The invention belongs to the technical field of cloud storage services, and provides an outsourcing access control system for fog computing and an access control method thereof. The method comprises: a key authorization center receiving a user registration, and generating a system parameter and generating a key for each user; a data owner defining an access structure tree associated with a ciphertext, generating a ciphertext not associated with the access structure tree, and sending the same to a fog node; the fog node generating a ciphertext associated with the access structure tree, and integrating and uploading all ciphertexts to a cloud service provider for storage; and a user accessing, via the fog node, a ciphertext stored in the cloud service provider, and decrypting the ciphertext to recover a plaintext when an attribute set of the user satisfies the access structure tree embedded in the ciphertext. The technical solution provided in the invention can greatly reduce the computational burden on a data owner, and a user can achieve decryption by executing only a bilinear pairing operation and two multiplication operations, thereby greatly reducing the computational burden on the user.
展开▼
