Skip to Main Content
In Storage-as-a-Services application,data owner delegates access control enforcement to external storage service privider while storing his data at it so as to free him from much involvement in users' query process. But the delegation of access control enforcement may cause privacy problem since the storage service privider may learn “who is granted access to the data” from access control policies and the indentities of the users who request the data. A privacy-preserving access control mechanism is proposed to solve this problem and its security is analyzed. The security analysis shows that the proposed mechanism guarantees secure access to outsourced data while preserving privacy of access control policies and users' IDs.