The invention discloses a government services cloud
access control method based on attribute
encryption. A
central authority determines all attributes of a
system, permits or revokes
attribute authority management authority, and authenticates administrative staff; an
attribute authority receives the login of administrative staff in the jurisdiction thereof and is simultaneously responsible for attribute
revocation of the administrative staff; a
cloud server stores data and carries out semi-decryption on an encrypted file when a user sends out a
data request; a data uploader makes an
access control strategy according to the
security level of the file, and encrypts and uploads the file after name signing; and an access user sends out a
data access request and finally decrypts the encrypted file. By adopting the attribute
encryption scheme, the loads caused by user attribute
revocation and encrypted file updating are reduced, the
trap door information capturing of the user is controlled, and attribute
revocation is carried out on the user under the condition that the encrypted file is not changed; in addition, by utilizing the name signing and attribute
encryption scheme based on the identity, the safety authority of the user and fine-grained
access control are realized.