AN ACCESS CONTROL MECHANISM BASED ON AUTHORIZATION CERTIFICATE FOR CLOUD COMPUTING: ENSURING USER'S ANONYMITY

Abstract

ABSTRACT Access control is a mechanism used to grant or revoke access rights to or from the users. Data stored at remote server is highly confidential and must be protected from unauthorized users. Existing solutions are either too complex to implement or are not able to achieve all the required security parameters. Data is stored in cipher-text form in cloud; therefore there is a need for cipher-text based access control mechanism. The proposed algorithm uses authorization certificates to achieve access control. Data owners issue authorization certificates to the authorized users. Only the owner of certificate is given access to the data stored on remote server. Data owner can revoke access rights of data sharers any time without affecting the cipher-text. The proposed algorithm consumes minimal resources and is easy to implement.