3LSAA: A Secure And Privacy-preserving Zero-knowledge-based Data-sharing Approach Under An Untrusted Environment
This addresses privacy and security issues for data owners in cloud applications, though it appears incremental as it builds on existing cryptographic methods like SSE, ABE, and AES.
The paper tackles the problem of secure and privacy-preserving data sharing in untrusted cloud environments by proposing the 3LSAA protocol, which enables automatic access control and file search without relying on trusted servers, achieving data self-sovereignty and improved usability.
As data collection and analysis become critical functions for many cloud applications, proper data sharing with approved parties is required. However, the traditional data sharing scheme through centralized data escrow servers may sacrifice owners' privacy and is weak in security. Mainly, the servers physically own all data while the original data owners have only virtual ownership and lose actual access control. Therefore, we propose a 3-layer SSE-ABE-AES (3LSAA) cryptography-based privacy-protected data-sharing protocol based on the assumption that servers are honest-but-curious. The 3LSAA protocol realizes automatic access control management and convenient file search even if the server is not trustable. Besides achieving data self-sovereignty, our approach also improves system usability, eliminates the defects in the traditional SSE and ABE approaches, and provides a local AES key recovery method for user's availability.