Fine-grained Access Control and Revocation for Sharing Data on Clouds

With the current rapid increase of cloud computing, enterprises outsource their sensitive data for sharing in a cloud. The key problems of this approach include establishing access control for the encrypted data, and revoking the access rights from users when they are no longer authorized to access...

Full description

Saved in:
Bibliographic Details
Main Authors: Shan-shan Tu, Shao-zhang Niu, Hui Li, Yun Xiao-ming, Meng-jiao Li
Format: Conference Proceeding
Language:English
Subjects:
Access control
Attribute-based encryption
Cloud computing
Encryption
Generators
Polynomials
Secure storage
Servers
User revocation
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:With the current rapid increase of cloud computing, enterprises outsource their sensitive data for sharing in a cloud. The key problems of this approach include establishing access control for the encrypted data, and revoking the access rights from users when they are no longer authorized to access the encrypted data on cloud servers. This paper aims to solve these problems. Firstly, based on the attribute encryption and the dual encryption system, we propose a concrete access control scheme constructed over the composite order bilinear groups, and we prove its security under the standard model. Then, we propose a fully fine-grained revocation scheme under the direct revocation model, so as to efficiently revoke access rights from users on cloud servers.
DOI:10.1109/IPDPSW.2012.265