TY - GEN
T1 - A lightweight access control mechanism for mobile cloud computing
AU - Yao, Xuanxia
AU - Han, Xiaoguang
AU - Du, Xiaojiang
PY - 2014
Y1 - 2014
N2 - In order to meet the security requirement, most data are stored in cloud as cipher-texts. Hence, a cipher-text based access control mechanism is needed for data sharing in cloud. A popular solution is to use the attribute-based encryption. However, it is not suitable for mobile cloud due to the heavy computation overhead caused by bilinear pairing, which also makes it difficult to change the access control policy. In addition, attribute-based encryption can't achieve fine-grained access control yet. In this paper, we present a lightweight cipher-text access control mechanism for mobile cloud computing, which is based on authorization certificates and secret sharing. Only the certificate owner can reconstruct decryption keys for his/her files. Our analyses show that the mechanism can achieve efficient and fine-grained access control on cipher-text at a much lower cost than the attribute-based encryption solution.
AB - In order to meet the security requirement, most data are stored in cloud as cipher-texts. Hence, a cipher-text based access control mechanism is needed for data sharing in cloud. A popular solution is to use the attribute-based encryption. However, it is not suitable for mobile cloud due to the heavy computation overhead caused by bilinear pairing, which also makes it difficult to change the access control policy. In addition, attribute-based encryption can't achieve fine-grained access control yet. In this paper, we present a lightweight cipher-text access control mechanism for mobile cloud computing, which is based on authorization certificates and secret sharing. Only the certificate owner can reconstruct decryption keys for his/her files. Our analyses show that the mechanism can achieve efficient and fine-grained access control on cipher-text at a much lower cost than the attribute-based encryption solution.
KW - Authorization
KW - access control
KW - certificate
KW - mobile cloud storage
UR - http://www.scopus.com/inward/record.url?scp=84904513885&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84904513885&partnerID=8YFLogxK
U2 - 10.1109/INFCOMW.2014.6849262
DO - 10.1109/INFCOMW.2014.6849262
M3 - Conference contribution
SN - 9781479930883
T3 - Proceedings - IEEE INFOCOM
SP - 380
EP - 385
BT - 2014 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2014
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2014 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2014
Y2 - 27 April 2014 through 2 May 2014
ER -