A Scalable and Auditable Secure Data Sharing Scheme With Traceability for Fog-Based Smart Logistics

Smart logistics (s-Logistics) has become more and more popular driven by the intelligent Internet of Things (IoT) which deploys pervasive smart devices in s-Logistics systems. The explosive growth of s-Logistics data collected by these resource-limited IoT devices enables Fog-based s-Logistics that provides data outsourcing and sharing services via multiple clouds within small latency. Nevertheless, it also gives rise to prominent security risks of user privacy leakage considering malicious users and data integrity violation with untrusted cloud servers, which are severe to s-Logistics systems and cannot be addressed by simple encryption. To solve these issues, in this article, we propose an efficient large universe and traceable privacy-preserving data sharing (LUTPDS) for Fog-based s-Logistics. It simultaneously achieves data access control, data integrity protection, key escrow and abuse resistance, user privacy preserving, and scalability. We devise a large universe and multiauthority ciphertext-policy attribute-based encryption (CP-ABE) scheme in which access policy hiding mechanism is used for user privacy preserving, while white-box tracing and certificateless public data integrity auditing techniques are employed to resist key abuse and escrow problems. In addition, online/offline encryption and verifiable outsourced decryption are leveraged for high efficiency and cloud encryption is utilized to extend to multiple clouds. In the end, we formally prove the security of our scheme for indistinguishability of chosen plaintext attack (IND-CPA) security and traceability. Detailed performance evaluation with extensive experiments shows that our scheme is practicable for s-Logistics compared with the existing schemes.