Secure Sharing of Partially Homomorphic Encrypted IoT Data

Abstract : IoT applications often utilize the cloud to store and provide ubiquitous access to collected data. This naturally facilitates data sharing with third-party services and other users, but bears privacy risks, due to data breaches or unauthorized trades with user data. To address these concerns, we present Pilatus, a data protection platform where the cloud stores only encrypted data, yet is still able to process certain queries (e.g., range, sum). More importantly, Pilatus features a novel encrypted data sharing scheme based on re-encryption, with revocation capabilities and in situ key-update. Our solution includes a suite of novel techniques that enable efficient partially homomorphic encryption, decryption, and sharing. We present performance optimizations that render these cryptographic tools practical for mobile platforms. We implement a prototype of Pilatus and evaluate it thoroughly. Our optimizations achieve a performance gain within one order of magnitude compared to state-of-the-art realizations; mobile devices can decrypt hundreds of data points in a few hundred milliseconds. Moreover, we discuss practical considerations through two example mobile applications (Fitbit and Ava) that run Pilatus on real-world data.
Document type :
Conference papers
Liste complète des métadonnées

Cited literature [61 references]  Display  Hide  Download

https://hal.inria.fr/hal-01668868
Contributor : Simon Duquennoy <>
Submitted on : Wednesday, December 20, 2017 - 12:38:24 PM
Last modification on : Tuesday, March 5, 2019 - 9:30:10 AM

File

shafagh17pilatus.pdf
Files produced by the author(s)

Identifiers

Citation

Hossein Shafagh, Anwar Hithnawi, Lukas Burkhalter, Pascal Fischli, Simon Duquennoy. Secure Sharing of Partially Homomorphic Encrypted IoT Data. SenSys 2017 - 15th ACM Conference on Embedded Networked Sensor Systems, Nov 2017, Delft, Netherlands. pp.1-15, ⟨10.1145/3131672.3131697⟩. ⟨hal-01668868⟩

Share

Metrics

Record views

115

Files downloads

406