A Privacy-Aware and Time-Limited Data Access Control Scheme with Large Universe and Public Traceability for Cloud-Based IoD

Recently, the rapid development of Internet of things (IoT) and 5G techniques has greatly facilitated the emerging applications of Unmanned Aerial Vehicles (UAVs) and the Internet of Drones (IoD). Moreover, Cloud-based IoD supplies an ideal platform for UAV data outsourcing and sharing services to lower their heavy burden. As UAV data are of high sensitivity, the convincing Ciphertext-Policy Attribute-Based Encryption (CP-ABE) can be employed to provide confidentiality and fine-grained access control for UAV data shared in cloud. However, the access policies related to encrypted UAV data usually consist of much sensitive and private information. Meanwhile, there exist misbehaving insiders of UAV data consumers that conduct unlimited access to disable UAV data sharing services, which is disastrous. Besides, the high computation overhead also extremely hinders resource-limited users in IoD. To seek a solution, we propose a privacy-aware and time-limited data access control (PATLDAC) scheme for secure UAV data sharing in Cloud-based IoD. Specifically, PATLDAC achieves user privacy preserving through partially hidden access policy which conceals the values of attributes while leaves their names with no sensitive information. Moreover, PATLDAC provide public user tracing to prevent user key abuse and limits the access time for each data user to guarantee service provision. In addition, PATLDAC realizes high efficiency in both encryption and decryption. Finally, the performance complexity evaluation indicate that PATLDAC is suitable and feasible for IoD systems.