Providing Authorized Access Control on Encrypted Data and Indirect Trust for Cloud Storage Systems

P. S. Abhilash, P. Namrata


Cloud Service Provider (CSPs)offers Storage-as-a-Service as a paid facility that enables organizations to outsource their sensitive data to be stored on remote servers. In this paper, a cloud-based storage scheme is proposed that allows the data owner to benefit from the facilities offered by the CSP and enables indirectmutual trust between them. The proposed scheme has four important features: (i) it allows the owner to outsource sensitive data to a CSP, and perform full block-level dynamic operations on the outsourced data, i.e., block modification, insertion, deletion, and append, (ii) it ensures that authorized users (i.e., those who have the right to access the owner’s file) receive the latest version of the outsourced data, (iii) it enables indirect mutual trust between the owner and the CSP, and (iv) it allows the owner to grant or revoke access to the outsourced data. The security issues of the proposed scheme has been discussed. And, its performance through theoretical analysis and a prototype implementation on Amazon cloud platform to evaluate storage, communication, and computation overheads has been justified.


Key words:Outsourcing data; access control;mutual trust; dynamic environment.

Full Text:


Copyright (c) 2016 P. S. Abhilash, P. Namrata

Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.


All published Articles are Open Access at 

Paper submission: