A Sanitizable Access Control With Policy-Protection for Vehicular Social Networks

As an emerging field of communication, Vehicular Social Networks (VSNs) can reduce traffic congestion while enhancing road safety by sharing data among groups of commuters. In VSNs, Vehicular Cloud Server (VCS) based data sharing technology with encrypted primitives allows local users to outsource encrypted data for reducing the storage burden on the user side and sharing data without location restrictions. However, existing data encryption solutions that have been applied in VSNs environments still encounter weaknesses in efficiency, security, or privacy due to the following problems: (1) lack of effective access policies for flexible authorizing ciphertext to multiple data users; (2) data breaches caused by malicious data publishers; (3) necessity in hiding the private information of receivers. To date, no such solution has been available that securely enables one-to-many user authorization with privacy protection, while greatly resisting malicious data publishers. We propose a Sanitizable Access Control System with Policy-protection (SASP) for VSNs in this paper. Our SASP enables a sanitizer to test and sanitize encrypted data to defend against malicious data publishers, ensuring that the plaintext can only be recovered if an authorized user has a valid key. Furthermore, in our SASP system, the access policy is separated into attribute names and attribute values. Wherein, the attribute values contain a lot of private information, which is hidden in the ciphertext to guarantee data users’ privacy. Rigorous security analysis and performance evaluations demonstrate the practicality of SASP for VSNs.