article

Achieving fine-grained access control for secure data sharing on cloud servers

Authors:

Guojun Wang,

Qin Liu,

Jie WuAuthors Info & Claims

Concurrency and Computation: Practice & Experience, Volume 23, Issue 12

Pages 1443 - 1464

https://doi.org/10.1002/cpe.1698

Published: 01 August 2011 Publication History

Abstract

With more and more enterprises sharing their sensitive data on cloud servers, building a secure cloud environment for data sharing has attracted a lot of attention in both the industry and academic communities. In this paper, we propose a conjunctive precise and fuzzy identity-based encryption (PFIBE) scheme for secure data sharing on cloud servers, which allows the encryption of data by specifying a recipient identity (ID) set or a disjunctive normal form (DNF) access control policy over attributes, so that only the user whose ID belongs to the ID set or attributes satisfy the DNF access control policy can decrypt the corresponding data. Our design goal is to propose a novel encryption scheme, which simultaneously achieves a fine-grained access control, flexibility, high performance, and full key delegation, so as to help enterprise users to enjoy more secure, comprehensive, and flexible services. We achieve this goal by first combining the hierarchical identity-based encryption (HIBE) system and the ciphertext-policy attribute-based encryption (CP-ABE) system, and then marking each user with both an ID and a set of descriptive attributes, finally separating the access control policy into two parts: a recipient ID set and a DNF attribute-based access control policy. Copyright © 2011 John Wiley & Sons, Ltd.

Cited By

View all

Wang CMing YLiu HFeng JZhang N(2024)Secure and Flexible Data Sharing With Dual Privacy Protection in Vehicular Digital Twin NetworksIEEE Transactions on Intelligent Transportation Systems10.1109/TITS.2024.336834225:9(12407-12420)Online publication date: 6-Mar-2024
https://dl.acm.org/doi/10.1109/TITS.2024.3368342
Limkar SJha R(2019)Computing over encrypted spatial data generated by IoTTelecommunications Systems10.1007/s11235-018-0479-470:2(193-229)Online publication date: 1-Feb-2019
https://dl.acm.org/doi/10.1007/s11235-018-0479-4
(2018)A new technique for data encryption based on third party encryption server to maintain the privacy preserving in the cloud environmentInternational Journal of Business Information Systems10.1504/IJBIS.2018.09365428:4(393-403)Online publication date: 1-Jan-2018
https://dl.acm.org/doi/10.1504/IJBIS.2018.093654
Show More Cited By

Achieving fine-grained access control for secure data sharing on cloud servers

Recommendations

A fine-grained access control and revocation scheme on clouds

In recent years, more and more companies outsource their data to the cloud service provider to greatly reduce the cost. However, it also raises underlying security and privacy issues for the significant corporate data. Therefore, a natural way to keep ...
Fine-grained Access Control and Revocation for Sharing Data on Clouds
IPDPSW '12: Proceedings of the 2012 IEEE 26th International Parallel and Distributed Processing Symposium Workshops & PhD Forum

With the current rapid increase of cloud computing, enterprises outsource their sensitive data for sharing in a cloud. The key problems of this approach include establishing access control for the encrypted data, and revoking the access rights from ...
An efficient signcryption for data access control in cloud computing

Data storage is one of main services in cloud computing. How to ensure the confidentiality and authorized access of data is the central issue of data storage. In this paper, we propose a novel data access control scheme that can simultaneously achieve ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image Concurrency and Computation: Practice & Experience

Concurrency and Computation: Practice & Experience Volume 23, Issue 12

August 2011

154 pages

ISSN:1532-0626

EISSN:1532-0634

Issue’s Table of Contents

Publisher

John Wiley and Sons Ltd.

United Kingdom

Publication History

Published: 01 August 2011

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

14
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 17 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Wang CMing YLiu HFeng JZhang N(2024)Secure and Flexible Data Sharing With Dual Privacy Protection in Vehicular Digital Twin NetworksIEEE Transactions on Intelligent Transportation Systems10.1109/TITS.2024.336834225:9(12407-12420)Online publication date: 6-Mar-2024
https://dl.acm.org/doi/10.1109/TITS.2024.3368342
Limkar SJha R(2019)Computing over encrypted spatial data generated by IoTTelecommunications Systems10.1007/s11235-018-0479-470:2(193-229)Online publication date: 1-Feb-2019
https://dl.acm.org/doi/10.1007/s11235-018-0479-4
(2018)A new technique for data encryption based on third party encryption server to maintain the privacy preserving in the cloud environmentInternational Journal of Business Information Systems10.1504/IJBIS.2018.09365428:4(393-403)Online publication date: 1-Jan-2018
https://dl.acm.org/doi/10.1504/IJBIS.2018.093654
Sabitha SRajasree M(2017)Access control based privacy preserving secure data sharing with hidden access policies in cloudJournal of Systems Architecture: the EUROMICRO Journal10.1016/j.sysarc.2017.03.00275:C(50-58)Online publication date: 1-Apr-2017
https://dl.acm.org/doi/10.1016/j.sysarc.2017.03.002
Sabitha SRajasree M(2017)An Efficient Framework for Verifiable Access Control Based Dynamic Data Updates in Public Cloud13th International Conference on Distributed Computing and Internet Technology - Volume 1010910.1007/978-3-319-50472-8_12(147-158)Online publication date: 13-Jan-2017
https://dl.acm.org/doi/10.1007/978-3-319-50472-8_12
Li QMa JLi RLiu XXiong JChen D(2016)Secure, efficient and revocable multi-authority access control system in cloud storageComputers and Security10.1016/j.cose.2016.02.00259:C(45-59)Online publication date: 1-Jun-2016
https://dl.acm.org/doi/10.1016/j.cose.2016.02.002
Lee CLi CChiu SChen S(2016)Time-bound key-aggregate encryption for cloud storageSecurity and Communication Networks10.1002/sec.14639:13(2059-2069)Online publication date: 10-Sep-2016
https://dl.acm.org/doi/10.1002/sec.1463
Tu SNiu SLi H(2016)A fine-grained access control and revocation scheme on cloudsConcurrency and Computation: Practice & Experience10.1002/cpe.295628:6(1697-1714)Online publication date: 25-Apr-2016
https://dl.acm.org/doi/10.1002/cpe.2956
Cheng RZhang F(2015)Obfuscation for multi-use re-encryption and its application in cloud computingConcurrency and Computation: Practice & Experience10.1002/cpe.339927:8(2170-2190)Online publication date: 10-Jun-2015
https://dl.acm.org/doi/10.1002/cpe.3399
Liang KFang LWong DSusilo W(2015)A ciphertext-policy attribute-based proxy re-encryption scheme for data sharing in public cloudsConcurrency and Computation: Practice & Experience10.1002/cpe.339727:8(2004-2027)Online publication date: 10-Jun-2015
https://dl.acm.org/doi/10.1002/cpe.3397
Show More Cited By

Abstract

Cited By

Recommendations

A fine-grained access control and revocation scheme on clouds

Fine-grained Access Control and Revocation for Sharing Data on Clouds

An efficient signcryption for data access control in cloud computing

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations