scholarly journals AN EFFICIENT AND FINE-GRAINED BIG DATA ACCESS CONTROL SCHEME WITH PRIVACY-PRESERVING POLICY

2017 ◽  
Vol 4 (10) ◽  
Keyword(s):  
Big Data ◽  
Access Control ◽  
Data Access ◽  
Privacy Preserving ◽  
Fine Grained ◽  
Data Access Control ◽  
Control Scheme

An Efficient and Fine-Grained Big Data Access Control Scheme With Privacy-Preserving Policy

2017 ◽  
Vol 4 (2) ◽  
pp. 563-571 ◽  
Author(s):  
Kan Yang ◽  
Qi Han ◽  
Hui Li ◽  
Kan Zheng ◽  
Zhou Su ◽  
...  
Keyword(s):  
Big Data ◽  
Access Control ◽  
Data Access ◽  
Privacy Preserving ◽  
Fine Grained ◽  
Data Access Control ◽  
Control Scheme

scholarly journals A Secure and Fine-Grained Big Data Access Control Scheme for Cloud-Based Services

2020 ◽  
pp. 254-262
Author(s):  
Nisha J William ◽  
Nisha O S
Keyword(s):  
Cloud Computing ◽  
Big Data ◽  
Access Control ◽  
Data Access ◽  
End Users ◽  
Access Policy ◽  
Fine Grained ◽  
Data Access Control ◽  
Control Scheme ◽  
Access Policies

Cloud computing is the delivery of computing services including servers, storage, databases, networking, software, analytics, and intelligence over the Internet. Nowadays, access control is one of the most critical problems with cloud computing. Ciphertext-Policy Attribute Based Encryption (CP-ABE) is a promising encryption technique that enables end-users to encrypt their data under the access policies defined over some attributes of data consumers and only allows data consumers whose attributes satisfy the access policies to decrypt the data. In CP-ABE, the access policy is attached to the ciphertext in plaintext form, which may also leak some private information about end-users. Existing methods only partially hide the attribute values in the access policies, while the attribute names are still unprotected. This paper proposes an efficient and fine-grained big data access control scheme with privacy-preserving policy. Specifically, it hides the whole attribute (rather than only its values) in the access policies. To assist data decryption, it designs an algorithm called Attribute Bloom Filter to evaluate whether an attribute is in the access policy and locate the exact position in the access policy if it is in the access policy. The paper also deals with offline attribute guessing attack. Security analysis and performance evaluation show that this scheme can preserve the privacy from any LSSS access policy without employing much overhead.

scholarly journals A Fine-Grained User-Divided Privacy-Preserving Access Control Protocol in Smart Watch

Sensors ◽  
2019 ◽  
Vol 19 (9) ◽  
pp. 2109
Author(s):  
Liming Fang ◽  
Minghui Li ◽  
Lu Zhou ◽  
Hanyi Zhang ◽  
Chunpeng Ge
Keyword(s):  
Access Control ◽  
Data Privacy ◽  
Privacy Preservation ◽  
Data Access ◽  
Privacy Preserving ◽  
Security And Privacy ◽  
Fine Grained ◽  
Data Access Control ◽  
Smart Watch ◽  
Performance And Evaluation

A smart watch is a kind of emerging wearable device in the Internet of Things. The security and privacy problems are the main obstacles that hinder the wide deployment of smart watches. Existing security mechanisms do not achieve a balance between the privacy-preserving and data access control. In this paper, we propose a fine-grained privacy-preserving access control architecture for smart watches (FPAS). In FPAS, we leverage the identity-based authentication scheme to protect the devices from malicious connection and policy-based access control for data privacy preservation. The core policy of FPAS is two-fold: (1) utilizing a homomorphic and re-encrypted scheme to ensure that the ciphertext information can be correctly calculated; (2) dividing the data requester by different attributes to avoid unauthorized access. We present a concrete scheme based on the above prototype and analyze the security of the FPAS. The performance and evaluation demonstrate that the FPAS scheme is efficient, practical, and extensible.

scholarly journals Multi-Level Attribute-Based Encryption Access Control Scheme for Big Data

2018 ◽  
Vol 173 ◽  
pp. 03047
Author(s):  
Zhao Li ◽  
Shuiyuan Huan
Keyword(s):  
Big Data ◽  
Access Control ◽  
Data Processing ◽  
Data Access ◽  
Big Data Processing ◽  
Fine Grained ◽  
Computational Overhead ◽  
Data Access Control ◽  
Attribute Based Encryption ◽  
Multi Level

There are many security threats such as data’s confidentiality and privacy protection in the new application scenario of big data processing, and for the problems such as coarse granularity and low sharing capability existing in the current research on big data access control, a new model to support fine-grained access control and flexible attribute change is proposed. Based on CP-ABE method, a multi-level attribute-based encryption scheme is designed to solve fine-grained access control problem. And to solve the problem of attribute revocation, the technique of re-encryption and version number tag is integrated into the scheme. The analysis shows that the proposed scheme can meet the security requirement of access control in big data processing environment, and has an advantage in computational overhead compared with the previous schemes.

scholarly journals A Fine-Grained IoT Data Access Control Scheme Combining Attribute-Based Encryption and Blockchain

2021 ◽  
Vol 2021 ◽  
pp. 1-13
Author(s):  
Xiaofeng Lu ◽  
Songbing Fu ◽  
Cheng Jiang ◽  
Pietro Lio
Keyword(s):  
Access Control ◽  
Distributed Storage ◽  
Data Access ◽  
Security And Privacy ◽  
Privacy And Security ◽  
Fine Grained ◽  
Blockchain Technology ◽  
Data Access Control ◽  
Attribute Based Encryption ◽  
Control Scheme

IoT technology has been widely valued and applied, and the resulting massive IoT data brings many challenges to the traditional centralized data management, such as performance, privacy, and security challenges. This paper proposes an IoT data access control scheme that combines attribute-based encryption (ABE) and blockchain technology. Symmetric encryption and ABE algorithms are utilized to realize fine-grained access control and ensure the security and openness of IoT data. Moreover, blockchain technology is combined with distributed storage to solve the storage bottleneck of blockchain systems. Only the hash values of the data, the hash values of the ciphertext location, the access control policy, and other important information are stored on the blockchain. In this scheme, smart contract is used to implement access control. The results of experiments demonstrate that the proposed scheme can effectively protect the security and privacy of IoT data and realize the secure sharing of data.

scholarly journals An efficient attribute-based hierarchical data access control scheme in cloud computing

2020 ◽  
Vol 10 (1) ◽  
Author(s):  
Heng He ◽  
Liang-han Zheng ◽  
Peng Li ◽  
Li Deng ◽  
Li Huang ◽  
...  
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
High Performance ◽  
Data Access ◽  
Fine Grained ◽  
Security Issues ◽  
Access Structures ◽  
Data Access Control ◽  
Control Scheme ◽  
Access Requirement

AbstractSecurity issues in cloud computing have become a hot topic in academia and industry, and CP-ABE is an effective solution for managing and protecting data. When data is shared in cloud computing, they usually have multiple access structures that have hierarchical relationships. However, existing CP-ABE algorithms do not consider such relationships and just require data owners to generate multiple ciphertexts to meet the hierarchical access requirement, which would incur substantial computation overheads. To achieve fine-grained access control of multiple hierarchical files effectively, first we propose an efficient hierarchical CP-ABE algorithm whose access structure is linear secret sharing scheme. Moreover, we construct an attribute-based hierarchical access control scheme, namely AHAC. In our scheme, when a data visitor’s attributes match a part of the access control structure, he can decrypt the data that associate with this part. The experiments show that AHAC has good security and high performance. Furthermore, when the quantity of encrypted data files increases, the superiority of AHAC will be more significant.

Sign in / Sign up

Export Citation Format

Share Document