| Driven by the attractive on-demand allocation and charge-by-byte advantages of cloud computing, the development and deployment of cloud-based applications have gained tremendous impetus in the industry and research community in recent years. Cloud storage is one of the most successful cloud-based applications, since it matches the huge data sharing demand quite well. The confidentiality of the shared data can be easily achieved by apply the cryptographic techniques and simply encrypt the stored data on the cloud. However, the fine grained data protection is still posing significant challenges in cloud storage for data sharing. Among them, how to protect and revoke the cryptographic key together is the fundamental challenge. To tackle this, we propose a new data protection mechanism for cloud storage by applying the two-factor technique and ABE, which holds the following properties.1. The cryptographic key is protected by two cryptographic techniques (two-factor). If one of the two techniques works, the secrecy of the cryptographic key is held.2. The cryptographic key can be revoked efficiently by integrating the proxy re-encryption and key separation techniques.3. The data is protected in a fine-grained way by adopting the attribute-based encryption technique.Furthermore, the security analysis and performance evaluation show that our proposal is secure and efficient, respectively. |
PDF Full Text Request