The System Research And Implementation Of Document Storage Security And Sharing On The Cloud Based On Multi-authority ABE Scheme

With the cloud computing technology maturing, the advantages of cloud computing are increasingly prominent, such as whenever and wherever can be accessing, and paying what you need are not only providing a great convenience for the individual user, but also reducing the purchase of equipment and maintenance costs for the enterprises. More and more users move the local storage into the cloud servers. However, under the cloud computing environment, the users' secret information exists security risks at any time,which can be solved with the encryption technology. There is challenge to the PKI scheme about the secret key management and information efficiently shared, especially it is difficult to collect all sharers' public keys to encryption at a short time under the open cloud applications. To solve this problem, this paper encryption with the ABE scheme and shared the information security. The ABE scheme can describe the users' all information with a set attributes and control the shared scope by setting the policy. What's more, ABE scheme can resist the users' collusion by embedding the user ID into the secret key. To satisfy the needs of a distributed cloud environment, this paper mainly research multi-authority ABE scheme.The mainly work as follows:Firstly, this paper introduces several typical ABE scheme, including ABE scheme and Multi-authority ABE scheme. It mainly describes the schemes models, characteristics and research development. Which point out the further research directions about ABE scheme.Secondly, this paper proposes multi-authority ABE scheme with revocation, where the classification manages user attributes, effectively relieving the management burden of single organization. In addition, it can achieve fine grained access control of shared information by adopting tree access strategy and secret sharing scheme, and support system attribute revocation. we show that the scheme is secure against chosen plaintext attack under the Decisional Bilinear Diffie-Hellman assumption.Finally, based on partially trusted cloud storage environment, this paper constructs a cloud document safety storage and shared system based on the multi-authority ABE scheme. This system requires that the cloud storage servers can not proactive monitoring the procedure of encryption and decryption in Center Authority, and can not read cache illegally. To improve the overall system performance, this system can deploy the Center Authority in the cloud. It builds a reliable communication protocol between cloud storage servers and the Attribute authorities by the Socket. Choosing pseudo-random function andthen generate the user private key with ID, it can fight against collusion from users or AAs.