| The cloud server,cloud storage get the community more and more attention, how to work more efficient by the collaboration of the resource on the cloud server, and how to ensure security and privacy of information which sensitive information stored on the public cloud service, and how can we use our information more convenient especially when the handheld devices became part of our daily live and the massive app run on it,is it can let our information to be one entry, available everywhere.In our scheme can solve the above problem to a certain extent. The data stored in the cloud server, we use the ciphertext policy attribute-based encryption(CPABE) to protect our information,while the framework of OAuth2.0 can help us to make our information safe and convenience be visited by the third party application,in this process we don’t need to expose our sensitive information(such as password).Our paper introduce the OAuth2.0 framework and some flaws stay exist in practical, and then describes the construction process by the CPABE and mathematical theory. With the use of OAuth2.0 and CPABE in the cloud server,we provide the safe and reliable storage while the convenient and secure access interface.Then, we propose our scheme, the access tree to files and we cut up the file into two parts in logic, the first part will be encrypt by the symmetric encryption algorithm, the other part which record the secret key and method will be encrypt by the CPABE, the only way can decryption is when the owner use his attribute and the client use the authorized attributes.Finally, we deployed our demo in the cloud server, fix the weak flow of the OAuth2.0 previously mentioned,through the demo,we can intuitive feel our schema can provide safe storage and easy access. |
PDF Full Text Request