期刊
IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY
卷 11, 期 3, 页码 484-497出版社
IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC
DOI: 10.1109/TIFS.2015.2493983
关键词
Fine-grained; two-factor; access control; Web services
资金
- National Natural Science Foundation of China [61472083, U1405255, 61402110]
- Fok Ying Tung Education Foundation [141065]
- Program for New Century Excellent Talents in Fujian University [JA14067]
- Distinguished Young Scholars Fund of Fujian Province, China
- State Key Laboratory of Cryptology Research Fund, China
- Natural Science Foundation of Guangdong Province for Distinguished Young Scholars [2014A030306020]
In this paper, we introduce a new fine-grained two-factor authentication (2FA) access control system for web-based cloud computing services. Specifically, in our proposed 2FA access control system, an attribute-based access control mechanism is implemented with the necessity of both a user secret key and a lightweight security device. As a user cannot access the system if they do not hold both, the mechanism can enhance the security of the system, especially in those scenarios where many users share the same computer for web-based cloud services. In addition, attribute-based control in the system also enables the cloud server to restrict the access to those users with the same set of attributes while preserving user privacy, i.e., the cloud server only knows that the user fulfills the required predicate, but has no idea on the exact identity of the user. Finally, we also carry out a simulation to demonstrate the practicability of our proposed 2FA system.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据