Title: An efficient access control scheme based on CP-ABE with supporting attribute change in cloud storage systems

Authors: Tao Ye; Yongquan Cai; Xu Zhao; Yongli Yang; Wei Wang; Yi Zhu

Addresses: Faculty of Information Technology, Beijing University of Technology, Beijing, China; College of Computer, Qinghai Nationalities University, Xining, China ' Faculty of Information Technology, Beijing University of Technology, Beijing Key Laboratory of Trusted Computing, National Engineering Laboratory for Critical Technologies of Information, Security Classified Protection, Beijing 100124, China ' College of Applied Sciences, Beijing University of Technology, Beijing 100124, China ' Faculty of Information Technology, Beijing University of Technology, Beijing Key Laboratory of Trusted Computing, National Engineering Laboratory for Critical Technologies of Information, Security Classified Protection, Beijing 100124, China ' Faculty of Information Technology, Beijing University of Technology, Beijing Key Laboratory of Trusted Computing, National Engineering Laboratory for Critical Technologies of Information, Security Classified Protection, Beijing 100124, China ' Faculty of Information Technology, Beijing University of Technology, Beijing Key Laboratory of Trusted Computing, National Engineering Laboratory for Critical Technologies of Information, Security Classified Protection, Beijing 100124, China

Abstract: The CP-ABE-based access control scheme, which can better realise the access control of many-to-multi-ciphertext shared in the cloud storage architecture, is still facing the problems that the system cost is too large, and the policy attribute revocation or restore is not flexible. This paper proposes an efficient access control scheme based on CP-ABE with supporting attribute change in cloud storage system. The fine-grained access control can be achieved by re-encryption mechanism which takes the minimum shared re-encryption key for policy attribute set. And then the access structure tree is expanded by creating a corresponding virtual attribute for each leaf node attribute. The analysis results of the scheme indicate that the efficient and flexibility of the attribute change is not only improved, but also the system cost is reduced.

Keywords: access control; policies attribute change; cloud storage; ciphertext-policy ABE.

DOI: 10.1504/IJWMC.2019.097424

International Journal of Wireless and Mobile Computing, 2019 Vol.16 No.1, pp.41 - 49

Available online: 16 Jan 2019 *

Full-text access for editors Access for subscribers Purchase this article Comment on this article