A lightweight access control mechanism for mobile cloud computing

Author

Xuanxia Yao ; Xiaoguang Han ; Xiaojiang Du

Author_Institution

Sch. of Comput. & Commun. Eng., Univ. of Sci. & Technol. Beijing, Beijing, China

fYear

2014

fDate

April 27 2014-May 2 2014

Firstpage

380

Lastpage

385

Abstract

In order to meet the security requirement, most data are stored in cloud as cipher-texts. Hence, a cipher-text based access control mechanism is needed for data sharing in cloud. A popular solution is to use the attribute-based encryption. However, it is not suitable for mobile cloud due to the heavy computation overhead caused by bilinear pairing, which also makes it difficult to change the access control policy. In addition, attribute-based encryption can´t achieve fine-grained access control yet. In this paper, we present a lightweight cipher-text access control mechanism for mobile cloud computing, which is based on authorization certificates and secret sharing. Only the certificate owner can reconstruct decryption keys for his/her files. Our analyses show that the mechanism can achieve efficient and fine-grained access control on cipher-text at a much lower cost than the attribute-based encryption solution.

Keywords

authorisation; cloud computing; cryptography; mobile computing; access control policy; attribute-based encryption; authorization certificates; bilinear pairing; certificate owner; cipher-text based access control mechanism; data sharing; decryption key reconstruction; fine-grained access control; lightweight cipher-text access control mechanism; mobile cloud computing; secret sharing; security requirement; Authorization; Cloud computing; Encryption; Mobile communication; Servers; Authorization; access control; certificate; mobile cloud storage;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Communications Workshops (INFOCOM WKSHPS), 2014 IEEE Conference on

Conference_Location

Toronto, ON

Type

conf

DOI

10.1109/INFCOMW.2014.6849262

Filename

6849262