JUCS - Journal of Universal Computer Science 21(3): 454-472, doi: 10.3217/jucs-021-03-0454
An Improved Cloud Data Sharing Scheme with Hierarchical Attribute Structure
expand article infoZhusong Liu, Hongyang Yan§, Zhiqiang Lin|, Lingling Xu
‡ Guangdong University of Technology, Guangzhou, China§ Guangzhou University, Guangzhou, China| Chinese Academy of Sciences, Beijing, China¶ South China University of Technology, Guangzhou, China
Open Access
Abstract
Cloud computing is an emerging computing paradigm that can provide storage resources and computing capacities services over the Internet. However, some new security issues arise when users' sensitive data are outsourced and shared in untrusted cloud. The traditional techniques to protect the confidentiality of sensitive data stored in cloud are encryption and related cryptographic tools. And the corresponding private keys to access and decrypt the files are disclosed to only authorized users. However, these traditional solutions are not scalable because the computational cost of encryption and other access control is heavy for devices with limited computation ability. In this paper, we present a new way to implement scalable and fine-grained access control systems, which can be applied for big data in untrusted cloud computing environment. The solution is based on symmetric, efficient broadcast encryption and fine-grained attribute-based encryption (ABE). In this access control system, users are able to join and revoked with broadcast encryption. An outsourced Hierarchical ABE scheme is first proposed in this paper to construct the access control system. The security analysis is also
Keywords
fine-grained access control, multi-authority, attribute-based encryption