Research On Cloud Data Sharing Scheme Based On Attribute Encryption Algorithm

As the rapid development of cloud computing and distributed computing technology, cloud computing can provide computing and storage services, which is more economical and convenient. Individuals and enterprises are all preferred to outsource their data on a third platform. However, the traditional data access control technologies are inefficiencies, coarse-grained and lack of flexibility. Therefore, they are all not suitable for the open cloud environment data storage and sharing.Attribute-Based Encryption(ABE) technology solved the problem brought by the traditional technology, such as system bottleneck, data redundancy. This mechanism identifies the user or the data with a set of attributes. The user key and ciphertext are also related to a set of attributes. And the data owner can be relieved to manage the users. The ABE is owned the features of control flexibility, security, and user privacy protection. Thus ABE has become one of the effective methods used for cloud storage solution, and a research hotspot in recent years.This paper has studied the ABE mechanism. First, the characteristics and development of the ABE are introduced. Then we have analyzed the existing ABE and the revocation scheme, which is insufficient. And a novel ABE mechanism and revocation scheme is proposed, which is applied to the solution of cloud data sharing. Our main contributions are as following.1. Based on the existing multi-authority key-policy attribute-based algorithm, improving the revocation scheme proposed Li et al, which is high communication cost, high storage overhead and lack of efficiency. We proposed an improved scheme underlying a special access control structure and a set of dummy attributes. By the method of analysis and discussion, the proposed scheme is proved to be secure.2. Improved multi-authorities ciphertext policy attribute-based algorithm proposed by Yang et al., which is lack efficiency and the low policy expression. A novel multi-authorities ciphertext policy attribute-based algorithm is proposed, which supports distributed multi-authority attribute management and key distribution, and without the involvement of the central institutions, each authority is independent with each other. Combined with standard security assumptions, the algorithm is proved to be secure. Based on the proposed encryption algorithm, a revocation scheme is designed. And it is proved to achieve forward and backward security through the method of analysis and discussion.