a secure and efficient revocation scheme for fine-grained access control in cloud storage
文献类型:会议论文
| 作者 | Lv Zhiquan ; Hong Cheng ; Zhang Min ; Feng Dengguo |
| 出版日期 | 2012 |
| 会议名称 | 2012 4th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2012 |
| 会议日期 | December 3, 2012 - December 6, 2012 |
| 会议地点 | Taipei, Taiwan |
| 关键词 | Cloud computing Digital storage |
| 页码 | 545-550 |
| 中文摘要 | To keep data confidential against unauthorized cloud servers and users, cryptographic access control mechanisms must be adopted. However, user revocation is a challenging issue since it would inevitably require data re-encryption, and may need user secret key updates. Considering the complexity of fine-grained access control policy and the large number of users in cloud, this issue would become extremely difficult to resolve. In this paper, we focus on this challenging open issue and present a secure and efficient revocation scheme. We propose a modified CP-ABE algorithm to set up a fine-grained access control method, in which user revocation is achieved based on the theory of Shamir's Secret Sharing. Compared with existing schemes, our scheme introduces a minimal overhead not only to the data owner but also to cloud servers. Collusions between cloud servers and revoked users can be avoided as long as the key-update protocol is honestly executed. Meanwhile, the data owner can delegate key updates to the cloud servers without disclosing data contents, user attributes, and the access policy information. Moreover, our scheme maintains the important feature that the revocation won't affect the users whose attribute set is a superset of the revoked user's. © 2012 IEEE. |
| 英文摘要 | To keep data confidential against unauthorized cloud servers and users, cryptographic access control mechanisms must be adopted. However, user revocation is a challenging issue since it would inevitably require data re-encryption, and may need user secret key updates. Considering the complexity of fine-grained access control policy and the large number of users in cloud, this issue would become extremely difficult to resolve. In this paper, we focus on this challenging open issue and present a secure and efficient revocation scheme. We propose a modified CP-ABE algorithm to set up a fine-grained access control method, in which user revocation is achieved based on the theory of Shamir's Secret Sharing. Compared with existing schemes, our scheme introduces a minimal overhead not only to the data owner but also to cloud servers. Collusions between cloud servers and revoked users can be avoided as long as the key-update protocol is honestly executed. Meanwhile, the data owner can delegate key updates to the cloud servers without disclosing data contents, user attributes, and the access policy information. Moreover, our scheme maintains the important feature that the revocation won't affect the users whose attribute set is a superset of the revoked user's. © 2012 IEEE. |
| 收录类别 | EI |
| 会议主办者 | Quanta Computer; MEDIATEK; Microsoft; Institute for Information Industry; Industrial Technology Research Institute (ITRI) |
| 会议录 | CloudCom 2012 - Proceedings: 2012 4th IEEE International Conference on Cloud Computing Technology and Science
 |
| 语种 | 英语 |
| ISBN号 | 9781467345095 |
| 源URL | [http://ir.iscas.ac.cn/handle/311060/15915]  |
| 专题 | 软件研究所_软件所图书馆_会议论文 |
| 推荐引用方式 GB/T 7714 | Lv Zhiquan,Hong Cheng,Zhang Min,et al. a secure and efficient revocation scheme for fine-grained access control in cloud storage[C]. 见:2012 4th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2012. Taipei, Taiwan. December 3, 2012 - December 6, 2012. |
入库方式: OAI收割
来源:软件研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。