Access control, attribute based access control, public key encryption

The signature method used to capture a specific threat and not allow the threats to interfere with the cloud data. However, the signature method recognizes only threats that are known to its directory; this is unable to recognize the unknown threats.

The cloud-native application pattern is used for cloud data security purpose. However, designing the cloud-native application (CNA) pattern is a complex procedure that requires detailed planning and has no defined steps.

The key features of the privacy preserving and public auditing?are:

• Public auditing
• Privacy preserving
• Data Dynamics
• Batch Auditing
• Data integrity
• Data confidentiality

Access Control

Access control is a key feature for trusted security in cloud storage services. A combination of three encryptions for cloud access security can be used. Access rules can be defined based on data characteristics, and the owner of the data can assign tasks in cloud servers without opening the actual content. The data access control can also be through user attribute rules, and authentication through identity-based signature.

Models like role-based encryption is built called as “hierarchical attribute-set-based encryption (HASBE).” This model overcomes the shortcomings of attribute-based encryption (ABE) like lack of flexibility or executing complex access policies. HASBE has the ability to employ multiple values for user access management.

Attribute-Based Access Control

A method of ciphertext delegation enabling it to be “re-encrypted” and provides security in the standard ABE framework. A dynamic policy update can be implemented for big data. The access policies can be designed for minimal computation for data owners, use of old data and access policies, algorithmic update of policies, and check mechanism for update of ciphertexts. “Ciphertext-policy attribute-based proxy re-encryption (CP-ABPRE)” can support the attribute-based re-encryption.

Public key encryption (PKE) verifies whether two ciphertexts are encryptions of an identical message. The applications where PKE is useful are searchable encryption and encrypted data partitioning.

There are many data security concepts on cloud servers such as schemes, protocols, algorithms, access policies, storage scenarios, access services, and a third-party auditor.

A comparison of different models of data integrity and security models can be done based on common features, public auditing, privacy preserving, data dynamic, batch auditing, data integrity, and data confidentiality; since there are no specific guidelines yet.