Title: Protecting data in cloud environment with attribute-based encryption
Authors: Shuaishuai Zhu; Xiaoyuan Yang
Addresses: Network and Information Security Key Laboratory, Engineering University of the Armed Police Force, Xi'an 710086, China ' Electronics Department, Engineering University of the Armed Police Force, Xi'an 710086, China
Abstract: Traditional file systems cannot satisfy the recent requirements in the cloud environment. Meanwhile, current file systems designed for cloud computing cannot provide enough flexibility, fine-grained access control and access security. In this paper, a novel secure file sharing scheme based on attribute control is presented. In order to design a practical cloud file system with attribute based encryption, we give a systematic definition of attribute computing in cloud computing environment. Based on the definition, we present a secure and practical attribute based encryption scheme without pairings (CP-ABE-WP) under cloud computing scenarios. Then we design a secure cloud file system applying our CP-ABE-WP to provide data management and secure data sharing. According to our analysis and test, the scheme is chosen plaintext secure in selective ID model with acceptable performance and can satisfy the file sharing application in cloud computing.
Keywords: cloud computing; attribute-based encryption; access control; file sharing; data protection; access security; data management; cloud security.
DOI: 10.1504/IJGUC.2015.068824
International Journal of Grid and Utility Computing, 2015 Vol.6 No.2, pp.91 - 97
Received: 11 Dec 2013
Accepted: 13 Apr 2014
Published online: 14 Apr 2015 *