TY - JOUR
T1 - AuthPrivacyChain
T2 - A Blockchain-Based Access Control Framework with Privacy Protection in Cloud
AU - Yang, Caixia
AU - Tan, Liang
AU - Shi, Na
AU - Xu, Bolei
AU - Cao, Yang
AU - Yu, Keping
N1 - Funding Information:
This work was supported in part by the National Natural Science Foundation of China under Grant 61373162, in part by the Sichuan Science and Technology Support Project under Grant 2019YFG0183, and in part by the Japan Society for the Promotion of Science (JSPS) Grants-in-Aid for Scientific Research (KAKENHI) under Grant JP18K18044.
Publisher Copyright:
© 2020 IEEE.
PY - 2020
Y1 - 2020
N2 - Cloud is a computing model that provides sharing and supports ubiquitous on-demand access computing, providing new data processing and services for many industries, significantly reducing user computing and storage costs, and improving ease of use. With the development of cloud-scale and intensification, cloud security has become an essential issue in the field of cloud computing. Access control is one of the critical security technologies for protecting sensitive data stored in the cloud by enterprises and individuals. Since the centralized access control mechanism is adopted in the cloud, the sensitive data in the cloud are easy to be tampered with or leaked by hackers or cloud internal managers. To address this issue, we propose a blockchain-based access control framework with privacy protection called AuthPrivacyChain. Firstly, we use the account address of the node in blockchain as the identity, and at the same time, redefine the access control permission of data for the cloud, which is encrypted and stored in blockchain. After that, we design processes of access control, authorization, and authorization revocation in AuthPrivacyChain. Finally, we implement AuthPrivacyChain based on enterprise operation system (EOS), and the results show that AuthPrivacyChain can not only prevent hackers and administrators from illegally accessing resources, but also protect authorized privacy.
AB - Cloud is a computing model that provides sharing and supports ubiquitous on-demand access computing, providing new data processing and services for many industries, significantly reducing user computing and storage costs, and improving ease of use. With the development of cloud-scale and intensification, cloud security has become an essential issue in the field of cloud computing. Access control is one of the critical security technologies for protecting sensitive data stored in the cloud by enterprises and individuals. Since the centralized access control mechanism is adopted in the cloud, the sensitive data in the cloud are easy to be tampered with or leaked by hackers or cloud internal managers. To address this issue, we propose a blockchain-based access control framework with privacy protection called AuthPrivacyChain. Firstly, we use the account address of the node in blockchain as the identity, and at the same time, redefine the access control permission of data for the cloud, which is encrypted and stored in blockchain. After that, we design processes of access control, authorization, and authorization revocation in AuthPrivacyChain. Finally, we implement AuthPrivacyChain based on enterprise operation system (EOS), and the results show that AuthPrivacyChain can not only prevent hackers and administrators from illegally accessing resources, but also protect authorized privacy.
KW - Cloud computing
KW - access control
KW - blockchain
KW - cloud security
KW - privacy protection
UR - http://www.scopus.com/inward/record.url?scp=85084006349&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85084006349&partnerID=8YFLogxK
U2 - 10.1109/ACCESS.2020.2985762
DO - 10.1109/ACCESS.2020.2985762
M3 - Article
AN - SCOPUS:85084006349
SN - 2169-3536
VL - 8
SP - 70604
EP - 70615
JO - IEEE Access
JF - IEEE Access
M1 - 9057456
ER -