• No results found

Cloud Data Storage using Cipher text-Policy Attribute-predicated Encryption

N/A
N/A
Info
Download
Protected

Academic year: 2020

Share "Cloud Data Storage using Cipher text-Policy Attribute-predicated Encryption"

Copied!
5
0
0

Loading.... (view fulltext now)

Download now ( 5 Page )

Full text

(1)

P a g e | 99

Cloud Data Storage using Cipher text-Policy Attribute-predicated

Encryption

K.LATHA 1&Ms.M.Meenakshi 2 1

M-Tech,Dept. of CSE Geethanjali College of Engineering & Technology, Kurnool, AP

2

HOD & Asst. Professor, Dept. of CSE Geethanjali College of Engineering & Technology,

Kurnool, AP

Abstract:

This scheme provides information owners more direct control on access policies. However,

CP-ABE schemes to information access control for cloud storage systems are arduous because of the

attribute revocation quandary. So This paper engender study on effective plus revocable

information access control scheme for multi-ascendancy cloud storage systems, where there are

multiple ascendant entities cooperate and each ascendancy is able to issue attributes

independently. Concretely, this paper surveys a revocable multi-ascendancy CP-APE scheme.

The attribute revocation method can expeditiously accomplish some forward security and

rearward security. This survey shows that revocable multi-ascendancy CP-APE scheme is secure

in the desultory oracle model and is more efficient than precedent multi-ascendancy CP-APE. In

a Cloud computing the information security achieved by Information Access Control Scheme.

Cipher text-Policy Attribute-predicated Encryption is considered as one of the most felicitous

scheme for information access control in cloud storage.

Key Words—Access control,Certificate Authority ,Attribute Authorities, Information Owners,

Cloud Server, Information Consumers.

1. INTRODUCTION

In CEP organizations, nevertheless, the

supplier of an event loses control on the

distribution of dependent event streams.

This constitutes a major security quandary,

sanctioning an adversary to infer

information on confidential ingoing event

streams of the CEP system. In business

procedures, it is necessity to detect

inconsistencies or failures early. For

instance, in constructing and logistics

processes, items are tracked perpetually to

detect loss or to reroute them during convey.

To answer this need intricate event treating

(CEP) organizations have developed as a

key paradigm for business and industrial

applications [1] CEP systems sanction to

(2)

P a g e | 100

on event streams which issue from sensors

entirely over the world, e.g. from packet

tracking contrivances. While, traditionally

event processing systems have applied

potent operators in a fundamental way,

yeissuing gain of event sources and event

consumers have raised the desideratum to

reduce the communication burden by

disseminated in-network marching of stream

operations. In advisement, the collaborative

nature of today’s economy results in

astronomically immense-scale networks,

where unlike users, parties, or groups

exchange events. As a result, event treating

networks are heterogeneous in terms of

working capabilities and technologies,

consist of disagreeing players, plus are

disseminate across multiple security

domains. However, the incrementing

interoperability of CEP coverings erects ye

question of security [2] It is not feasible for

a fundamental instance to handle access

check for the whole network. Instead, every

engenderer of information should be able to

control how its engendered information can

be accessed. Current work in providing

security for event-predicated systems covers

already confidentiality of individual event

streams and the sanction of network

participants.

2. RELATED WORK:

Existing system:

This incipient paradigm of information

hosting and information access

accommodations introduces a great

challenge to information access control.

Because the cloud server cannot be plenarily

trusted by information owners, they can no

longer rely on servers to do approach

control. Cipher text-Policy

Attribute-predicated Encryption (CP-ABE) is regarded

as one of the most congruous technologies

for information access control in cloud

storage systems, because it gives the

information owner more direct control on

access policies. In CP-ABE scheme, there is

an ascendancy that is responsible for assign

direction plus key distribution.

Disadvantages of existing system:

Chase’s multi-ascendancy CP-ABE protocol

sanctions the central ascendancy to decrypt

all the cipher texts, later it agrees ye master

key of ye system. Chase’s protocol does not

fortify sat encomium revocation.

Proposed system:

Then, we apply our proposed revocable

multi-ascendancy CP-ABE system as

yefundamental techniques to construct the

expressive and secure information access

control scheme for multi-ascendancy cloud

storage systems. In this paper, we first aim a

revocable multiauthority CP-ABE system,

where an efficient and secure revocation

(3)

P a g e | 101

revocation quandary in the system [3]. Our

assign annulment method is efficient in the

sense that it receives less communicating

cost and computation cost, plus is assure in

yefeel that it can accomplish both rearward

security (The revoked utilize cannot decrypt

any incipient cipher text that requires the

revoked attribute to decrypt) and forward

security (The incipiently joined utilize can

withal decrypt the aforetime published

ciphertexts1, if it has adequate.attributes).

Our scheme does not require the server to be

planarity trusted, because the key update is

enforced by each attribute ascendancy not

the server. Even if the server is not semi

confided in some scenarios, our scheme can

still guarantee the rearward security.

Advantages of proposed system:

We modify the framework of the scheme

and cause it more virtual to cloud storage

organizations, in which information owners

are not involved in the key generation. We

greatly amend the efficiency of the attribute

revocation method. We withal highly

ameliorate the expressiveness of our access

control scheme, where we abstract the

inhibition that each attribute can exclusively

come out at almost once in a cipher text [4].

3. IMPLEMENTATION

Fig:-1 Proposed System architecture

Certificate Ascendancy:

However, the CA is not involved in any

attribute management and the engenderment

of secret keys that are associated with

attributes. For example, the CA can be the

Convivial Security Administration, an

independent agency of the Amalgamated

States regime.For each licit utilizer in the

system, the CA assigns an ecumenical

unique utilizer identity to it and withal

engenders an ecumenical public key for this

utilizer. Each utilizer will be issued a

Gregarious Security Number (SSN) as its

ecumenical identity [5] .The CA is

ecumenical trusted certificate ascendancy in

the system. It establishes the system and

accepts the registration of all the users and

AAs in the system.

Attribute Ascendant entities:

Every AA is an independent attribute

ascendancy that is responsible for ennobling

plusannulling user’s attributes according to

their role or identity in its domain. In our

scheme, every attribute is linked with a one

AA, but each AA can manage an arbitrary

number of attributes [6]. Every AA has full

control over the structure and semantics of

its attributes. Each AA is responsible for

engendering a public assign key for to each

one assign it deals and a secret key for each

utilizer reflecting his/her attributes.

(4)

P a g e | 102

Each utilizer has an ecumenical identity in

the system. A utilizer may be entitled a set

of attributes which may emanate from

multiple attribute ascendant entities [10].

The utilizer will receive a secret key linked

with its attributes ennobled by the

representing attribute ascendant entities.

Information Owners:

The owner defines the access policies over

attributes from multiple attribute ascendant

entities and encrypts the content keys under

the policies.Each owner first divides the

information into several components

according to the logic granularities and

encrypts each information component with

different content keys by utilizing

symmetric encryption techniques [9].

Cloud Server:

Then, the owner sends the encrypted

information to the cloud server together with

the cipher texts. They do not rely on the

server to do informationapproach assure.

But, the access control transpires inside the

cryptography. That is only when the user’s

attributes gratify the access policy defined in

the cipher text; the utilizer is able to decrypt

the cipher text [7]. Thus, users with different

attributes can decrypt different number of

content keys plus thus receive unlike

granularities of information from the same

information.

4. EXPERIMENTAL RESULT

Fig:-2 User Registration with Attributes

Fig:-3 User Login

Fig:-4 File Upload

(5)

P a g e | 103

5. CONCLUSION

This revocable multi-ascendancy CPABE

scheme with Verifiable outsourced

decryption and proved that it is secure and

verifiable .The revocable multi-ascendancy

CPABE is a efficient technique, which can

be applied in any remote storage systems

and online gregarious networks etc.This

survey expounds a revocable

multi-ascendancy CP-ABE scheme that can fortify

efficient attribute revocation. Then the

efficacious information access control

scheme for multi-ascendancy cloud storage

systems is proposed [8]. It eliminates

Decryption overhead for users according to

attributes .This secure attribute predicated

cryptographic technique for robust

information security that’s being shared in

the cloud.

6. REFERENCES

[1] M. Chase and S.S.M. Chow, ‘‘Improving Privacy and Securityin Multi-Authority Attribute-Based Encryption,’’ in Proc.

16thACM Conf. Computer and Comm.

Security (CCS’09), 2009, pp. 121-130.

[2] A.B. Lewko and B. Waters,

‘‘Decentralizing

Attribute-BasedEncryption,’’ in Proc. Advances in

Cryptology-EUROCRYPT’11,2011, pp.

568-588.

[3] S. Yu, C. Wang, K. Ren, and W. Lou, ‘‘Attribute Based InformationSharing with Attribute Revocation,’’ in Proc. 5th ACM

Symp.Information, Computer and Comm. Security (ASIACCS’10), 2010,pp. 261-270. [4] M. Li, S. Yu, Y. Zheng, K. Ren, andW. Lou, ‘‘Scalable and SecureSharing of

Personal Health Records in Cloud

Computing UsingAttribute-Based

Encryption,’’ IEEE Trans. Parallel

DistributedSystems, vol. 24, no. 1, pp. 131-143, Jan. 2013.

[5] J. Hur and D.K. Noh, ‘‘Attribute-Based Access Control withEfficient Revocation in

Information Outsourcing Systems,’’

IEEETrans. Parallel Distributed Systems, vol. 22, no. 7, pp. 1214-1221,

July 2011.

[6] S. Jahid, P. Mittal, and N. Borisov, ‘‘Easier: Encryption-BasedAccess Control

in Social Networks with Efficient

Revocation,’’ inProc. 6th ACM Symp.

Information, Computer and Comm.

Security(ASIACCS’11), 2011, pp. 411-415. [7] S. Ruj, A. Nayak, and I. Stojmenovic, ‘‘DACC: Distributed AccessControl in Clouds,’’ in Proc. 10th IEEE Int’l Conf. TrustCom, 2011,pp. 91-98.

[8] K. Yang and X. Jia, ‘‘Attribute-Based Access Control forMulti-Authority Systems in Cloud Storage,’’ in Proc. 32th IEEEInt’l Conf. Distributed Computing Systems (ICDCS’12), 2012,pp. 1-10.

[9] D. Boneh and M.K. Franklin, ‘‘Identity-Based Encryption fromthe Weil Pairing,’’ in

Proc. 21st Ann. Int’l Cryptology

Conf.:Advances in Cryptology -

CRYPTO’01, 2001, pp. 213-229.

[10] A.B. Lewko and B. Waters, ‘‘New

Proof Methods for Attribute-Based

Encryption: Achieving Full Security through SelectiveTechniques,’’ in Proc. 32st Ann.

Int’l Cryptology Conf.: Advances

References

Download now ( PDF - 5 Page - 567.37 KB )

Related documents

Report of a Rare Case of Epitheliod Hemangioendothelioma in Tongue

Histopathological examination of hematoxylin and eosin stained soft tissue sections revealed an unen- capsulated tissue mass showed diffuse proliferation of neoplastic

A survey of time consistency of dynamic risk measures and dynamic performance measures in discrete time: LM-measure perspective

(2005) study dynamic coherent risk measures (for the case of random variables on finite probability space and discrete time) and introduce the notion of (strong) time consistency;

Testing for unit roots in autoregressive moving average models: An instrumental variable approach

In this paper we have proposed a test for a unit root in autoregressive moving average time series models based on an instrumental variable estimator. The main advantage of

Robust biometric-based user authentication scheme for wireless sensor networks

However, Yuan et al.’s scheme cannot withstand denial-of-service attacks, insider attacks, user impersonation attacks, gateway node impersonation attacks and sensor node

Search | Preprints

Wang, D.; Zhang, X.; Liu, C.; Cheng, T.; Wei, W.; Sun, Y.; Transition metal-modified mesoporous Mg-Al mixed oxides: Stable base catalysts for the synthesis of diethyl carbonate

Statistical Epistasis Is a Generic Feature of Gene Regulatory Networks

F igure 3.—The statistical genetic signature of the biological interactions in motifs 1 and 10 as the proportion of genetic var- iance explained by marginal (additive and

Renal Insulin Sensitizing Effect of Exenatide in a High-fat Diet Obesity Rat Model

Photo-microphotograp of immunohistochemical staining of insulin receptor B of renal tissue of control lean groups (A) showing strong diffuse cytoplasmic reaction, non-treated