By Topic

An Implementation of Object-Based Storage System Access Control Based on IBE

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

3 Author(s)
Junjian Chen ; Wuhan Nat. Lab. for Optoelectron., Huazhong Univ. of Sci. & Technol., Wuhan, China ; Dan Feng ; Jingning Liu

Object-based Storage System (OBSS) is the ideal solution to improve performance of large-scale storage systems by virtue of distributed storage architecture. However, existing OBSS adopts complex security scheme, and takes little consideration on how to reduce the overhead of storage security. Most of traditional Access Control Based on Certificate (ACBC) will generate abundant certificate, which will lend to the Meta-Data Server (MDS) overload. So we introduce Identity-Based Encryption (IBE) to the OBSS, and proposed a novel Access Control Based on IBE (ACBI). In ACBI the public key can be calculated according with their identity, and need not maintain public key certificate for each entity. Thereby ACBI can significantly reduce the overhead of certificate management. At the same time, ACBI associated the access control list (ACL) with the object, the users will not required to ask the MDS for authorization, they can directly access the storage device. The storage system depends on user's identity to authenticate user's access permission, which simplifying the access control process. The experiment results demonstrated that security overhead of ACBI on MDS is only 48.7% in comparison to ACBC. Meanwhile, ACBI made the security module load of OBSS only employ 74.5% response time compared to ACBC.

Published in:

Intelligent Information Technology and Security Informatics (IITSI), 2010 Third International Symposium on

Date of Conference:

2-4 April 2010