DAC-MACS : Effective data access control for multi-authority cloud storage systems

Research output: Chapters, Conference Papers, Creative and Literary WorksRGC 32 - Refereed conference paper (with host publication)peer-review

113 Scopus Citations
View graph of relations

Author(s)

Related Research Unit(s)

Detail(s)

Original languageEnglish
Title of host publication2013 Proceedings IEEE INFOCOM
PublisherIEEE
Pages2895-2903
ISBN (electronic)9781467359467
ISBN (print)9781467359443
Publication statusPublished - Apr 2013

Publication series

Name
ISSN (Print)0743-166X

Conference

Title32nd IEEE Conference on Computer Communications (IEEE INFOCOM 2013)
PlaceItaly
CityTurin
Period14 - 19 April 2013

Abstract

Data access control is an effective way to ensure the data security in the cloud. However, due to data outsourcing and untrusted cloud servers, the data access control becomes a challenging issue in cloud storage systems. Existing access control schemes are no longer applicable to cloud storage systems, because they either produce multiple encrypted copies of the same data or require a fully trusted cloud server. Ciphertext-Policy Attribute-based Encryption (CP-ABE) is a promising technique for access control of encrypted data. It requires a trusted authority manages all the attributes and distributes keys in the system. In cloud storage systems, there are multiple authorities co-exist and each authority is able to issue attributes independently. However, existing CP-ABE schemes cannot be directly applied to data access control for multi-authority cloud storage systems, due to the inefficiency of decryption and revocation. In this paper, we propose DAC-MACS (Data Access Control for Multi-Authority Cloud Storage), an effective and secure data access control scheme with efficient decryption and revocation. Specifically, we construct a new multi-authority CP-ABE scheme with efficient decryption and also design an efficient attribute revocation method that can achieve both forward security and backward security. The analysis and the simulation results show that our DAC-MACS is highly efficient and provably secure under the security model.

Research Area(s)

  • Access Control, Attribute Revocation, CP-ABE, Decryption Outsourcing, Multi-authority Cloud

Citation Format(s)

DAC-MACS: Effective data access control for multi-authority cloud storage systems. / Yang, Kan; Jia, Xiaohua; Ren, Kui et al.
2013 Proceedings IEEE INFOCOM. IEEE, 2013. p. 2895-2903 6567100.

Research output: Chapters, Conference Papers, Creative and Literary WorksRGC 32 - Refereed conference paper (with host publication)peer-review