Secure and efficient fine-grained data access control scheme in cloud computing1

2015 ◽  
Vol 21 (4) ◽  
pp. 259-271 ◽  
Author(s):  
Changsong Yang ◽  
Jun Ye
Keyword(s):  
Access Control ◽  
Data Access ◽  
Fine Grained ◽  
Data Access Control ◽  
Control Scheme

scholarly journals A Fine-Grained IoT Data Access Control Scheme Combining Attribute-Based Encryption and Blockchain

2021 ◽  
Vol 2021 ◽  
pp. 1-13
Author(s):  
Xiaofeng Lu ◽  
Songbing Fu ◽  
Cheng Jiang ◽  
Pietro Lio
Keyword(s):  
Access Control ◽  
Distributed Storage ◽  
Data Access ◽  
Security And Privacy ◽  
Privacy And Security ◽  
Fine Grained ◽  
Blockchain Technology ◽  
Data Access Control ◽  
Attribute Based Encryption ◽  
Control Scheme

IoT technology has been widely valued and applied, and the resulting massive IoT data brings many challenges to the traditional centralized data management, such as performance, privacy, and security challenges. This paper proposes an IoT data access control scheme that combines attribute-based encryption (ABE) and blockchain technology. Symmetric encryption and ABE algorithms are utilized to realize fine-grained access control and ensure the security and openness of IoT data. Moreover, blockchain technology is combined with distributed storage to solve the storage bottleneck of blockchain systems. Only the hash values of the data, the hash values of the ciphertext location, the access control policy, and other important information are stored on the blockchain. In this scheme, smart contract is used to implement access control. The results of experiments demonstrate that the proposed scheme can effectively protect the security and privacy of IoT data and realize the secure sharing of data.

scholarly journals An efficient attribute-based hierarchical data access control scheme in cloud computing

2020 ◽  
Vol 10 (1) ◽  
Author(s):  
Heng He ◽  
Liang-han Zheng ◽  
Peng Li ◽  
Li Deng ◽  
Li Huang ◽  
...  
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
High Performance ◽  
Data Access ◽  
Fine Grained ◽  
Security Issues ◽  
Access Structures ◽  
Data Access Control ◽  
Control Scheme ◽  
Access Requirement

AbstractSecurity issues in cloud computing have become a hot topic in academia and industry, and CP-ABE is an effective solution for managing and protecting data. When data is shared in cloud computing, they usually have multiple access structures that have hierarchical relationships. However, existing CP-ABE algorithms do not consider such relationships and just require data owners to generate multiple ciphertexts to meet the hierarchical access requirement, which would incur substantial computation overheads. To achieve fine-grained access control of multiple hierarchical files effectively, first we propose an efficient hierarchical CP-ABE algorithm whose access structure is linear secret sharing scheme. Moreover, we construct an attribute-based hierarchical access control scheme, namely AHAC. In our scheme, when a data visitor’s attributes match a part of the access control structure, he can decrypt the data that associate with this part. The experiments show that AHAC has good security and high performance. Furthermore, when the quantity of encrypted data files increases, the superiority of AHAC will be more significant.

An Efficient and Fine-Grained Big Data Access Control Scheme With Privacy-Preserving Policy

2017 ◽  
Vol 4 (2) ◽  
pp. 563-571 ◽  
Author(s):  
Kan Yang ◽  
Qi Han ◽  
Hui Li ◽  
Kan Zheng ◽  
Zhou Su ◽  
...  
Keyword(s):  
Big Data ◽  
Access Control ◽  
Data Access ◽  
Privacy Preserving ◽  
Fine Grained ◽  
Data Access Control ◽  
Control Scheme

A fine-grained and lightweight data access control scheme for WSN-integrated cloud computing

2017 ◽  
Vol 20 (2) ◽  
pp. 1457-1472 ◽  
Author(s):  
Heng He ◽  
Ji Zhang ◽  
Jinguang Gu ◽  
Yan Hu ◽  
Fangfang Xu
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
Data Access ◽  
Fine Grained ◽  
Data Access Control ◽  
Control Scheme

scholarly journals A Secure and Fine-Grained Big Data Access Control Scheme for Cloud-Based Services

2020 ◽  
pp. 254-262
Author(s):  
Nisha J William ◽  
Nisha O S
Keyword(s):  
Cloud Computing ◽  
Big Data ◽  
Access Control ◽  
Data Access ◽  
End Users ◽  
Access Policy ◽  
Fine Grained ◽  
Data Access Control ◽  
Control Scheme ◽  
Access Policies

Cloud computing is the delivery of computing services including servers, storage, databases, networking, software, analytics, and intelligence over the Internet. Nowadays, access control is one of the most critical problems with cloud computing. Ciphertext-Policy Attribute Based Encryption (CP-ABE) is a promising encryption technique that enables end-users to encrypt their data under the access policies defined over some attributes of data consumers and only allows data consumers whose attributes satisfy the access policies to decrypt the data. In CP-ABE, the access policy is attached to the ciphertext in plaintext form, which may also leak some private information about end-users. Existing methods only partially hide the attribute values in the access policies, while the attribute names are still unprotected. This paper proposes an efficient and fine-grained big data access control scheme with privacy-preserving policy. Specifically, it hides the whole attribute (rather than only its values) in the access policies. To assist data decryption, it designs an algorithm called Attribute Bloom Filter to evaluate whether an attribute is in the access policy and locate the exact position in the access policy if it is in the access policy. The paper also deals with offline attribute guessing attack. Security analysis and performance evaluation show that this scheme can preserve the privacy from any LSSS access policy without employing much overhead.

scholarly journals Practical Multiauthority Attribute-Based Access Control for Edge-Cloud-Aided Internet of Things

2021 ◽  
Vol 2021 ◽  
pp. 1-22
Author(s):  
Kaiqing Huang ◽  
Xueli Wang ◽  
Zhiqiang Lin
Keyword(s):  
Internet Of Things ◽  
Access Control ◽  
Data Access ◽  
Edge Computing ◽  
Fine Grained ◽  
Technical Requirements ◽  
Data Access Control ◽  
Heavy Burden ◽  
Attribute Based Access Control ◽  
Access Privileges

With the assistance of edge computing which reduces the heavy burden of the cloud center server by using the network edge servers, the Internet of Things (IoTs) architectures enable low latency for real-time devices and applications. However, there still exist security challenges on data access control for the IoT. Multiauthority attribute-based encryption (MA-ABE) is a promising technique to achieve access control over encrypted data in cross-domain applications. Based on the characteristics and technical requirements of the IoT, we propose an efficient fine-grained revocable large universe multiauthority access control scheme. In the proposed scheme, the most expensive encryption operations have been executed in the user’s initialization phase by adding a reusable ciphertext pool besides splitting the encryption algorithm to online encryption and offline encryption. Massive decryption operations are outsourced to the near-edge servers for reducing the computation overhead of decryption. An efficient revocation mechanism is designed to change users’ access privileges dynamically. Moreover, the scheme supports ciphertext verification. Only valid ciphertext can be stored and transmitted, which saves system resources. With the help of the chameleon hash function, the proposed scheme is proven CCA2-secure under the q-DPBDHE2 assumption. The performance analysis results indicate that the proposed scheme is efficient and suitable in edge computing for the IoT.

Sign in / Sign up

Export Citation Format

Share Document