Paper 2017/227

Towards Shared Ownership in the Cloud

Hubert Ritzdorf, Claudio Soriente, Ghassan O. Karame, Srdjan Marinovic, Damian Gruber, and Srdjan Capkun


Cloud storage platforms promise a convenient way for users to share files and engage in collaborations, yet they require all files to have a single owner who unilaterally makes access control decisions. Existing clouds are, thus, agnostic to the notion of shared ownership. This can be a significant limitation in many collaborations because, for example, one owner can delete files and revoke access without consulting the other collaborators. In this paper, we first formally define a notion of shared ownership within a file access control model. We then propose two possible instantiations of our proposed shared ownership model. Our first solution, called Commune, relies on secure file dispersal and collusion-resistant secret sharing to ensure that all access grants in the cloud require the support of an agreed threshold of owners. As such, Commune can be used in existing clouds without modifications to the platforms. Our second solution, dubbed Comrade, leverages the blockchain technology in order to reach consensus on access control decision. Unlike Commune, Comrade requires that the cloud is able to translate access control decisions that reach consensus in the blockchain into storage access control rules, thus requiring minor modifications to existing clouds. We analyze the security of our proposals and compare/evaluate their performance through implementation integrated with Amazon S3.

Available format(s)
Publication info
Preprint. MINOR revision.
secret sharingkey management
Contact author(s)
rihubert @ inf ethz ch
2017-03-09: revised
2017-03-08: received
See all versions
Short URL
Creative Commons Attribution


      author = {Hubert Ritzdorf and Claudio Soriente and Ghassan O.  Karame and Srdjan Marinovic and Damian Gruber and Srdjan Capkun},
      title = {Towards Shared Ownership in the Cloud},
      howpublished = {Cryptology ePrint Archive, Paper 2017/227},
      year = {2017},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.