Lightweight management of authorization update on cloud data

Publication Type:
Conference Proceeding
Proceedings of the International Conference on Parallel and Distributed Systems - ICPADS, 2013, pp. 456 - 461
Issue Date:
Filename Description Size
Thumbnail2013003863OK.pdf278.29 kB
Adobe PDF
Full metadata record
While outsourcing data to cloud, security and efficiency issues should be taken into account. However, it is very challenging to design a secure and efficient mechanism supporting authorization updates. In this paper, we aim to provide a mechanism supporting authorization updates which only incurs a lightweight cost of authorization updates and meanwhile supports a high level of security. This mechanism is consisted of two encryption schemes performed in different layers. The inner-layer encryption scheme is performed on the original plaintext and the generated cipher text is called inner-layer cipher text, while a part of the inner-layer cipher text is encrypted by the outer-layer encryption scheme to generate cipher text, called out-layer cipher text. These two encryption schemes are both performed by data owner. The inner-layer encryption realizes the initial authorization policy, while the outer-layer encryption reflects the updated authorization policy. We implement the proposed mechanism and conduct extensive experiments. The experimental results demonstrate that the proposed mechanism outperforms previous existing approaches, e.g. single-layer encryption and double-layer encryption. © 2013 IEEE.
Please use this identifier to cite or link to this item: