Abstract
In Cloud Computing, the application software and the databases are moved to large centralized data centers, where the management of the data and services may not be fully trustworthy. This unique paradigm brings many new security challenges, which have not been well solved. Data access control is an effective way to ensure the big data security in the cloud. In this paper, we study the problem of fine-grained data access control in cloud computing. Based on CP-ABE scheme,we propose a novel access control policy to achieve fine-grainedness and implement the operation of user revocation effectively. The analysis results indicate that our scheme ensures the data security in cloud computing and reduces the cost of the data owner significantly.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Feng, D.G., Zhang, M., Zhang, Y., et al.: Study on Cloud Computing Security. Journal of Software 22(1), 71–83 (2011)
Almutairi, A., Sarfraz, M., Basalamah, S., et al.: A distributed access control architecture for cloud computing. IEEE Software 29(2), 36–44 (2012)
Wang, X.M., Fu, H., Zhang, L.: Research Progress on Attribute-Based Access Control. Chinese Journal of Electronics 38(7), 1660–1667 (2010)
Yu, S., Wang, C., Ren, K., et al.: Achieving Secure, Scalable, and Fine-grained Data Access Control in Cloud Computing. In: INFOCOM 2010 Proceedings IEEE, San Diego, CA, March 14-19, pp. 1–9 (2010)
Anderson, J.P.: Computer security technology planning study. Air Force Electronic Systems Division, Report ESD-TR-73-51 (1972)
Hur, J., Noh, D.: Attribute-Based Access Control with Efficient Revocation in Data Outsourcing Systems. IEEE Transactions on Parallel and Distributed Systems 22(7), 1214–1221 (2011)
Roy, S., Chuah, M.: Secure data retrieval based on ciphertext policy attribute-based encryption (CP-ABE) system for the DTNs. Technical Report (2009)
Zhiguo, W., Jun’e, L., Deng, R.H.: HASBE: A Hierarchical Attribute-Based Solution for Flexible and Scalable Access Control in cloud Computing. IEEE Transactions on Information Forensics and Security 7(2), 743–754 (2012)
Bianchi, G., Capossele, A., Petrioli, C.: AGREE:exploiting energy harvesting to support data-centric access control in WSNs. AD HOC NETWORKS 11(8), 2625–2636 (2013)
Kan, Y., Xiaohua, J.: Expressive, Efficient, and Revocable Data Access Control for Multi-Authority Cloud Storage. IEEE Transactions on Parallel and Distributed Systems 25(7), 1735–1744 (2014)
Wang, Q., Wang, C., Li, J., Ren, K., Lou, W.: Enabling public verifiability and data dynamics for storage security in cloud computing. In: Backes, M., Ning, P. (eds.) ESORICS 2009. LNCS, vol. 5789, pp. 355–370. Springer, Heidelberg (2009)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Yuan, Q., Ma, C., Lin, J. (2015). Fine-Grained Access Control for Big Data Based on CP-ABE in Cloud Computing. In: Wang, H., et al. Intelligent Computation in Big Data Era. ICYCSEE 2015. Communications in Computer and Information Science, vol 503. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-662-46248-5_42
Download citation
DOI: https://doi.org/10.1007/978-3-662-46248-5_42
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-662-46247-8
Online ISBN: 978-3-662-46248-5
eBook Packages: Computer ScienceComputer Science (R0)