Informatologia, Vol. 51 No. 3-4, 2018.
Review article
https://doi.org/10.32914/i.51.3-4.6
ACCESS CONTROL SCHEME IN CLOUD SERVICES BASED ON DIFFERENT USER ROLES
Shanmugasundaram Singaravelan
; Department of CSE, PSR Engineering College, Sivakasi, Tamilnadu, India
Ramaiah Arun
; Department of CSE, PSR Engineering College, Sivakasi, Tamilnadu, India
Dhiraviyam Arun Shunmugam
; Department of CSE, PSR Engineering College, Sivakasi, Tamilnadu, India
Raja Veeman Vivek
; Department of CSE, Sethu Institute of Technology, Pulloor ,Tamilnadu, India
Dhanushkodi Murugan
; Department of CSE, Manonmaniam Sundaranar University, Tirunelveli,India
Abstract
The rapid development of computer technology, cloud-based services have become a hot topic. They not only provide users with convenience, but also bring many security issues, such as data sharing and privacy issue. In this paper, we present an access control system with privilege separation based on privacy protection (PS-ACS). In the PS-ACS scheme, we divide users into private domain (PRD) and public domain (PUD) logically. In PRD, to achieve read access permission and write access permission, we adopt the Key-Aggregate Encryption (KAE) and the Improved Attribute-based Signature (IABS) respectively. In PUD, we construct new multi-authority cipher text policy attribute-based encryption (CP-ABE) scheme with efficient decryption to avoid the issues of single point of failure and complicated key distribution, and design an efficient attribute revocation method for it. The analysis and simulation result shows that our scheme is feasible and superior to protect users’ privacy in cloud-based services.
Keywords
Access control; Data sharing; Privacy protection; Cloud-based services
Hrčak ID:
217568
URI
Publication date:
30.12.2018.
Visits: 2.395 *