@inproceedings{bf4ded5bb4ba46a695e00cc989e123ad,
title = "EASiER: Encryption-based access control in social networks with efficient revocation",
abstract = "A promising approach to mitigate the privacy risks in Online Social Networks (OSNs) is to shift access control enforcement from the OSN provider to the user by means of encryption. However, this creates the challenge of key management to support complex policies involved in OSNs and dynamic groups. To address this, we propose EASiER, an architecture that supports fine-grained access control policies and dynamic group membership by using attribute-based encryption. A key and novel feature of our architecture, however, is that it is possible to remove access from a user without issuing new keys to other users or re-encrypting existing ciphertexts. We achieve this by creating a proxy that participates in the decryption process and enforces revocation constraints. The proxy is minimally trusted and cannot decrypt ciphertexts or provide access to previously revoked users. We describe EASiER architecture and construction, provide performance evaluation, and prototype application of our approach on Facebook.",
keywords = "Access control, Proxy, Revocation, Social network",
author = "Sonia Jahid and Prateek Mittal and Nikita Borisov",
year = "2011",
doi = "10.1145/1966913.1966970",
language = "English (US)",
isbn = "9781450305648",
series = "Proceedings of the 6th International Symposium on Information, Computer and Communications Security, ASIACCS 2011",
publisher = "Association for Computing Machinery",
pages = "411--415",
booktitle = "Proceedings of the 6th International Symposium on Information, Computer and Communications Security, ASIACCS 2011",
note = "6th International Symposium on Information, Computer and Communications Security, ASIACCS 2011 ; Conference date: 22-03-2011 Through 24-03-2011",
}