FACOR：Flexible Access Control with Outsourceable Revocation in Mobile Clouds 被引量：2

FACOR:Flexible Access Control with Outsourceable Revocation in Mobile Clouds

下载PDF

导出

摘要 Access control is a key mechanism to secure outsourced data in mobile clouds. Some existing solutions are proposed to enforce flexible access control on outsourced data or reduce the computations performed by mobile devices. However, less attention has been paid to the efficiency of revocation when there are mobile devices needed to be revoked. In this paper, we put forward a new solution, referred to as flexible access control with outsourceable revocation(FACOR) for mobile clouds. The FACOR applies the attribute-based encryption to enable flexible access control on outsourced data, and allows mobile users to outsource the time-consuming encryption and decryption computations to proxies, with only requiring attributes authorization to be fully trusted. As an advantageous feature, FACOR provides an outsourceable revocation for mobile users to reduce the complicated attribute-based revocation operations. The security analysis shows that our FACOR scheme achieves data security against collusion attacks and unauthorized accesses from revoked users. Both theoretical and experimental results confirm that our proposed scheme greatly reliefs the mobile devices from heavy encryption and decryption computations, as well as the complicated revocation of access rights in mobile clouds. Access control is a key mechanism to secure outsourced data in mobile clouds. Some existing solutions are proposed to enforce flexible access control on outsourced data or reduce the computations performed by mobile devices. However, less attention has been paid to the efficiency of revocation when there are mobile devices needed to be revoked. In this paper, we put forward a new solution, referred to as flexible access control with outsourceable revocation（FACOR） for mobile clouds. The FACOR applies the attribute-based encryption to enable flexible access control on outsourced data, and allows mobile users to outsource the time-consuming encryption and decryption computations to proxies, with only requiring attributes authorization to be fully trusted. As an advantageous feature, FACOR provides an outsourceable revocation for mobile users to reduce the complicated attribute-based revocation operations. The security analysis shows that our FACOR scheme achieves data security against collusion attacks and unauthorized accesses from revoked users. Both theoretical and experimental results confirm that our proposed scheme greatly reliefs the mobile devices from heavy encryption and decryption computations, as well as the complicated revocation of access rights in mobile clouds.

作者 ZHOU Shungan DU Ruiying CHEN Jing SHEN Jian DENG Hua ZHANG Huanguo

机构地区 The Key Laboratory of Aerospace Information Security and Trusted Computing State Grid Information and Communication Company of Hunan Electric Power Corp

出处《China Communications》 SCIE CSCD 2016年第4期136-150,共15页 中国通信（英文版）

基金 supported in part by National High-Tech Research and Development Program of China(“863” Program)under Grant No.2015AA016004 National Natural Science Foundation of China under Grants No.61173154,61272451,61572380

关键词 mobile cloud computing ABE OUTSOURCING user revocation mobile cloud computing ABE outsourcing user revocation

分类号 TN918.4 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献2

1WANG Jing,HUANG Chuanhe,YANG Kan,WANG Jinhai,WANG Xiaomao,CHEN Xi.MAVP-FE:Multi-Authority Vector Policy Functional Encryption with Efficient Encryption and Decryption[J].China Communications,2015,12(6):126-140. 被引量：1
2CHENG Hongbing,RONG Chunming,HWANG Kai,WANG Weihong,LI Yanyan.Secure Big Data Storage and Sharing Scheme for Cloud Tenants[J].China Communications,2015,12(6):106-115. 被引量：10

二级参考文献57

1D. Kusnetzky. What is "Big Data?" [Online]. Available: http://blogs.zd net.com/virtualiza- tion/?p = 1708.
2K. Kant, "Data center evolution: A tutorial on state of the art, issues, and challenges," Com- puter Networks, vol. 53, no. 17, pp. 2939- 2965, 2009, virtualized Data Centers. [Online]. Avail- able: http://www.sciencedirect.com/science/ article/pii/S1389128609003090.
3M. L. Norman and A. Snavely, "Accelerating da- ta-intensive science with gordon and dash," in Proceedings of the 2010 TeraGrid Conference, ser. TG '10. New York, NY, USA: ACM, 2010, pp. 14:1-14:7.[Online]. Available: http://doi.acm. org/10.1145/1838574.1838588.
4X. Zhang, H. tao Du, J. quan Chen, Y. Lin, and L.jie Zeng, "Ensure data security in cloud storage," in Network Computing and Information Secu- rity (NCIS), 2011 International Conference on, vol. 1, may 2011, pp. 284 -287.
5Liu Q, Wang G, Wu J. Secure and privacy pre- serving keyword searching for cloud storage services [J]. Journal of network and computer applications, 2012, 35(3): 927-933.
6Cidon A, Stutsman R, Rumble S, et al. MinCo- pysets: Derandomizing Replication in Cloud Storage[C]//Networked Systems Design and Implementation (NSDI). 2013.
7Inbarani W S, Moorthy G S, Paul C K C. An Approach for Storage Security in Cloud Com- puting-A Survey[J]. International Journal of Advanced Research in Computer Engineering & Technology (IJARCET), 2013, 2(1): pp: 174-179.
8Curran R J, Haskin R L. File level security for a metadata controller in a storage area network: U.S. Patent 7,840,995[P]. 2010-11-23.
9Shmueli, Erez, et al. "Database encryption: an overview of contemporary challenges and de- sign considerations." ACM SIGMOD Record 38.3 (2010): 29-34.
10Sabahi F. Virtualization-level security in cloud computing[C]//Communication Software and Networks (ICCSN), 2011 IEEE 3rd International Conference on. IEEE, 2011: 250-254.

共引文献9

1Lei Li,Dagang Li,Zhiliang Su,Lianwen Jin,Ganbo Huang.Performance Analysis and Framework Optimization of Open Source Cloud Storage System[J].China Communications,2016,13(6):110-122. 被引量：1
2Shungan Zhou,Ruiying Du,Jing Chen,Hua Deng,Jian Shen,Huanguo Zhang.SSEM： Secure, Scalable and Efficient Multi-Owner Data Sharing in Clouds[J].China Communications,2016,13(8):231-243.
3熊金波,张媛媛,李凤华,李素萍,任君,姚志强.云环境中数据安全去重研究进展[J].通信学报,2016,37(11):169-180. 被引量：26
4陈丽,黄晋,王锐.Hadoop大数据平台安全问题和解决方案的综述[J].计算机系统应用,2018,27(1):1-9. 被引量：12
5彭海静.第三方电子商务大数据分析平台的构建与应用研究[J].电子商务,2017,18(2):24-25. 被引量：7
6沙乐天,肖甫,陈伟,孙晶,王汝传.基于多属性决策及污点跟踪的大数据平台敏感信息泄露感知方法[J].通信学报,2017,38(7):56-69. 被引量：10
7徐健,陈志德,龚平,王可可.基于区块链网络的医疗记录安全储存访问方案[J].计算机应用,2019,39(5):1500-1506. 被引量：68
8赵运星,赵强,黄超,杨涛,周广军,姜作真,胡丽萍.基于区块链的海洋数据安全共享系统构建[J].海洋开发与管理,2023,40(1):37-43. 被引量：2
9韩妍妍,李鹏,刘培鹤,周义昆,高文斌.基于PoC共识的区块链可靠存储系统[J].郑州大学学报（理学版）,2023,55(3):22-27. 被引量：3

同被引文献6

1吕志泉,洪澄,张敏,冯登国,陈开渠.面向社交网络的隐私保护方案[J].通信学报,2014,35(8):23-32. 被引量：14
2陈燕俐,宋玲玲,杨庚.基于CP-ABE和SD的高效云计算访问控制方案[J].计算机科学,2014,41(9):152-157. 被引量：10
3肖人毅.云计算中数据隐私保护研究进展[J].通信学报,2014,35(12):168-177. 被引量：24
4董晓蕾.物联网隐私保护研究进展[J].计算机研究与发展,2015,52(10):2341-2352. 被引量：39
5Fengye Hu,Lu Wang,Shanshan Wang,Xiaolan Liu,Gengxin He.A Human Body Posture Recognition Algorithm Based on BP Neural Network for Wireless Body Area Networks[J].China Communications,2016,13(8):198-208. 被引量：10
6Kai Fan,Qiong Tian,Junxiong Wang,Hui Li,Yintang Yang.Privacy Protection Based Access Control Scheme in Cloud-Based Services[J].China Communications,2017,14(1):61-71. 被引量：3

引证文献2

1张维纬,张育钊,黄焯,张茹,杨义先.支持安全外包计算的无线体域网数据共享方案[J].通信学报,2017,38(4):64-75. 被引量：3
2刘胜杰,王静.云环境下SNS隐私保护方案[J].计算机科学,2019,46(2):133-138. 被引量：1

二级引证文献4

1李海颖,张江霄,隋春荣.基于可传递性的公平的外包计算协议[J].河北大学学报（自然科学版）,2017,37(5):555-560.
2乔毛,秦岭.云存储服务中一种高效属性撤销的AB-ACCS方案[J].计算机科学,2019,46(7):96-101. 被引量：4
3邓安远,史姣丽,黄定,何凯.支持关键词隐私保护的密文共享系统[J].软件导刊,2020,19(10):228-232. 被引量：1
4杨小东,周航,汪志松,袁森,王彩芬.基于区块链的无线体域网无证书密文等值测试签密方案[J].电子学报,2023,51(4):922-932.

1Wei Ren,Linchen Yu,Ren Gao,Feng Xiong.Lightweight and Compromise Resilient Storage Outsourcing with Distributed Secure Accessibility in Mobile Cloud Computing[J].Tsinghua Science and Technology,2011,16(5):520-528. 被引量：3
2Yi Jiang Hao-Shan Shi.A Cluster-Based Random Key Revocation Protocol for Wireless Sensor Networks[J].Journal of Electronic Science and Technology of China,2008,6(1):10-15. 被引量：1
3Shungan Zhou,Ruiying Du,Jing Chen,Hua Deng,Jian Shen,Huanguo Zhang.SSEM： Secure, Scalable and Efficient Multi-Owner Data Sharing in Clouds[J].China Communications,2016,13(8):231-243.
4ZTE Improves Experience for Mobile Users[J].ZTE Communications,2006,4(3):1-1.
5TU Shanshan,HUANG Yongfeng.Towards Efficient and Secure Access Control System for Mobile Cloud Computing[J].China Communications,2015,12(12):43-52. 被引量：6
6Lei Yang,Jiannong Cao.Computation Partitioning in Mobile Cloud Computing: A Survey[J].ZTE Communications,2013,11(4):8-17. 被引量：1
7Wu Qing,Li Zhenbang,Yin Yuyu,Zeng Hong.Adaptive Service Selection Method in Mobile Cloud Computing[J].China Communications,2012,9(12):46-55.
8HUANG Qinlong,MA Zhaofeng,YANG Yixian,FU Jingyi,NIU Xinxin.EABDS: Attribute-Based Secure Data Sharing with Efficient Revocation in Cloud Computing[J].Chinese Journal of Electronics,2015,24(4):862-868. 被引量：8
9功成“明”就 MOTO MING A1600[J].家庭电子,2008(7):42-45.
10Xiaopeng Fan,Jiannong Cao,Haixia Mao.A Survey of Mobile Cloud Computing[J].ZTE Communications,2011,9(1):4-8. 被引量：7

China Communications

2016年第4期

浏览历史

内容加载中请稍等...