Efficient dynamic access control method and system for cloud encrypted data

• Main Authors: MIAO FUYOU, WANG RUIKAI, WANG XINYAN, YUN YAJIE, YU YUE
• Format: Patent
• Language: Chinese; English
• Published: 21.10.2022
• Subjects: ELECTRIC COMMUNICATION TECHNIQUE; ELECTRICITY; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION

The invention relates to an efficient dynamic access control method and system for cloud encrypted data, and the method comprises the steps: respectively storing control data and file data in a re-encryption agent and a cloud, enabling a user to obtain a decryption key of a file through a user private key for the encrypted data stored in the cloud, and transmitting the decryption key to the cloud; and decrypting by using the decryption key to obtain the content of the data file, thereby realizing operations of user creation, user deletion, file creation, file deletion, role creation, role deletion, role binding, role unbinding, file empowerment, file de-empowerment, file reading and file modification. The method provided by the invention is good in data confidentiality, high in storage efficiency and operation efficiency and flexible in deployment. 本发明涉及一种面向云端加密数据的高效动态访问控制方法及系统，其方法包括：在重加密代理和云端分别存储控制数据和文件数据，对于存储在云端的加密数据，用户可以通过用户私钥得到文件的解密密钥，进而使用解密密钥解密得到数据文件内容，从而实现创建用户、删除用户、创建文件、删除文件、创建角色、删除角色、角色绑定、角色解绑、文件赋权、文件除