TY - JOUR
T1 - Secured Fine-Grained Selective Access to Outsourced Cloud Data in IoT Environments
AU - Xia, Qi
AU - Sifah, Emmanuel Boateng
AU - Obour Agyekum, Kwame Opuni Boachie
AU - Xia, Hu
AU - Acheampong, Kingsley Nketia
AU - Smahi, Abla
AU - Gao, Jianbin
AU - Du, Xiaojiang
AU - Guizani, Mohsen
N1 - Publisher Copyright:
© 2014 IEEE.
PY - 2019/12
Y1 - 2019/12
N2 - With the vast increase in data transmission due to a large number of information collected by devices, data management, and security has been a challenge for organizations. Many data owners (DOs) outsource their data to cloud repositories due to several economic advantages cloud service providers present. However, DOs, after their data are outsourced, do not have complete control of the data, and therefore, external systems are incorporated to manage the data. Several kinds of research refer to the use of encryption techniques to prevent unauthorized access to data but prove to be deficient in providing suitable solutions to the problem. In this article, we propose a secure fine-grain access control system for outsourced data, which supports read and write operations to the data. We make use of an attribute-based encryption (ABE) scheme, which is regarded as a suitable scheme to achieve access control for security and privacy (confidentiality) of outsourced data. This article considers different categories of data users, and make provisions for distinct access roles and permissible actions on the outsourced data with dynamic and efficient policy updates to the corresponding ciphertext in cloud repositories. We adopt blockchain technologies to enhance traceability and visibility to enable control over outsourced data by a DO. The security analysis presented demonstrates that the security properties of the system are not compromised. Results based on extensive experiments illustrate the efficiency and scalability of our system.
AB - With the vast increase in data transmission due to a large number of information collected by devices, data management, and security has been a challenge for organizations. Many data owners (DOs) outsource their data to cloud repositories due to several economic advantages cloud service providers present. However, DOs, after their data are outsourced, do not have complete control of the data, and therefore, external systems are incorporated to manage the data. Several kinds of research refer to the use of encryption techniques to prevent unauthorized access to data but prove to be deficient in providing suitable solutions to the problem. In this article, we propose a secure fine-grain access control system for outsourced data, which supports read and write operations to the data. We make use of an attribute-based encryption (ABE) scheme, which is regarded as a suitable scheme to achieve access control for security and privacy (confidentiality) of outsourced data. This article considers different categories of data users, and make provisions for distinct access roles and permissible actions on the outsourced data with dynamic and efficient policy updates to the corresponding ciphertext in cloud repositories. We adopt blockchain technologies to enhance traceability and visibility to enable control over outsourced data by a DO. The security analysis presented demonstrates that the security properties of the system are not compromised. Results based on extensive experiments illustrate the efficiency and scalability of our system.
KW - Blockchain
KW - fine-grained access control
KW - key-policy attribute-based encryption (KP-ABE)
KW - smart contract
UR - http://www.scopus.com/inward/record.url?scp=85076792116&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85076792116&partnerID=8YFLogxK
U2 - 10.1109/JIOT.2019.2941638
DO - 10.1109/JIOT.2019.2941638
M3 - Article
AN - SCOPUS:85076792116
VL - 6
SP - 10749
EP - 10762
JO - IEEE Internet of Things Journal
JF - IEEE Internet of Things Journal
IS - 6
M1 - 8839054
ER -