English

HetDAPAC: Distributed Attribute-Based Private Access Control with Heterogeneous Attributes

Information Theory 2024-01-25 v1 Cryptography and Security Networking and Internet Architecture Signal Processing math.IT

Abstract

Verifying user attributes to provide fine-grained access control to databases is fundamental to an attribute-based authentication system. In such systems, either a single (central) authority verifies all attributes, or multiple independent authorities verify individual attributes distributedly to allow a user to access records stored on the servers. While a \emph{central} setup is more communication cost efficient, it causes privacy breach of \emph{all} user attributes to a central authority. Recently, Jafarpisheh et al. studied an information theoretic formulation of the \emph{distributed} multi-authority setup with NN non-colluding authorities, NN attributes and KK possible values for each attribute, called an (N,K)(N,K) distributed attribute-based private access control (DAPAC) system, where each server learns only one attribute value that it verifies, and remains oblivious to the remaining N1N-1 attributes. We show that off-loading a subset of attributes to a central server for verification improves the achievable rate from 12K\frac{1}{2K} in Jafarpisheh et al. to 1K+1\frac{1}{K+1} in this paper, thus \emph{almost doubling the rate} for relatively large KK, while sacrificing the privacy of a few possibly non-sensitive attributes.

Keywords

Cite

@article{arxiv.2401.13653,
  title  = {HetDAPAC: Distributed Attribute-Based Private Access Control with Heterogeneous Attributes},
  author = {Shreya Meel and Sennur Ulukus},
  journal= {arXiv preprint arXiv:2401.13653},
  year   = {2024}
}
R2 v1 2026-06-28T14:26:06.948Z