Article: Fine-grained access control of files stored in cloud storage with traceable and revocable multi-authority CP-ABE scheme Journal: International Journal of Grid and Utility Computing (IJGUC) 2023 Vol.14 No.4 pp.320 - 338 Abstract: Cloud computing is gaining increasing popularity among enterprises, universities, government departments, and end-users. Geographically distributed users can collaborate by sharing files through the cloud. Ciphertext-Policy attribute-based (CP-ABE) access control provides an efficient technique to enforce fine-grained access control by the data owner. Single authority CP-ABE schemes create a bottleneck for enterprise applications. Multi authority CP-ABE systems deal with multiple attribute authorities performing the attribute registration or key distribution. Type I pairing is used in designing the existing multi-authority systems. They are vulnerable to some reported known attacks on them. This paper proposes a multi-authority CP-ABE scheme that supports attribute and policy revocation. Type III pairing is used in designing the scheme, which has higher security, faster group operations, and requires less memory to store the elements. The proposed scheme has been implemented using the Charm framework, which uses the PBC library. The OpenStack cloud platform is used for computing and storage services. It has been proved that the proposed scheme is collusion resistant, traceable, and revocable. AVISPA tool has been used to verify that the proposed scheme is secure against a replay attack and man-in-the-middle attack. Inderscience Publishers - linking academia, business and industry through research

Title: Fine-grained access control of files stored in cloud storage with traceable and revocable multi-authority CP-ABE scheme

Authors: Bharati Mishra; Debasish Jena; Srikanta Patnaik

Addresses: Department of Computer Science and Engineering, IIIT Bhubaneswar, Bhubaneswar, Odisha, India ' Department of Computer Science and Engineering, IIIT Bhubaneswar, Bhubaneswar, Odisha, India ' Department of Computer Science and Engineering, SOA University, Bhubaneswar, Odisha, India

Abstract: Cloud computing is gaining increasing popularity among enterprises, universities, government departments, and end-users. Geographically distributed users can collaborate by sharing files through the cloud. Ciphertext-Policy attribute-based (CP-ABE) access control provides an efficient technique to enforce fine-grained access control by the data owner. Single authority CP-ABE schemes create a bottleneck for enterprise applications. Multi authority CP-ABE systems deal with multiple attribute authorities performing the attribute registration or key distribution. Type I pairing is used in designing the existing multi-authority systems. They are vulnerable to some reported known attacks on them. This paper proposes a multi-authority CP-ABE scheme that supports attribute and policy revocation. Type III pairing is used in designing the scheme, which has higher security, faster group operations, and requires less memory to store the elements. The proposed scheme has been implemented using the Charm framework, which uses the PBC library. The OpenStack cloud platform is used for computing and storage services. It has been proved that the proposed scheme is collusion resistant, traceable, and revocable. AVISPA tool has been used to verify that the proposed scheme is secure against a replay attack and man-in-the-middle attack.

Keywords: cloud storage; access control; CP-ABE; attribute revocation; blockchain; multi-authority.

DOI: 10.1504/IJGUC.2023.132615

International Journal of Grid and Utility Computing, 2023 Vol.14 No.4, pp.320 - 338

Received: 04 Feb 2020
Accepted: 01 May 2020
Published online: 31 Jul 2023 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Fine-grained access control of files stored in cloud storage with traceable and revocable multi-authority CP-ABE scheme

Keep up-to-date