Article ID | Journal | Published Year | Pages | File Type |
---|---|---|---|---|
9952157 | Information Processing Letters | 2018 | 5 Pages |
Abstract
Very recently, Zhu and Jiang (2016) [1] suggested a secure anti-collusion data sharing scheme for dynamic groups in the cloud. In this letter, we found that Zhu-Jiang's scheme is insecure against forgery attack in registration phase for existing users. Our proposed attack demonstrates that any outside adversary can masquerade as the group manager to issue invalid or expired secret keys to the existing group users. After that, we present our suggestion to tackle the problem without sacrificing any original characters (such as high efficiency and group-dynamicity) of the scheme.
Related Topics
Physical Sciences and Engineering
Computer Science
Computational Theory and Mathematics
Authors
Qiang Wang, Hao Zhang, Jianfei Sun, Hu Xiong, Zhiguang Qin,