ISCAS OpenIR
KP-ABE based Verifiable Cloud Access Control Scheme
Si, Xiaolin; Wang, Pengpian; Zhang, Liwu
2013
会议名称12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)
页码34-41
会议日期JUL 16-18, 2013
会议地点Melbourne, AUSTRALIA
收录类别CPCI
出版地IEEE
ISSN2324-898X
ISBN978-0-7695-5022-0
部门归属[Si, Xiaolin; Wang, Pengpian; Zhang, Liwu] Chinese Acad Sci, Inst Software, Beijing, Peoples R China.
摘要With the rapid development of mobile internet, mobile devices are requiring more complex authorization policy to ensure an secure access control on mobile data. However mobiles have limited resources (computing, storage, etc.) and are not suitable to execute complex operations. Cloud computing is an increasingly popular paradigm for accessing powerful computing resources. Intuitively we can solve that problem by moving the complex access control process to the cloud and implement a fine-grained access control relying on the powerful cloud. However the cloud computation may not be trusted, a crucial problem is how to verify the correctness of such computations. In this paper, we proposed a public verifiable cloud access control scheme based on Parno's public verifiable computation protocol. For the first time, we proposed the conception and concrete construction of verifiable cloud access control. Specifically, we firstly design a user private key revocable Key Policy Attribute Based Encryption (KP-ABE) scheme with non-monotonic access structure, which can be combined with the XACML policy perfectly. Secondly we convert the XACML policy into the access structure of KP-ABE. Finally we construct a security provable public verifiable cloud access control scheme based on the KP-ABE scheme we designed.; With the rapid development of mobile internet, mobile devices are requiring more complex authorization policy to ensure an secure access control on mobile data. However mobiles have limited resources (computing, storage, etc.) and are not suitable to execute complex operations. Cloud computing is an increasingly popular paradigm for accessing powerful computing resources. Intuitively we can solve that problem by moving the complex access control process to the cloud and implement a fine-grained access control relying on the powerful cloud. However the cloud computation may not be trusted, a crucial problem is how to verify the correctness of such computations. In this paper, we proposed a public verifiable cloud access control scheme based on Parno's public verifiable computation protocol. For the first time, we proposed the conception and concrete construction of verifiable cloud access control. Specifically, we firstly design a user private key revocable Key Policy Attribute Based Encryption (KP-ABE) scheme with non-monotonic access structure, which can be combined with the XACML policy perfectly. Secondly we convert the XACML policy into the access structure of KP-ABE. Finally we construct a security provable public verifiable cloud access control scheme based on the KP-ABE scheme we designed.
关键词Control Cloud Computing Verifiable Computation Kp-abe Xacml
语种英语
内容类型会议论文
URI标识http://ir.iscas.ac.cn/handle/311060/16536
专题中国科学院软件研究所
推荐引用方式
GB/T 7714
Si, Xiaolin,Wang, Pengpian,Zhang, Liwu. KP-ABE based Verifiable Cloud Access Control Scheme[C]. IEEE,2013:34-41.
条目包含的文件
条目无相关文件。
个性服务
推荐该条目
保存到收藏夹
查看访问统计
导出为Endnote文件
谷歌学术
谷歌学术中相似的文章
[Si, Xiaolin]的文章
[Wang, Pengpian]的文章
[Zhang, Liwu]的文章
百度学术
百度学术中相似的文章
[Si, Xiaolin]的文章
[Wang, Pengpian]的文章
[Zhang, Liwu]的文章
必应学术
必应学术中相似的文章
[Si, Xiaolin]的文章
[Wang, Pengpian]的文章
[Zhang, Liwu]的文章
相关权益政策
暂无数据
收藏/分享
所有评论 (0)
暂无评论
 

除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。