RAAC: Robust and Auditable Access Control with Multiple Attribute Authorities for Public Cloud Storage

0
906
RAAC: Robust and Auditable Access Control with Multiple Attribute Authorities for Public Cloud Storage

RAAC: Robust and Auditable Access Control with Multiple Attribute
Authorities for Public Cloud Storage

Abstract

Control of data access is a challenging issue in public cloud storage systems. RAAC: Robust and Auditable Access Control with Multiple Attribute Authorities for Public Cloud Storage Users may be stuck for a long time in the waiting queue to get their secret keys, resulting in the system’s low efficiency.

RAAC: Robust and Auditable Access Control with Multiple Attribute Authorities for Public Cloud Storage Although multi-authority access control schemes have been proposed, these schemes still can not overcome the disadvantages of single-point bottleneck and low efficiency due to the fact that each authority still manages a disjoint attribute set independently.

Advantages

  • To address the single-point performance bottleneck of key distribution existed in the existing schemes, we propose a robust and efficient heterogeneous framework with single CA(Central Authority) and multiple AAs (Attribute Authorities) for public cloud storage.
  • We reconstruct the CP-ABE scheme to fit our proposed framework and propose a robust and high-efficient access control scheme, meanwhile the scheme still preserves the fine granularity, flexibility and security features of CPABE.
  • Our scheme includes an auditing mechanism that helps the system trace an AA’s misbehavior on user’s legitimacy verification.
 

Disadvantages

  • Since there is only one authority in charge of all attributes in single-authority schemes, offline/crash of this authority makes all secret key requests unavailable during that period. The similar problem exists in multi-authority schemes, since each of multiple authorities manages a disjoint attribute set.
  • The inefficiency of the authority’s service results in single-point performance bottleneck, which will cause system congestion such that users often cannot obtain their secret keys quickly, and have to wait in the system queue. This will significantly reduce the satisfaction of users experience to enjoy real-time services.

System Configuration

H/W System Configuration
Speed                   : 1.1 GHz
 
RAM                      : 256 MB(min)
 
Hard Disk              : 20 GB
 
Floppy Drive          : 1.44 MB
 
Key Board             : Standard Windows Keyboard
 
Mouse                  : Two or Three Button Mouse
 
Monitor                : SVGA
 
S/W System Configuration
 
 
Platform                     :  cloud computing

 
Operating system       : Windows Xp,7,
 
Server                       : WAMP/Apache
 
Working on                : Browser Like Firefox, IE

Conclusion

In this paper, we proposed a new framework, named RAAC, to eliminate the single-point performance bottleneck of the existing CP-ABE schemes. We also proposed an auditing method to trace the potential misbehavior of an attribute authority. To verify that our scheme is safe and efficient, we conducted detailed security and performance analysis. The security analysis shows that our scheme can resist individual and colluded malicious users, as well as honest but curious cloud servers, effectively.