File Classification Access Policy Based On Attribute Encryption In Cloud Environment

Nowadays,cloud computing has developed rapidly in the world and has been widely used in all walks of life.At the same time,cloud computing is also facing many challenges.The cloud environment contains a large number of private data,How to effectively protect the security of these private data plays a crucial role in the development of cloud computing.Taking Enshi digital village cloud platform as the research background,this paper improves the security of private data in cloud environment through file classification access strategy based on attribute encryption.The main research is as follows:Firstly,In view of the different privacy requirements of government cloud platform files,in order to better ensure the security of data without wasting cloud environment resources,this paper adopts the scheme of classified protection of files.In this scheme,the files are divided into public files,shareable files and private files according to the privacy requirements,and then different protection schemes are adopted according to different privacy requirements.Secondly,For shareable files,there are many sharing requirements for files.On the basis of ensuring the flexible sharing of files,we also need to focus on the security of files.In the actual production environment,the data owner wants to be able to control the data storage and sharing permissions by himself.The traditional access control scheme can not meet such personalized needs.Therefore,this paper uses the RBAC model based on attribute encryption to manage shareable class files.The data owner formulates the file access policy.Combined with the RBAC model,the permissions in the access policy are fine-grained.The data visitors decrypt through their own attribute keys to realize file sharing under the condition of ensuring security.Thirdly,For privacy files,the privacy requirements of files are relatively high,so it is necessary to accurately control the sharing objects in the process of file sharing.In this paper,an improved proxy re-encryption algorithm combined with AES is used to manage private files.Proxy re-encryption algorithm can realize oneto-one sharing of files,return the control of files to the data owner,and effectively ensure the security of private files.However,there are a large number of bilinear mappings in the traditional proxy re-encryption algorithm,and the encryption and decryption efficiency is low.After improved combined with AES encryption algorithm,which can improve the execution efficiency of the encryption and decryption process,so as to improve the execution efficiency of the scheme.Finally,Based on Enshi digital village cloud platform,this paper designs and implements the scheme proposed in this paper in detail.Through the test of Enshi digital village cloud platform,this paper analyzes its feasibility and security,confirms the reliability of this scheme,partially solves the data security problem in the political cloud environment,and promotes the development of the government cloud platform.