With the arrival of the era of big data, data has become a kind of important assets. In order to get a better utilization of big data, paid or unpaid data sharing will be a trend. And as one of key techniques to maintain security of data sharing, access control will play an important role in cloud storage services. This paper proposes an access control method for revocation of user rights in cloud storage services. Revoking user rights includes two aspects: revoking users and revoking attributes. The model presented in this paper is composed of attribute authority (AA), data owner (DO), user and cloud server. The key components of each part are generated by AA and DO, thus avoiding the joint attack between the user and AA. Then, the security of the scheme is analyzed by using Decisional Bilinear Diffie-Hellman (DBDH) theory. Experiments show that the scheme can effectively revoke user rights. Compared with other schemes, the proposed scheme has higher efficiency in terms of computation cost and communication cost. The research results have certain theoretical and practical significance.

• 出版日期2018
• 单位华南理工大学; 西南大学