Data Sharing on Untrusted Storage with Attribute-Based Encryption

Storing data on untrusted storage makes secure data sharing a challenge issue. On one hand, data access policies should be enforced on these storage servers; on the other hand, confidentiality of sensitive data should be well protected against them. Cryptographic methods are usually applied to address this issue -- only encrypted data are stored on storage servers while retaining secret key(s) to the data owner herself; user access is granted by issuing the corresponding data decryption keys. The main challenges for cryptographic methods include simultaneously achieving system scalability and fine-grained data access control, efficient key/user management, user accountability and etc. To address these challenge issues, this dissertation studies and enhances a novel public-key cryptography -- attribute-based encryption (ABE), and applies it for fine-grained data access control on untrusted storage. The first part of this dissertation discusses the necessity of applying ABE to secure data sharing on untrusted storage and addresses several security issues for ABE. More specifically, we propose three enhancement schemes for ABE: In the first enhancement scheme, we focus on how to revoke users in ABE with the help of untrusted servers. In this work, we enable the data owner to delegate most computation-intensive tasks pertained to user revocation to untrusted servers without disclosing data content to them. In the second enhancement scheme, we address key abuse attacks in ABE, in which authorized but malicious users abuse their access privileges by sharing their decryption keys with unauthorized users. Our proposed scheme makes it possible for the data owner to efficiently disclose the original key owner\u27s identity merely by checking the input and output of a suspicious user\u27s decryption device. Our third enhancement schemes study the issue of privacy preservation in ABE. Specifically, our proposed schemes hide the data owner\u27s access policy not only to the untrusted servers but also to all the users. The second part presents our ABE-based secure data sharing solutions for two specific applications -- Cloud Computing and Wireless Sensor Networks (WSNs). In Cloud Computing cloud servers are usually operated by third-party providers, which are almost certain to be outside the trust domain of cloud users. To secure data storage and sharing for cloud users, our proposed scheme lets the data owner (also a cloud user) generate her own ABE keys for data encryption and take the full control on key distribution/revocation. The main challenge in this work is to make the computation load affordable to the data owner and data consumers (both are cloud users). We address this challenge by uniquely combining various computation delegation techniques with ABE and allow both the data owner and data consumers to securely mitigate most computation-intensive tasks to cloud servers which are envisaged to have unlimited resources. In WSNs, wireless sensor nodes are often unattendedly deployed in the field and vulnerable to strong attacks such as memory breach. For securing storage and sharing of data on distributed storage sensor nodes while retaining data confidentiality, sensor nodes encrypt their collected data using ABE public keys and store encrypted data on storage nodes. Authorized users are given corresponding decryption keys to read data. The main challenge in this case is that sensor nodes are extremely resource-constrained and can just afford limited computation/communication load. Taking this into account we divide the lifetime of sensor nodes into phases and distribute the computation tasks into each phase. We also revised the original ABE scheme to make the overhead pertained to user revocation minimal for sensor nodes. Feasibility of the scheme is demonstrated by experiments on real sensor platforms

Sensores de fibra ótica para arquiteturas e-Health

In this work, optical fiber sensors were developed and optimized for biomedical applications in wearable and non-intrusive and/or invisible solutions. As it was intended that the developed devices would not interfere with the user's movements and their daily life, the fibre optic sensors presented several advantages when compared to conventional electronic sensors, among others, the following stand out: size and reduced weight, biocompatibility, safety, immunity to electromagnetic interference and high sensitivity. In a first step, wearable devices with fibre optic sensors based in Fiber Bragg gratings (FBG) were developed to be incorporated into insoles to monitor different walking parameters based on the analysis of the pressure exerted on several areas of the insole. Still within this theme, other sensors were developed using the same sensing technology, but capable of monitoring pressure and shear forces simultaneously. This work was pioneering and allowed monitoring one of the main causes of foot ulceration in people with diabetes: shear. At a later stage, the study focused on the issue related with the appearance of ulcers in people with reduced mobility and wheelchair users. In order to contribute to the mitigation of this scourge, a system was developed composed of a network of fibre optic sensors capable of monitoring the pressure at various points of the wheelchair. It not only measures the pressure at each point, but also monitors the posture of the wheelchair user and advises him/her to change posture regularly to reduce the probability of this pathology occurring. Still within this application, another work was developed where the sensor not only monitored the pressure but also the temperature in each of the analysis points, thus indirectly measuring shear. In another phase, plastic fibre optic sensors were studied and developed to monitor the body posture of an office chair user. Simultaneously, software was developed capable of monitoring and showing the user all the acquired data in real time and warning for incorrect postures, as well as advising for work breaks. In a fourth phase, the study focused on the development of highly sensitive sensors embedded in materials printed by a 3D printer. The sensor was composed of an optical fibre with a FBG and the sensor body of a flexible polymeric material called "Flexible". This material was printed on a 3D printer and during its printing the optical fibre was incorporated. The sensor proved to be highly sensitive and was able to monitor respiratory and cardiac rate, both in wearable solutions (chest and wrist) and in "invisible" solutions (office chair).Neste trabalho foram desenvolvidos e otimizados sensores em fibra ótica para aplicações biomédicas em soluções vestíveis e não intrusivas/ou invisíveis. Tendo em conta que se pretende que os dispositivos desenvolvidos não interfiram com os movimentos e o dia-a-dia do utilizador, os sensores de fibra ótica apresentam inúmeras vantagens quando comparados com os sensores eletrónicos convencionais, de entre várias, destacam-se: tamanho e peso reduzido, biocompatibilidade, segurança, imunidade a interferências eletromagnéticas e elevada sensibilidade. Numa primeira etapa, foram desenvolvidos dispositivos vestíveis com sensores de fibra ótica baseados em redes de Bragg (FBG) para incorporar em palmilhas de modo a monitorizar diferentes parâmetros da marcha com base na análise da pressão exercida em várias zonas da palmilha. Ainda no âmbito deste tema, adicionalmente, foram desenvolvidos sensores utilizando a mesma tecnologia de sensoriamento, mas capazes de monitorizar simultaneamente pressão e forças de cisalhamento. Este trabalho foi pioneiro e permitiu monitorizar um dos principais responsáveis pela ulceração dos pés em pessoas com diabetes: o cisalhamento. Numa fase posterior, o estudo centrou-se na temática relacionada com o aparecimento de úlceras em pessoas com mobilidade reduzida e utilizadores de cadeiras de rodas. De modo a contribuir para a mitigação deste flagelo, procurou-se desenvolver um sistema composto por uma rede de sensores de fibra ótica capaz de monitorizar a pressão em vários pontos de uma cadeira de rodas e não só aferir a pressão em cada ponto, mas monitorizar a postura do cadeirante e aconselhá-lo a mudar de postura com regularidade, de modo a diminuir a probabilidade de ocorrência desta patologia. Ainda dentro desta aplicação, foi publicado um outro trabalho onde o sensor não só monitoriza a pressão como também a temperatura em cada um dos pontos de análise, conseguindo aferir assim indiretamente o cisalhamento. Numa outra fase, foi realizado o estudo e desenvolvimento de sensores de fibra ótica de plástico para monitorizar a postura corporal de um utilizador de uma cadeira de escritório. Simultaneamente, foi desenvolvido um software capaz de monitorizar e mostrar ao utilizador todos os dados adquiridos em tempo real e advertir o utilizador de posturas incorretas, bem como aconselhar para pausas no trabalho. Numa quarta fase, o estudo centrou-se no desenvolvimento de sensores altamente sensíveis embebidos em materiais impressos 3D. O sensor é composto por uma fibra ótica com uma FBG e o corpo do sensor por um material polimérico flexível, denominado “Flexible”. O sensor foi impresso numa impressora 3D e durante a sua impressão foi incorporada a fibra ótica. O sensor demonstrou ser altamente sensível e foi capaz de monitorizar frequência respiratória e cardíaca, tanto em soluções vestíveis (peito e pulso) como em soluções “invisíveis” (cadeira de escritório).Programa Doutoral em Engenharia Físic