TY - JOUR
T1 - Attribute-Based Messaging
T2 - Access control and confidentiality
AU - Bobba, Rakesh
AU - Fatemieh, Omid
AU - Khan, Fariba
AU - Khan, Arindam
AU - Gunter, Carl A.
AU - Khurana, Himanshu
AU - Prabhakaran, Manoj
N1 - Copyright:
Copyright 2011 Elsevier B.V., All rights reserved.
PY - 2010/12
Y1 - 2010/12
N2 - Attribute-Based Messaging (ABM) enables messages to be addressed using attributes of recipients rather than an explicit list of recipients. Such messaging offers benefits of efficiency, exclusiveness, and intensionality, but faces challenges in access control and confidentiality. In this article we explore an approach to intraenterprise ABM based on providing access control and confidentiality using information from the same attribute database exploited by the addressing scheme. We show how to address three key challenges. First, we demonstrate a manageable access control system based on attributes. Second, we demonstrate use of attribute-based encryption to provide end-to-end confidentiality. Third, we show that such a system can be efficient enough to support ABM for mid-size enterprises. Our implementation can dispatch confidential ABM messages approved by XACML policy review for an enterprise of at least 60,000 users with only seconds of latency.
AB - Attribute-Based Messaging (ABM) enables messages to be addressed using attributes of recipients rather than an explicit list of recipients. Such messaging offers benefits of efficiency, exclusiveness, and intensionality, but faces challenges in access control and confidentiality. In this article we explore an approach to intraenterprise ABM based on providing access control and confidentiality using information from the same attribute database exploited by the addressing scheme. We show how to address three key challenges. First, we demonstrate a manageable access control system based on attributes. Second, we demonstrate use of attribute-based encryption to provide end-to-end confidentiality. Third, we show that such a system can be efficient enough to support ABM for mid-size enterprises. Our implementation can dispatch confidential ABM messages approved by XACML policy review for an enterprise of at least 60,000 users with only seconds of latency.
KW - Attribute-based encryption
KW - Attributes
KW - Messaging
UR - http://www.scopus.com/inward/record.url?scp=78651407156&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=78651407156&partnerID=8YFLogxK
U2 - 10.1145/1880022.1880025
DO - 10.1145/1880022.1880025
M3 - Article
AN - SCOPUS:78651407156
SN - 1094-9224
VL - 13
JO - ACM Transactions on Information and System Security
JF - ACM Transactions on Information and System Security
IS - 4
M1 - 31
ER -