Institutional Repository
| KP-ABE based Verifiable Cloud Access Control Scheme | |
| Si, Xiaolin; Wang, Pengpian; Zhang, Liwu | |
| 2013 | |
| 会议名称 | 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) |
| 页码 | 34-41 |
| 会议日期 | JUL 16-18, 2013 |
| 会议地点 | Melbourne, AUSTRALIA |
| 收录类别 | CPCI |
| 出版地 | IEEE |
| ISSN | 2324-898X |
| ISBN | 978-0-7695-5022-0 |
| 部门归属 | [Si, Xiaolin; Wang, Pengpian; Zhang, Liwu] Chinese Acad Sci, Inst Software, Beijing, Peoples R China. |
| 摘要 | With the rapid development of mobile internet, mobile devices are requiring more complex authorization policy to ensure an secure access control on mobile data. However mobiles have limited resources (computing, storage, etc.) and are not suitable to execute complex operations. Cloud computing is an increasingly popular paradigm for accessing powerful computing resources. Intuitively we can solve that problem by moving the complex access control process to the cloud and implement a fine-grained access control relying on the powerful cloud. However the cloud computation may not be trusted, a crucial problem is how to verify the correctness of such computations. In this paper, we proposed a public verifiable cloud access control scheme based on Parno's public verifiable computation protocol. For the first time, we proposed the conception and concrete construction of verifiable cloud access control. Specifically, we firstly design a user private key revocable Key Policy Attribute Based Encryption (KP-ABE) scheme with non-monotonic access structure, which can be combined with the XACML policy perfectly. Secondly we convert the XACML policy into the access structure of KP-ABE. Finally we construct a security provable public verifiable cloud access control scheme based on the KP-ABE scheme we designed.; With the rapid development of mobile internet, mobile devices are requiring more complex authorization policy to ensure an secure access control on mobile data. However mobiles have limited resources (computing, storage, etc.) and are not suitable to execute complex operations. Cloud computing is an increasingly popular paradigm for accessing powerful computing resources. Intuitively we can solve that problem by moving the complex access control process to the cloud and implement a fine-grained access control relying on the powerful cloud. However the cloud computation may not be trusted, a crucial problem is how to verify the correctness of such computations. In this paper, we proposed a public verifiable cloud access control scheme based on Parno's public verifiable computation protocol. For the first time, we proposed the conception and concrete construction of verifiable cloud access control. Specifically, we firstly design a user private key revocable Key Policy Attribute Based Encryption (KP-ABE) scheme with non-monotonic access structure, which can be combined with the XACML policy perfectly. Secondly we convert the XACML policy into the access structure of KP-ABE. Finally we construct a security provable public verifiable cloud access control scheme based on the KP-ABE scheme we designed. |
| 关键词 | Control Cloud Computing Verifiable Computation Kp-abe Xacml |
| 语种 | 英语 |
| 内容类型 | 会议论文 |
| URI标识 | http://ir.iscas.ac.cn/handle/311060/16536 |
| 专题 | 中国科学院软件研究所 |
| 推荐引用方式 GB/T 7714 | Si, Xiaolin,Wang, Pengpian,Zhang, Liwu. KP-ABE based Verifiable Cloud Access Control Scheme[C]. IEEE,2013:34-41. |
| 条目包含的文件 | 条目无相关文件。 | |||||
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论