TY - GEN
T1 - Attribute-based solution with time restriction delegate for flexible and scalable access control in cloud storage
AU - Shoukun, Wang
AU - Kaigui, Wu
AU - Changze, Wu
N1 - Publisher Copyright:
Copyright © 2016 ACM.
PY - 2016/12/6
Y1 - 2016/12/6
N2 - The development of cloud computing has brought a lot of advantages, such as reducing the hardware cost and a more convenient storage solution. Because of the convenient and cheap storage solution, a large number of users put their valuable data onto the cloud. There have been more and more outsourcing data security and privacy issues. Several schemes using attribute-based encryption (ABE) have been proposed in cloud computing outsourcing data access control; However, most of them have stubborn in complex access control policy. To implement scalable, flexible and fine-grained access control in cloud storage, this paper proposes an attribute-based solution with time restriction delegate by extending the Ciphertext-policy attribute-based encryption (CP-ABE). This scheme not only realizes the scalability and finegrained access control, but also gives a solution for the data delegate. Our delegate mechanism can let the users entrusted the data which in their visit range to others, and the ability to set a time limit. Finally, we prove the security of our scheme based on the security of the Ciphertext-policy attribute-based encryption (CP-ABE) by Bethencourt et al. and analyze its performance and computational complexity. Experiments for our scheme are implemented and the result shows that it is both efficient and flexible in dealing with access control for outsourced data in cloud computing.
AB - The development of cloud computing has brought a lot of advantages, such as reducing the hardware cost and a more convenient storage solution. Because of the convenient and cheap storage solution, a large number of users put their valuable data onto the cloud. There have been more and more outsourcing data security and privacy issues. Several schemes using attribute-based encryption (ABE) have been proposed in cloud computing outsourcing data access control; However, most of them have stubborn in complex access control policy. To implement scalable, flexible and fine-grained access control in cloud storage, this paper proposes an attribute-based solution with time restriction delegate by extending the Ciphertext-policy attribute-based encryption (CP-ABE). This scheme not only realizes the scalability and finegrained access control, but also gives a solution for the data delegate. Our delegate mechanism can let the users entrusted the data which in their visit range to others, and the ability to set a time limit. Finally, we prove the security of our scheme based on the security of the Ciphertext-policy attribute-based encryption (CP-ABE) by Bethencourt et al. and analyze its performance and computational complexity. Experiments for our scheme are implemented and the result shows that it is both efficient and flexible in dealing with access control for outsourced data in cloud computing.
KW - Access control
KW - CP-ABE
KW - Could storage
KW - Delegate
UR - http://www.scopus.com/inward/record.url?scp=85009065191&partnerID=8YFLogxK
U2 - 10.1145/2996890.3007851
DO - 10.1145/2996890.3007851
M3 - Conference contribution
AN - SCOPUS:85009065191
T3 - Proceedings - 9th IEEE/ACM International Conference on Utility and Cloud Computing, UCC 2016
SP - 392
EP - 397
BT - Proceedings - 9th IEEE/ACM International Conference on Utility and Cloud Computing, UCC 2016
PB - Association for Computing Machinery, Inc
T2 - 9th IEEE/ACM International Conference on Utility and Cloud Computing, UCC 2016
Y2 - 6 December 2016 through 9 December 2016
ER -