A Survey on Access Control Scheme for Data in Cloud with Anonymous Authentication

International Research Journal of Engineering and Technology (IRJET) e-ISSN: 2395 -0056
Volume: 03 Issue: 02 | Feb-2016 www.irjet.net p-ISSN: 2395-0072
© 2016, IRJET | Impact Factor value: 4.45 | ISO 9001:2008 Certified Journal | Page 1170
A Survey on Access Control Scheme for Data in Cloud
with Anonymous Authentication
Rachana Jadhav1, Aparna Bharate2, Shital Gavahane3, Pratima Kumari4, Prof A J Jadhav5
1234Student, Information Technology, R.S.C.O.E, Maharashtra, India
5Asso. Prof, Information Technology, R.S.C.O.E, Maharashtra, India
--------------------------------------------------------------------------------------------------------------------------------------------------
Abstract - They propose another decentralized
access control plan for secure information
stockpiling in mists that backings unknown
verification. In the proposed plan, the cloud
confirms the realness of the arrangement without
knowing the client's character before putting away
information. Our plan additionally has the included
element of access control in which just legitimate
clients have the capacity to decode the put away
data. The plan forestalls replay assaults and bolsters
creation, change, and perusing information put away
in the cloud. We additionally address client
repudiation. Besides, our validation and access
control plan is decentralized and powerful, not at all
like different access control plans intended for mists
which are brought together. The correspondence,
calculation, and capacity overheads are similar to
brought together approaches.
Keywords - Access control mechanism,
Authentication, attribute-based encryption, cloud
Computing, Third Party Auditor, Key distribution
centre.
1. INTRODUCTION
Distributed computing, otherwise called on-
interest processing, is a sort of Internet-based
figuring, where shared assets, information and data
are given to PCs and different gadgets on-interest.
It is a model for empowering universal, on-interest
access to a mutual pool of configurable processing
assets. Distributed computing and stockpiling
arrangements furnish clients and undertakings
with different abilities to store and process their
information in outsider server farms. It depends on
sharing of assets to accomplish cognizance and
economies of scale, like an utility (like the power
lattice) over a system. At the establishment of
distributed computing is the more extensive idea of
met foundation and shared administrations.
Cloud is used in many applications like in
medical and social networks were the data stored
in cloud is highly sensitive. The important key
factor is security and Privacy. The most important
concern in cloud is encrypted data. The cloud must
return the records and satisfy the query, regards
unknowing the exact query which can be achieved
by searchable encryption.
The Attribute-Based Signatures (ABS), a flexible
primitive that permits a gathering to sign a
message with fine-grained control over recognizing
data. In ABS, an sponsor, who has an arrangement
of characteristics from the power, can sign a
message with a predicate that is fulfilled by his
characteristics. The mark uncovers close to the way
that a solitary client with some arrangement of
traits fulfilling the predicate has confirmed the
message. Specifically, the mark shrouds the credits
used to fulfill the predicate and any distinguishing
data about the underwriter (that could interface
numerous marks as being from the same endorser).
Moreover, clients can't conspire to pool their
qualities together.
2. LITERATURE SURVEY
Cloud computing [1] permits the original of
information outsourcing. Therefore to shield

information privacy, delicate information must be
encrypted before they're outsourced to the financial
cloud that creates the effective information
utilization service a difficult task. Albeit searchable
cryptography technique permits users to firmly
search over encrypted information through
keywords, they support solely Boolean search.
They’re not however decent to satisfy {the
information the info the information} utilization
effectively as a result of theirs innately demanded by
sizable amount of users and data files placed in
cloud. Therefore it's necessary to permit multiple
keywords within the search request and come back
documents within the order of their connation to the
keywords. The Boolean keyword search technique
solely produces the unsorted result. An efficient
methodology projected for this difficult drawback is
privacy protective search over encrypted cloud
information. This methodology establishes a group
of privacy necessities for secure cloud information
utilization system through cacophonic the cloud
information and storing the chunk information in
several servers when the information has been
encrypted and outsourced by the information
owner. Among totally different multi-keyword
sociology, this methodology chooses the economical
similarity live of “coordinate matching” for looking
technique. Then in line with prime K question
methodology the sorted results area unit created.
Much of the information [2] keep in clouds is
extremely sensitive, for instance, medical records
and social networks. Security and privacy are, thus,
vital problems in cloud computing. In one hand, the
user ought to manifest itself before initiating any
group action, and on the opposite hand, it should be
ensured that the cloud doesn't tamper with the
information that's outsourced. User privacy is
additionally needed so the cloud or different users
don't apprehend the identity of the user. We
propose a replacement decentralized access
management theme for secure information storage
in clouds that supports anonymous authentication.
Within the planned theme, the cloud verifies the
believability of the series while not knowing the
user’s identity before storing information. Our
theme additionally has the further feature of access
management within which solely valid users are
able to decode the keep info. The theme prevents
replay attacks and supports creation, modification,
and reading information keep within the cloud. We
have a tendency to additionally address user
revocation. Moreover, our authentication and access
management theme is decentralized and strong, not
like different access management schemes designed
for clouds that are centralized. The communication,
computation, and storage overheads are equivalent
to centralized approaches.
Cloud computing is that the technology [3] that
permits getting resources like therefore services,
software, hardware over the web. With cloud
storage users will store their knowledge remotely
and luxuriate in on-demand services and application
from the configurable resources. The cloud
knowledge storage has several edges over native
knowledge storage. . Users ought to be ready to
simply use the cloud storage as if it's native, without
fear regarding the necessity to verify its integrity.
The matter is that guaranteeing knowledge security
and integrity of information of user. So here, we are
having public audit ability for cloud storage that
users will resort to a third-party auditor (TPA) to
ascertain the integrity of information. Here, this
paper provides the varied problems associated with
privacy whereas storing the user’s knowledge to the
cloud storage throughout the TPA auditing. While
not applicable security and privacy solutions
designed for clouds this computing paradigm might
become a giant failure. We have a tendency to be a
giving privacy-preserving public auditing
mistreatment ring signature method for secure
cloud storage system. During this paper we have a
tendency to be aiming to analyze numerous
techniques to unravel these problems and to supply
the privacy and security to the info in cloud.
In this paper [4] the Property based encryption
(ABE) is another vision for open key encryption that
permits clients to encode and decode messages in
light of client qualities. For instance, a client can

make a ciphertext that can be decoded just by
different clients with properties fulfilling ("Faculty"
OR ("PhD Student" AND "Quals Completed")). Given
its expressiveness, ABE is at present being
considered for numerous distributed storage and
registering applications. On the other hand, one of
the fundamental effectiveness disadvantages of ABE
is that the span of the ciphertext and the time
required to unscramble it develops with the many-
sided quality of the entrance recipe. In this work, we
propose another worldview for ABE that to a great
extent wipes out this overhead for clients. Assume
that ABE cipher texts are put away in the cloud. We
demonstrate how a client can furnish the cloud with
a solitary change key that permits the cloud to
interpret any ABE ciphertext fulfilled by that client's
characteristics into a (consistent size) El Gamal-style
ciphertext, without the cloud having the capacity to
perused any piece of the client's messages. To
correctly characterize and show the upsides of this
methodology, we give new security definitions to
both CPA and replay able CCA security with
outsourcing, a few new developments, a usage of our
calculations and point by point execution
estimations. In a ordinary arrangement, the client
spares altogether on both transmission capacity and
unscrambling time, without expanding the number
of transmissions.
In this paper [5] Information access control is a
viable approach to guarantee the information
security in the cloud. Then again, because of
information outsourcing also, untrusted cloud
servers, the information access control gets to be a
testing issue in distributed storage frameworks.
Existing access control plans are no more
appropriate to distributed storage frameworks,
since they either create different scrambled
duplicates of the same information or require a
completely trusted cloud server. Ciphertext-Policy
Trait based Encryption (CP-ABE) is a promising
strategy for access control of scrambled information.
It requires a trusted power deals with every one of
the traits and circulates keys in the framework. In
distributed storage frameworks, there are various
powers exist together and every power can issue
qualities freely. Nonetheless, existing CP-ABE plans
can't be specifically connected to the entrance
control for multi-power distributed storage
frameworks, because of the wastefulness of
unscrambling and renouncement. In this paper, we
propose DAC-MACS (Data Access Control for Multi-
Authority Cloud Storage), a viable and secure
information access control plan with effective
decoding and disavowal. In particular, we build
another multi-power CP-ABE plan with proficient
unscrambling furthermore plan an effective
characteristic renouncement strategy that can
accomplish both forward security and in reverse
security. The investigation and the recreation
results appear that our DAC-MACS is exceedingly
effective and provably secure under the security
model.
As Cloud Computing become current [6], a lot of
and a lot of sensitive information square measure
being centralized into the cloud. Though ancient
searchable encryption schemes enable a user to
firmly search over encrypted knowledge through
keywords and by selection retrieve files of interest,
these techniques support solely exact keyword
search. During this paper, for the primary time we
tend to formalize and solve the problem of effective
fuzzy keyword search over encrypted cloud
knowledge whereas maintaining keyword privacy.
Fuzzy keyword search greatly enhances system
usability by returning the matching files once users’
looking inputs precisely match the predefined
keywords or the nearest attainable matching files
supported keyword similarity linguistics, once
actual match fails. In our answer, we exploit edit
distance to quantify keywords similarity and
develop 2 advanced techniques on constructing
fuzzy keyword sets that deliver the goods optimized
storage and illustration overheads. We tend to more
propose a fresh symbol-based tire-traverse looking
theme, wherever a multi-way tree structure is
constructed up victimization symbols remodeled
from the resulted fuzzy keyword sets. Through
rigorous security analysis, we tend to show that our

projected answer is secure and privacy preserving,
while properly realizing the goal of fuzzy keyword
search. Extensive experimental results demonstrate
the potency of the projected answer.
3. ARCHITECTURE VIEW
Figure1: Example diagram for data sharing with
cloud storage
Figure2: System Architecture.
4. CONCLUSION
The decentralized access control technique with
anonymous authentication, which prevents replay attacks
and stores data securely at cloud server. The cloud does
not know the identity of the user who stores information,
but only verifies the user as credentials. Key distribution is
done in a decentralized way. Third Party Auditor is used to
reduce the burden of user from auditing or Integrity
checking techniques which don’t know about the keys and
original data or encrypted data uploaded by user at cloud
server. Third Party Auditor also performs the task of Batch
Auditing. One limitation is that the cloud knows the access
policy for each record stored in the cloud. In Future, More
attributes can be selected to provide more complex access
structure. In this system if new file with same filename
is uploaded old file gets overwrite so we can check the
Duplication of data before storing the new copy.
REFERENCES
[1] S Preethi, V Shanmugavalli, H Kezia “Privacy
Conserving in Cloud Documents Over Cloud Server
with Efficient mrse”.
[2] Hemalata, V. Balaji, P. Nirupam, “Anonymous
Authentication for Decentralized Access Control of
Cloud data”
[3] Salve Bhagyashri1, Prof. Y.B. Gurav “A Privacy-
Preserving Techniques for Secure Cloud Storage”
[4] R. Vishnu Sekhar, N. Nandini, D. Bhanumathy, M.
Hemalatha “Identity Based Authentication for Data
Stored in Cloud”.
[5] S. Ruj, M. Stojmenovic, and A. Nayak, “Privacy
Preserving Access Control with Authentication for
Securing Data in Clouds,” Proc.IEEE/ACM Int’l Symp.
Cluster, Cloud and Grid Computing, pp. 556- 563,
2012.
[6] J. Li, Q. Wang, C. Wang, N. Cao, K. Ren, and W.
Lou, “Fuzzy Keyword Search Over Encrypted Data in
Cloud Computing,” Proc. IEEE INFOCOM, pp. 441-
445, 2010.

A Survey on Access Control Scheme for Data in Cloud with Anonymous Authentication

Recommended

More Related Content

What's hot (19)

Similar to A Survey on Access Control Scheme for Data in Cloud with Anonymous Authentication (20)

More from IRJET Journal (20)

Recently uploaded (20)

A Survey on Access Control Scheme for Data in Cloud with Anonymous Authentication