Abstract

In public cloud storage systems, the confidentiality of sensitive data remains the most important issue. Cryptography is a promising approach for addressing this issue. In this paper, we introduce the CS-IBE design based upon ID-based encryption, that aims to strengthen the sensitive data confidentiality in public cloud storage. The CS-IBE design associates files with at least one file access policies, namely the user identity (ID) that will be used as the encryption key. Files are encrypted with the user identity key before outsourcing them to cloud storage side which will add a security layer to the outsourced data. Furthermore, CS-IBE works as an overlay system atop cloud storage solutions. In order to evaluate its security and efficiency, a CS-IBE’s prototype design is implemented and analyzed. The obtained results give insights into the provided confidentiality regarding the trade-off performance while simplifying the processes of keys management. The statistical study showed that the overhead cost-time of the proposed design is insignificant especially for large file sizes.