Remote data possession checking scheme with supporting efficient group user authority management for shared cloud data

Abstract Under the shared big data environment, the existing shared data auditing schemes rarely consider the authorization management of group users. Thus, in this paper, we propose a novel remote shared data checking possession scheme that support group authority management. To implement group user rights management, we firstly introduce a trusted entity group manager. To assist the group manager in authorization management, we formalize a new algebraic structure operator named authorization invisible authenticator (AIA). Meanwhile, we provide a basic AIA scheme for general security scenarios and a standard AIA scheme suitable for high-level security scenarios respectively. The standard AIA scheme can fully meet the needs of the group manager to safely perform rights management work. It is composed of the User Information Table (UIT) and the basic AIA scheme, which has higher security and is applicable to a wider range of scenarios. By distributing AIA through the standard AIA scheme, the group manager can easily carry out authority management, including enrolling, revoking, updating. After solving the problem of authorization management, the detailed design of the scheme based on identity-based encryption (IBE) is given. Furthermore, the security analysis and performance evaluation demonstrate that the scheme is safe and feasible.