is supported.

UOW Authors


  •   Han, Jinguang (external author)
  •   Bei, Maoxuan (external author)
  •   Chen, Liqun (external author)
  •   Xiang, Yang (external author)
  •   Cao, Jie (external author)
  •   Guo, Fuchun
  •   Meng, Weizhi (external author)

Publication Date


  • 2019

Citation


  • Han, J., Bei, M., Chen, L., Xiang, Y., Cao, J., Guo, F. & Meng, W. (2019). Attribute-based information flow control. Gerontologist, 59 (3), 1214-1231.

Scopus Eid


  • 2-s2.0-85084409059

Number Of Pages


  • 17

Start Page


  • 1214

End Page


  • 1231

Volume


  • 59

Issue


  • 3

Place Of Publication


  • United States