Lightweight Management of Authorization Update on Cloud Data

2013 International Conference on Parallel and Distributed Systems Pub Date : 2013-12-15 DOI:10.1109/ICPADS.2013.83

Zongmin Cui, Hong Zhu, Jie Shi, Lianhua Chi, Ke Yan

{"title":"Lightweight Management of Authorization Update on Cloud Data","authors":"Zongmin Cui, Hong Zhu, Jie Shi, Lianhua Chi, Ke Yan","doi":"10.1109/ICPADS.2013.83","DOIUrl":null,"url":null,"abstract":"While outsourcing data to cloud, security and efficiency issues should be taken into account. However, it is very challenging to design a secure and efficient mechanism supporting authorization updates. In this paper, we aim to provide a mechanism supporting authorization updates which only incurs a lightweight cost of authorization updates and meanwhile supports a high level of security. This mechanism is consisted of two encryption schemes performed in different layers. The inner-layer encryption scheme is performed on the original plaintext and the generated cipher text is called inner-layer cipher text, while a part of the inner-layer cipher text is encrypted by the outer-layer encryption scheme to generate cipher text, called out-layer cipher text. These two encryption schemes are both performed by data owner. The inner-layer encryption realizes the initial authorization policy, while the outer-layer encryption reflects the updated authorization policy. We implement the proposed mechanism and conduct extensive experiments. The experimental results demonstrate that the proposed mechanism outperforms previous existing approaches, e.g. single-layer encryption and double-layer encryption.","PeriodicalId":160979,"journal":{"name":"2013 International Conference on Parallel and Distributed Systems","volume":"116 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-12-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 International Conference on Parallel and Distributed Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICPADS.2013.83","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

While outsourcing data to cloud, security and efficiency issues should be taken into account. However, it is very challenging to design a secure and efficient mechanism supporting authorization updates. In this paper, we aim to provide a mechanism supporting authorization updates which only incurs a lightweight cost of authorization updates and meanwhile supports a high level of security. This mechanism is consisted of two encryption schemes performed in different layers. The inner-layer encryption scheme is performed on the original plaintext and the generated cipher text is called inner-layer cipher text, while a part of the inner-layer cipher text is encrypted by the outer-layer encryption scheme to generate cipher text, called out-layer cipher text. These two encryption schemes are both performed by data owner. The inner-layer encryption realizes the initial authorization policy, while the outer-layer encryption reflects the updated authorization policy. We implement the proposed mechanism and conduct extensive experiments. The experimental results demonstrate that the proposed mechanism outperforms previous existing approaches, e.g. single-layer encryption and double-layer encryption.

查看原文本刊更多论文

云数据授权更新的轻量级管理

在将数据外包到云端的同时，也要考虑到安全性和效率问题。然而，设计一种支持授权更新的安全有效的机制是非常具有挑战性的。在本文中，我们的目标是提供一种支持授权更新的机制，该机制只会产生轻量级的授权更新成本，同时支持高级别的安全性。该机制由在不同层执行的两种加密方案组成。内层加密方案对原始明文进行加密，生成的密文称为内层密文，而内层密文的一部分由外层加密方案加密生成密文，称为外层密文。这两种加密方案都由数据所有者执行。内层加密实现初始化授权策略，外层加密反映更新后的授权策略。我们实施了提出的机制并进行了广泛的实验。实验结果表明，该机制优于现有的单层加密和双层加密方法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2013 International Conference on Parallel and Distributed Systems

自引率

0.00%

发文量