SFDS: A Security and Flexible Data Sharing Scheme in Cloud Environment

With a large number of data emerged these years, data security has become more important than ever before. Especially as cloud comes into our life, we put more private digital data into the cloud, and access them through many kinds of devices, share some of them with our friends. All this brings us into another scene to think the security of our private data security. In this paper, we present a security flexible data sharing scheme (SFDS) suitable for cloud environments. SFDS is an identity-based system which provides strong security and privacy guarantees for cloud data, and it closely binds security information with data together so that data is used in a controllable way when shared among multiple users. Besides the traditional security properties such as confidentiality and integrity, our scheme provides self-destruction when the corresponding policy is triggered. Furthermore, data owner could customize flexible access policies to achieve adjustable level of security, no matter where the data is. We implement a prototype of SFDS based on Ceph, which is an open source object based storage system. Our performance evaluations demonstrate the flexibility of SFDS on access control and data protection policy. And the prototype is efficient with acceptable execution overheads and small space cost.