A ciphertext policy-attribute based encryption(CP-ABE) scheme can be used to realize access control mechanism without a trusted server. We propose an attribute-based access control mechanism by incorporating a CP-ABE scheme to ensure only authorized users can access the sensitive data. The idea of CP-ABE is to include access control policy in the ciphertexts, in which they can only be decrypted if a user possesses attributes that pass through the ciphertext's access structure. In this paper, we prove a secure CP-ABE scheme where the policy can be expressed in non-monotonic access structures. We further compare the performance of our scheme with the existing CP-ABE schemes.Keywords : ciphertext-policy attribute based encryption, public key encryption, access control
Ⅰ. IntroductionAccess control is a major issue for deploying a distributed file system over an open network.Traditional user control mechanism keeps user authority in a table usually as a group or in hierarchical structure in an access control list, and then adds access control attribute to a file using a trusted server for authentication and authorization.However, this traditional approach heavily depends on security of the access control list which located in a trusted server. Once the trusted server is compromised then the access control service is also compromised.There are well known access control models so far: discretional, mandatory, role-based and more recently attribute-based [1] . Discretional access control and mandatory access control model does not exhibit flexibility for a user to control the information flow.Role-based access control model has coarser-grained access structure than attributed based access control.(2265)
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.