Chang, S.-C.S.-C.ChangJA-LING WU2021-05-052021-05-052019https://www.scopus.com/inward/record.url?eid=2-s2.0-85076177991&partnerID=40&md5=dcbf2741545e2ef6ecc391ed29819c9chttps://scholars.lib.ntu.edu.tw/handle/123456789/559008There are lots of data management systems, according to various reasons, designating their high computational work-loads to public cloud service providers. It is well-known that once we entrust our tasks to a cloud server, we may face several threats, such as privacy-infringement with regard to users' attribute information; therefore, an appropriate privacy preserving mechanism is a must for constructing a secure cloud-based data management system (SCBDMS). To design a reliable SCBDMS with server-enforced revocation ability is a very challenging task even if the server is working under the honest-but-curious mode. In existing data management systems, privacy-preserving revocation service is seldom provided, especially when it is outsourced to a third party. In this work, with the aids of oblivious transfer and the newly proposed stateless lazy re-encryption (SLREN) mechanism, a SCBDMS, with secure, reliable and efficient server-enforced attribute revocation ability is built. Comparing with related works, our experimental results show that, in the newly constructed SCBDMS the storage-requirement of the cloud server and the communication overheads between cloud server and systems users are largely reduced, due to the nature of late involvement of SLREN. Copyright ? 2019 Inderscience Enterprises Ltd.Lazy re-encryption; Privacy-preserving; Revocation[SDGs]SDG3[SDGs]SDG16Cloud computing; Cryptography; Data privacy; Digital storage; Attribute information; Communication overheads; Data management system; Privacy infringement; Privacy preserving; Re-encryption; Revocation; Storage requirements; Information managementconference paper10.1504/IJCSE.2019.1038192-s2.0-85076177991