Cryptographically Enforced Access Control and Secure Communication

Sensitive data is routinely stored unencrypted in the cloud. In order to ensure that the most sensitive private data is end-to-end secure and only accessible to the authorized entities, data has to be encrypted based on access control policies. The main problem to encrypt data, especially large data sets, is the all-or-nothing retrieval policy of encrypted data, disallowing users to easily perform fine grained actions such as sharing records or searches. To ensure authentication, agreement and fairness among the distributed entities, a cryptographically secure communication framework has to be implemented. On the other hand, we have unencrypted less sensitive data as well, such as data useful for analytics. Such data has to be communicated in a secure and agreed-upon way using a cryptographically secure communication framework.