Research on Dynamic Access Control Method of Encrypted Data in Cloud Computing Environment
Yucheng Pan
Department of Mathematical Sciences, Tsinghua University, Beijing, 100084, China
Abstract: The confidentiality of data is a difficult problem in cloud computing environment. Dynamic access control technique based on encrypted data is an important way to solve this problem. In the current access control techniques based on encrypted data, the high security requirement of data and frequent policy update lead to the high cost of owner right update which seriously restricts the flexibility of access control. A dynamic access control method based on CACDP encrypted data is proposed in this paper. The selective encryption model is built. In the model, a key derivation diagram is generated to distribute the key. In the case of ensuring the confidentiality of cloud computing access control, the key is less in system. The proposed CACDP scheme includes the key management mechanism based on the binary Trie tree. Based on this, the ELGamal-based proxy re-encryption mechanism and double layer encryption strategy are used to transfer the partial spending of key and data update to the cloud, in order to reduce the DO authority management burden and improve the processing efficiency of DO. Then the dynamic access control method of encrypted data in cloud computing environment is researched. Experimental results show that the proposed method can effectively improve the flexibility of encrypted data access control.
Keywords: Cloud Computing Environment; Encrypted Data; Dynamic Access; Data Control