A PKI-based mechanism for secure and efficient access to outsourced data

Providing secure and efficient access to large scale data is an important component of cloud computing. In this paper, a PKI-based access control mechanism is proposed. The mechanism is based on encryption-based access control and over-encryption, it not only ensures secure access to the outsourced data,but also relieve the data owner from user's every access procedure, thus avoid the owner will become the bottleneck during the access and archieve high efficiency. Moreover,the mechanism is easy and flexible when users are granted or revoked. Preliminary analysis demonstrates the effectiveness and security of the mechanism.

[1]  Markus Jakobsson,et al.  Controlling data in the cloud: outsourcing computation without outsourcing control , 2009, CCSW '09.

[2]  Sushil Jajodia,et al.  A data outsourcing architecture combining cryptography and access control , 2007, CSAW '07.

[3]  Ling Liu,et al.  Sharoes: A Data Sharing Platform for Outsourced Enterprise Storage Environments , 2008, 2008 IEEE 24th International Conference on Data Engineering.

[4]  Yongdae Kim,et al.  Securing distributed storage: challenges, techniques, and systems , 2005, StorageSS '05.

[5]  Sushil Jajodia,et al.  Over-encryption: Management of Access Control Evolution on Outsourced Data , 2007, VLDB.

[6]  Kristin E. Lauter,et al.  Cryptographic Cloud Storage , 2010, Financial Cryptography Workshops.

[7]  Bharat K. Bhargava,et al.  Secure and efficient access to outsourced data , 2009, CCSW '09.

[8]  E. Miller,et al.  Strong security for distributed file systems , 2001, Conference Proceedings of the 2001 IEEE International Performance, Computing, and Communications Conference (Cat. No.01CH37210).

[9]  Eric Horvitz,et al.  Patient controlled encryption: ensuring privacy of electronic medical records , 2009, CCSW '09.