Computing Reviews
Today's Issue Hot Topics Search Browse Recommended My Account Log In
Review Help
A Time-Bound Cryptographic Key Assignment Scheme for Access Control in a Hierarchy
Tzeng W. IEEE Transactions on Knowledge and Data Engineering14 (1):182-188,2002.Type:Article
Date Reviewed: Nov 18 2003

A new twist on the cryptographic approach to controlling access to information that is classified into partially ordered categories is presented in this paper. This approach would apply to file storage of information labeled with government-like security classes, as well as to other areas, such as that of broadcast media with partially ordered subscription options.

The most recent work on this problem that is cited is a paper written in 1990. The author’s approach is to associate each encrypted item with its creation date to a chosen granularity. Then, one can generate user keys that enable access in a way that is limited, not only to the authorized classes, but also to a chosen date interval. Although one could, in principle, solve the problem by combining date intervals into the partial ordering, that approach is not practical when the date range is large.

The paper demonstrates an ingenious way to use Lucas functions, so that the overhead in key computation and storage is both small and independent of the date range. The paper includes a helpful amount of mathematical background, and is both well organized and readable.

Reviewer:  Jon Millen Review #: CR128590 (0404-0461)
Bookmark and Share
  Featured Reviewer  
Would you recommend this review?
Other reviews under "Cryptographic Controls": Date
ABYSS: An Architecture for Software Protection
White S., Comerford L. IEEE Transactions on Software Engineering 16(6): 619-629, 1990. Type: Article
Feb 1 1991
Cybercryptography: applicable cryptography for cyberspace security
Yan S., Springer International Publishing, New York, NY, 2019.  436, Type: Book (978-3-319725-34-5), Reviews: (2 of 2)
Aug 24 2020
Security analysis of the SAML single sign-on browser/artifact profile
Gross T.  Computer security applications (Proceedings of the 19th Annual Computer Security Applications Conference, Dec 8-12, 2003)2982003. Type: Proceedings
Feb 3 2005

E-Mail This Printer-Friendly
Send Your Comments
Contact Us
Reproduction in whole or in part without permission is prohibited.   Copyright 2004™
Terms of Use
| Privacy Policy