2. Outsource data backup to third-party cloud storage
services so as to reduce data management costs,
security concerns arise in terms of ensuring the
privacy and integrity of outsourced data.
FADE is a secure overlay cloud storage system that
achieves policy-based access control and file assured
deletion.
FADE is built upon a set of cryptographic key
operations that are self-maintained by a key manager
3. A file is encrypted with a data key by the owner of
the file, and this data key is further encrypted with a
control key by a separate key manager
The control key is completely removed when the
policy is revoked.
Without the control key, the data key and hence the
data file remain encrypted and are deemed to be
inaccessible
4. Multiple Policies
FADE supports a Boolean combination of multiple policies.
We mainly focus on two kinds of logical connectives
(i) the conjunction (AND), which means the data is
accessible only when every policy is satisfied;
(ii) the disjunction (OR), which means if any policy is
satisfied, then the data is accessible.
5. Implement FADE in to an application.
Uses combination of multiple access policies per file,
e.g.: time expiration, read/write permission.
6. In FADE files assuredly deleted and made
unrecoverable by anyone when their associated file
access policies are revoked.
Uses cryptographic key operations so as to achieve
policy – based file assured deletion.