Open Access Open Access  Restricted Access Subscription or Fee Access

Access Control Based on ABE and IBS for the Cloud Outsourced Data

Shan-shan Tu, Shao-zhang Niu, Martin J. Reed


At present, outsourcing the data to the cloud service provider (CSP) has been used greatly reduce the cost by many companies. However, allowing a cloud service provider (CSP), whose main purpose is to make profits, to take the custody of sensitive corporate data will lead to underlying security and privacy issues at the same time. In this case, storing the encrypted data in the cloud can be a way to keep user data confidential against an untrusted CSP. Flexible encryption schemes can provide a fine grain access control for the encrypted data, and also ensure legitimate user to decrypt the corresponding data. This paper proposes a cryptographic access control solution, which is based on attribute-based encryption (ABE) and identity-based signature (IBS), can keep the data in the cloud confidential against unauthorized parties. Additionally, under the premise of untrusted CSPs, the proposed scheme can ensure the data security of the storage system in the open cloud environment, and can reduce right management complexity. Analysis and experimental results show that the concrete access control scheme can enhance the efficiency for the cloud.


Secure storage, Attribute-based encryption, Identity-based signature, Cloud computing.

Full Text:


Disclaimer/Regarding indexing issue:

We have provided the online access of all issues and papers to the indexing agencies (as given on journal web site). It’s depend on indexing agencies when, how and what manner they can index or not. Hence, we like to inform that on the basis of earlier indexing, we can’t predict the today or future indexing policy of third party (i.e. indexing agencies) as they have right to discontinue any journal at any time without prior information to the journal. So, please neither sends any question nor expects any answer from us on the behalf of third party i.e. indexing agencies.Hence, we will not issue any certificate or letter for indexing issue. Our role is just to provide the online access to them. So we do properly this and one can visit indexing agencies website to get the authentic information. Also: DOI is paid service which provided by a third party. We never mentioned that we go for this for our any journal. However, journal have no objection if author go directly for this paid DOI service.