DOI 10.4010/2016.

967
ISSN 2321 3361 2016 IJESC

Research Article Volume 6 Issue No. 4

Decentralized Access Control and Anonymous Authentication of

Data Stored in Clouds
Vaibhav Hindole1, Amey Agnihotri2, Kuber Vishwas3, Dhruv Mishra4, Ashish Neeraj Dhaarkar 5
Department of Computer Engineering
Akurdi, Pune, India

Abstract:
We propose another decentralized access control plan in order to secure information stockpiling in mists that backings unknown
verification. In the proposed plan, the cloud will be able to confirm the arrangement's credibility without knowing the client's
character before putting away information. Our plan additionally has the included element of access control in which just
substantial clients have the capacity to decode the put away data. The plan averts replay assaults and backings creation,
adjustment, and perusing information put away in the cloud. We additionally address client denial. In addition, our confirmation
and access control plan is decentralized and vigorous as well as robust, not at all like different access control plans intended for
mists which are brought together. The correspondence, calculation, and capacity overheads are tantamount to incorporated
approaches.

Keywords: Access control , Key distribution system , Authentication , Attribute based encryption.

I. INTRODUCTION Searchable encryption:

RESEARCH in cloud computing is receiving a lot of
attention from both academic world,business world
industrial worlds. In cloud computing, users can outsource
their computation and storage to servers (also called clouds)
using Internet. This frees users from the hassles of
maintaining resources on-site. Clouds can provide several
types of services like applications and platforms to help
developers write applications . Much of the data stored in
clouds is highly sensitive, for example, medical records and
social networks. Security and privacy are, thus, very
important issues in cloud computing. In one hand, the user
should authenticate itself before initiating any transaction,
and on the other hand, it must be ensured that the cloud does
not tamper with the data that is outsourced. User privacy is
also required so that the cloud or other users do not know
the identity of the user. The cloud can hold the user
accountable for the data it outsources, and likewise, the
cloud is itself accountable for the services it provides. The
validity of the user who stores the data is also verified.
Apart from the technical solutions to ensure security and
privacy, there is also a need for law enforcement.
The technologies being used are highlighted as follows:
OwnCloud:
OwnCloud is a suite of client-server software for
creating file hosting services and using them. OwnCloud is
functionally very similar to the widely used Dropbox, with
the primary functional difference being that OwnCloud is
free and open-source, and thereby allowing anyone to install
and operate it without charge on a private server, with no
limits on storage space except for disk capacity or the
number of connected clients. Features of OwnCloud being
used are listed below.
Encryption of User Files.
File storage in conventional directory structures.
Sharing of content across groups or users.
User and Group administration.
Connecting External Storages.
Searchable encryption allows a party to outsource the
data in a private manner, while maintaining the ability to
selectively search over it. In the process of searching on
private-key-encrypted data, the user himself encrypts the
data, so he can organize it in an arbitrary way before
encryption and include additional data structures to allow
for efficient access of relevant data. The data and the
additional data structures can then be encrypted and stored
on the server so that only someone with the private key can
access it. In this setting, theinitial work for the user is at
least as large as the data, but subsequent work of accessing
the Data is very small relative to the size of the data for both
the user and the server.
II. LITERATURE REVIEW
1) Privacy Preserving Access Control with Authentication
for Securing Data in Clouds:
We propose a new privacy preserving authenticated access
control scheme for securing data in clouds. In the proposed
scheme, the cloud verifies the authenticity of the user
without knowing the users identity before storing
information. Our scheme also has the added feature of
access control in which only valid users are able to decrypt
the stored information. The scheme prevents replay attacks
and supports creation, modification, and reading data stored
in the cloud. Moreover, our authentication and access
control scheme is decentralized and robust, unlike other
access control schemes designed for clouds which are
centralized. The communication, computation, and storage
overheads are comparable to centralized approaches.
2) Toward Secure and Dependable Storage Services in
Cloud Computing:
Cloud storage enables users to remotely store their data and
enjoy the on-demand high quality cloud applications
without the burden of local hardware and software
management. Though the benefits are clear, such a service
is also relinquishing users physical possession of their
outsourced data, which inevitably poses new security risks

International Journal of Engineering Science and Computing, April 2016 4216 http://ijesc.org/
data in cloud. In order to address this new problem and
further achieve a secure and dependable cloud storage
service, we propose in this paper flexible distributed storage
integrity auditing mechanism, utilizing the homomorphism
token and distributed erasure-coded data. The proposed
design allows users to audit the cloud storage with very
lightweight communication and computation cost. The
auditing result not only ensures strong cloud storage
correctness guarantee, but also simultaneously achieves fast
data error localization, i.e. the identification of misbehaving
server. Considering the cloud data are dynamic in nature,
the proposed design further supports secure and efficient
dynamic operations on outsourced data, including block
modification, deletion, and append. Analysis shows the
proposed scheme is highly efficient
III. SYSTEM ARCHITECTURE
This architecture for encrypted cloud data includes
following components: Data Owner, Data User, Cloud
Storage or Server.
A. Data Owner
Data owner extract keyword from data collection. He also
construct search-able encrypted index from the data
collection, then he encrypt all files and send both encrypted
index and file to cloud server.
B. Data User
User requests in the form of keywords to the cloud server.
C. Cloud Server
Receives the request from user and then send the
corresponding encrypted files to the user as response.
Fig 1 Cloud storage model
IV. PROPOSED SYSTEM
This system combine the idea about the Decentralized
access control and the authentication techniques which is
considered as anonymous. Such proposed system is quite
unique and it helps to overcome the disadvantages of
security achieved by the cryptographic techniques or
encryption techniques. As we know that encryption or
cryptography greatly reduces the usabilty of cloud.
International Journal of Engineering Science and Computing, April 2016
ALGORITHM :
Initial Phase:
1. Firstly user done registration by using initial name
final name phone no. etc.
2. After registration, user log in by using user name
and password.
3. By using KDC owner decide which user can
authenticate the cloud.
Searching Phase:
1. User send the keywords to the cloud.
2. Owner calculates all possible keywords and send to
user.
3. User selects the similar words with the edit
distance.
4. User computes the hashes of selected keyword, and
send it to the cloud.
5. Cloud construct set of file IDs for each keyword.
6. Then IDs of files in the intersection set of the list of
sets from above step are returned to the user.
7. User then decrypt this IDs and retrieve the files.
V. CONCLUSION
We have exhibited a decentralized access control procedure
with unknown verification, which gives client repudiation
and anticipates replay assaults. The cloud does not know the
client's character that stores data, yet just checks the client's
certifications. Key conveyance is done in a decentralized
manner. One impediment is that the cloud knows the
entrance arrangement for every record put away in the
cloud. In future, we might want to shroud the properties and
access approach of a client.
VI. REFERENCES
[1] Hanhua Chen, HaiJin , Lei Chen, Yunhao Liu, and
Lionel M. Ni., Optimizing Bloom Filter Settings in Peer-to-
Peer Multi-keyword Searching.
IEEE Transactions On Knowledge And Data Engineering,
Vol.24, No. 4, April 2012
[2] Ning Cao, Cong Wang, Ming Li, KuiRen, and Wenjing
Lou., Privacy-Preserving Multi-Keyword Ranked Search
over Encrypted Cloud Data. IEEE Transactions On Parallel
And Distributed Systems, Vol. 25, No. 1, January 2014
[3] Muhammad Naveed, ManojPrabhakaran, Carl A. Gunter
University of Illinois at Urbana-Champaign. Dynamic
Searchable Encryption via Blind Storage.2014 IEEE
Symposium on Security and Privacy.
4217 http://ijesc.org/