Final Document

Improving security and privacy attribute-based data sharing in cloud computing
ABSTRACT
Data sharing is a convenient and economic service supplied by cloud computing. Data
contents privacy also emerges formic since the data is outsourced to some cloud servers. To
protect the valuable and sensitive information, various techniques are used to enhance
access control on the shared data. In these techniques, Cipher text-policy attribute-based
encryption (CP-ABE) can make it more convenient and secure.
Traditional CP-ABE focuses on data confidentiality merely, while the user’s personal privacy
protection is an important issue at present. CP-ABE with hidden access policy ensures data
confidentiality and guarantees that user’s privacy is not revealed as well. However, most of
the existing schemes are inefficient in communication overhead and computation cost.
Moreover, most of those works take no consideration about authority verification or the
problem of privacy leakage in authority verification phase.
To tackle the problems mentioned above, a privacy preserving CP-ABE scheme with efficient
authority verification is introduced in this paper. Additionally, the secret keys of it achieve
constant size. Meanwhile, the proposed scheme achieves the selective security under the
decisional n-BDHE problem and decisional linear assumption. The computational results
confirm the merits of the presented scheme.
MRCE Department of ITE 1

TABLE OF CONTENTS
CERTIFICATE II
DECLARATION III
ACKNOWLEDGEMENT IV
ABSTRACT 1
TABLE OF CONTENTS 2-3
LIST OF FIGURES 4
LIST OF SCREEN SHOTS 5
LIST OF ABBREVIATIONS 6
CHAPTER 1: INTRODUCTION 8
1.1 Introduction 9-10
CHAPTER 2: LITERATURE SURVEY 11
2.1 Literature survey 12
CHAPTER 3: SYSTEM ANALYSIS 13
3.1 Existing system 14
3.2 Drawbacks 14
3.3 Proposed system 14-15
3.4 Advantages 15
3.5 System Requirements 15-16
3.6 Feasibility study 16-17
CHAPTER 4: SYSTEM DESIGN 18
4.1 System architecture 19-21
4.2 Modules 21-22
4.3 UML Diagrams 23-27
CHAPTER 5: SYSTEM IMPLEMENTATION 28
5.1 Java (Programming language) 29-35
5.2 Hypertext Markup Language (HTML) 35-37
5.3 Java Database Connectivity (JDBC) 37-38
5.4 MySQL- Back end 38-40
5.5 Java Server Pages (JSP) 40-41
5.6 Servlets- Front end 41-42
5.7 Source code 42-52
CHAPTER 6: TESTING 53
6.1 Testing 54-60

CHAPTER 7: RESULTS 61
7.1 Screenshots 62
CHAPTER 8: CONCLUSION 67
8.1 Conclusion 68
CHAPTER 9: FUTURE ENHANCEMENTS 69
9.1 Future enhancements 70
REFERENCES 71-73

LIST OF FIGURES
Figure No Name of the Figure Page No.

1. System architecture of the model 20
2. Dataflow Diagram 21
3. Use case Diagram 23-24
4. Sequence Diagram 24
5. State chart Diagram 25
6. Collaboration Diagram 25
7. Activity Diagram 26
8. Component Diagram 26
9. Deployment Diagram 27
10. Class Diagram 27
11. Java Platform 32
12. The API and Java Virtual Machine 33
13. JDBC two tier model 38
14. JDBC three tier model 39
15. Tomcat 6.0 web server 42

LIST OF SCREEN SHOTS
Figure No Name of Screenshot Page No.
16. Home Page 62

17. Authority Center 62
18. Owner Registration 63
19. Cloud server Login 64
20. Permission From Users 64
21. View SK Permission and download 64
22. Permission for patient view 65
23. View all owners and authorise 65
24. View patient details 65
25. View all SK permissions and download 66

LIST OF ABBREVIATIONS
S. No Short Form Full Form
1. HTTP Hyper Text Transfer Protocol

2. ABE Attribute based encryption
3. SDK Software Development Kit
4. JRE Java Runtime Environment
5. JSP Java Server Pages
6. ASP Active Server Pages
7. JWS Java Web Server
8. JSDK Java Servlet Development Kit
9. JDBC Java Database Connectivity
10. RDBMS Relational Database Management System
11. JAR Java Archive
12. CP-ABE Cipher text Attribute based encryption
13. DO Data User
14. AU Authority Centre
15. KP-ABE Key Policy Attribute based encryption
16. CS Cloud Server
17. PHR Personal Health Record
18. DC Data Centre
19. HP-CP ABE Hypertext policy Cipher text Attribute based encryption

OBJECTIVE:
To tackle the problems mentioned above, a privacy preserving CP-ABE scheme

with efficient Authority verification is Introduced.
The secret keys of privacy preserving CP-ABE scheme is of constant size.

CHAPTER 1
INTRODUCTION

1.1 INTRODUCTION
CLOUD techniques make it possible to utilize information technology resources into business
domain. The cloud provides variety of scalable services on-demand, such as online databases,
program interface, storage and computing resources, etc. Users can obtain services through
phones, laptops, and desktops as shown in Fig. 1. Cloud storage provides remote data storage
and management services. It is also helpful in data analyzing and computing, which is quite
simple as it can provide a variety of services at the same time. Cloud has many advantages in
data storage, such as decreasing communication cost and maintenance charge, saving resources,
allowing remote access, and so on. However, people might not be willing to store their data in
the cloud, even though it provides so many benefits because of the data confidentiality and
privacy problems. The cloud server (CS) may be untrusted, in other words, if data is uploaded
to cloud, the cloud service provider may obtain and disclose users’ personal privacy, and even
access and share the data illegally [1].
To make sure the confidentiality of the data in cloud, people are inclined to encrypt them before
they are uploaded to cloud. But the general encryption algorithms make the data process become
difficult. ABE is a good candidate to overcome this limitation. ABE was first proposed in 2005
by Sahai and Waters [2], which guaranteed the data confidentiality and provided the fine-
grained access control policy to the customers. It has been widely accepted as an effective
method encrypting the outsourced data in cloud computing. ABE improves the efficiency when
the data owner (DO) intends to share data contents with multiusers. It permits DO to specify an
access policy to the encrypted files, which can make the users who match it, access uploaded
data. The users who do not satisfy the access structure cannot get any information about the data
contents. For instance, we consider the data access control for a company. If the CEO intends
to submit a classified file, through the cloud, to the managers in sales department, planning
department, and research and development (R&D) department. Then he/she can use an ABE
scheme. First, he/she encrypts the file and specifies an access structure as ω = manager ∧ (sales
department ,planning department ,R&D). Next, he/she uploads the encrypted file and the access
structure into the CS. Only the managers in the three mentioned departments can access the
classified file, and the managers in other departments or the general staff in the three mentioned
departments cannot learn anything about the file even if they collude.

Most of ABE proposals perform very well in secure data sharing. However, the personal privacy
of the DO and the users is ignored in these constructions. For convenience of recovering data,
the access policy is always sent with ciphertexts. In some scenarios, the access structure may
carry sensitive information of users. For instance, a patient wants to share his/her personal health
record (PHR) with some doctors and family members, but he/she may not want others to know
that he/she is sick. If the patient employs a normal ABE scheme to encrypt the PHR, although
the malicious user cannot get the contents of the PHR, he/she may get some information about
the users as shown in Fig. 2. The access policy contains “cardiopathy” and “DC hospital” and
the malicious third party may guess that the DO is suffering from a heart attack and is treating
in the DC hospital. Hence a natural problem is how to keep the shared data secure, while the
privacy of them is also protected.

CHAPTER 2
LITERATURE SURVEY

2.1 LITERATURE SURVEY

❖ The first work with consideration of user personal privacy was introduced by Nishide et al.
[8], where the access policy was partially hidden by dividing attribute into two parts as value
and name, while only hiding the value. Due to the hidden policy, the adversary cannot get
any information about the users. However, their scheme is impractical since its
computation cost is too high. In 2009, Waters proposed a CP-ABE scheme with dual system
encryption technique [7]. It provided a new way for privacy preserving in CP-ABE.
❖ Then Lai et al. [9], [10] used this technique to issue two hidden access policy CP-ABE
schemes (HP-CP-ABE). Both of them have been proven to achieve full security. The first one
[9] only supports AND gate, and the second one [10] supports linear secret share scheme
(LSSS) [11], which is a more expressive access structure. However, the size of both secret
keys and ciphertext increases linearly with the number of attributes.
❖ Then Rao et al. [12] introduced another HP-CP-ABE scheme with full security. In this
scheme, its security also relies on composite-order group, but the size of secret keys and
ciphertext achieves constant which improves the efficiency compared with [9] and [10].
However, this scheme only supports AND gate, which is not expressive. Zhang et al. [13]
proposed a hierarchical HP-CP-ABE scheme, where they used the technique proposed by
Abdalla et al. [14]. It achieves constant size secret keys and supplies fast decryption.
❖ Recently, Huang et al. [15] presented an HP-CP-ABE with lower computation cost and
constant size secret keys. However, it only achieves selective security, which is not a strong
enough security model. Although the above-mentioned schemes can protect users’ privacy,
there is an important problem to be ignored. That is to say, if the access policy is hidden,
the users have to attempt the entire possible combinations of the secret keys to decrypt
the ciphertexts, which means the users must take more time to recover messages. It is
necessary to find a method to help the users decrypt ciphertexts efficiently and successfully.
❖ To address this problem, Zhang et al. [16] introduced an HP-CP-ABE scheme with authority
verification phase to decrease users’ computational consumption. The authority verification
phase can help users check whether they are the valid users or not. However, privacy
leakage is found in the match phase.

CHAPTER 3
SYSTEM ANALYSIS

3.1 Existing system

Existing scheme such as Fine-Grained Data Access Control [3], Attribute Based
Data Sharing [4], Hierarchical Attribute Based Encryption[5], Distributed Access
Control[7] access controls on cloud are centralized in nature and also uses a
symmetric key approach, where only one key distribution centre (KDC)
distributes attributes and secret keys to all users.
As large number of users are supported on a cloud environment a single KDC
is very difficult to maintain. In this paper the added feature is that it enables the
authenticity and validity of the message without revealing the user identity who
has stored information on the cloud, and this scheme can also be extended to
user revocation. In this paper, Attribute Based Signature (ABS)[8] schemes is
used to achieve authenticity and privacy. This scheme is also resistant to replay
attacks where the fresh data can be replaced with stale data by users. This
scheme is an important property because a user who has been revoked will not
be able to write to the cloud.
3.2 Drawbacks
o In the existing work, the system does not have Ciphertext-policy
attribute-based encryption (CP-ABE)
o This system does not provide data confidentiality.
3.3 Proposed system

To maintain data integrity on the cloud, Attribute-based Encryption (ABE) with
Key Policy Attribute-based Encryption (KP-ABE) and Ciphertext-Policy Attribute-
based Encryption (CP-ABE) can be used with access control implementation for
cloud computing. CP-ABE is a promising cryptographic primitive for secure data
sharing in cloud computing.
A data owner is the only charge of to define the access policy associated
with his data which to be shared. In CP-ABE, each user's secret keys are
associated with a set of attributes and data are encrypted with access policy on
attributes. A user can decrypt a ciphertext if and only if his attributes satisfy the
ciphertext access policy.

In CP-ABE, the secret keys of users have to be issued by a trusted key

authority that leads to key escrow problem. Besides, most of the existing CP-
ABE schemes cannot support attribute with an arbitrary state. In this paper,
weighted-attribute data sharing scheme is proposed to solve the key escrow
problem and also improve the expressiveness of attribute, so that the resulting
scheme is friendlier to cloud computing applications.
An improved two-party key issuing protocol guarantees that neither key
authority nor cloud service provider can compromise the whole secret key of a
user individually. The concept of weighted-attribute not only enhance the
expression of an attribute binary to arbitrary but also reduce the complexity of
access policy, so that storage cost of ciphertext and time cost in encryption can
be reduced.
3.4 Advantages of Proposed System

❖ The system is more secure due to the data contents which have been
kept confidential to unauthorized individuals and collaborating users,
including the curious cloud servers.
❖ The system is more secured since the Users from different groups
cannot decrypt the cipher text by collaboration.
3.5 System Requirements

Hardware requirements:
➢ Processor - Pentium –IV
➢ RAM - 4 GB (min)
➢ Hard Disk - 20 GB
➢ Key Board - Standard Windows Keyboard
➢ Mouse - Two or Three Button Mouse
➢ Monitor - SVGA
Software Requirements:
➢ Operating System - Windows XP
➢ Coding Language - Java/J2EE (JSP, Servlet)

➢ Front End - J2EE

➢ Back End - MySQL
3.6 Feasibility study
PRELIMINARY INVESTIGATION
The first and foremost strategy for development of a project starts from the thought
of designing a mail enabled platform for a small firm in which it is easy and convenient of
sending and receiving messages, there is a search engine, address book and also including
some entertaining games. When it is approved by the organization and our project guide the
first activity, ie. preliminary investigation begins. The activity has three parts:
• Request Clarification
• Feasibility Study
• Request Approval
REQUEST CLARIFICATION
After the approval of the request to the organization and project guide, with
an investigation being considered, the project request must be examined to determine
precisely what the system requires.
Here our project is basically meant for users within the company whose
systems can be interconnected by the Local Area Network (LAN). In today’s busy schedule
man need everything should be provided in a readymade manner. So, taking into
consideration of the vastly use of the net in day-to-day life, the corresponding development
of the portal came into existence.
FEASIBILITY ANALYSIS: An important outcome of preliminary investigation is the

determination that the system request is feasible. This is possible only if it is feasible within
limited resource and time. The different feasibilities that have to be analysed are
• Operational Feasibility
• Economic Feasibility
• Technical Feasibility

Operational Feasibility
Operational Feasibility deals with the study of prospects of the system to be
developed. This system operationally eliminates all the tensions of the Admin and helps him
in effectively tracking the project progress. This kind of automation will surely reduce the
time and energy, which previously consumed in manual work. Based on the study, the system
is proved to be operationally feasible.
Economic Feasibility
Economic Feasibility or Cost-benefit is an assessment of the economic justification

for a computer-based project. As hardware was installed from the beginning & for lots of
purposes thus the cost on project of hardware is low. Since the system is a network based,
any number of employees connected to the LAN within that organization can use this tool
from at anytime. The Virtual Private Network is to be developed using the existing resources
of the organization. So the project is economically feasible.
Technical Feasibility
According to Roger S. Pressman, Technical Feasibility is the assessment of the
technical resources of the organization. The organization needs IBM compatible machines
with a graphical web browser connected to the Internet and Intranet. The system is
developed for platform independent environment. Java Server Pages, JavaScript, HTML, SQL
server and WebLogic Server are used to develop the system. The technical feasibility has
been carried out. The system is technically feasible for development and can be developed
with the existing facility.
REQUEST APPROVAL
Not all request projects are desirable or feasible. Some organization receives so many
project requests from client users that only few of them are pursued. However, those
projects that are both feasible and desirable should be put into schedule. After a project
request is approved, it cost, priority, completion time and personnel requirement is
estimated and used to determine where to add it to any project list. Truly speaking, the
approval of those above factors, development works can be launched.

CHAPTER 4
SYSTEM DESIGN

SYSTEM DESIGN AND DEVELOPMENT
INPUT DESIGN
Input Design plays a vital role in the life cycle of software development, it requires
very careful attention of developers. The input design is to feed data to the application as
accurate as possible. So inputs are supposed to be designed effectively so that the errors
occurring while feeding are minimized. According to Software Engineering Concepts, the
input forms or screens are designed to provide to have a validation control over the input
limit, range and other related validations.
This system has input screens in almost all the modules. Error messages are
developed to alert the user whenever he commits some mistakes and guides him in the right
way so that invalid entries are not made. Let us see deeply about this under module design.
Input design is the process of converting the user created input into a computer-
based format. The goal of the input design is to make the data entry logical and free from
errors. The error is in the input are controlled by the input design. The application has been
developed in user-friendly manner. The forms have been designed in such a way during the
processing the cursor is placed in the position where must be entered. The user is also
provided with in an option to select an appropriate input from various alternatives related
to the field in certain cases.
Validations are required for each data entered. Whenever a user enters an erroneous
data, error message is displayed and the user can move on to the subsequent pages after
completing all the entries in the current page.
OUTPUT DESIGN
The Output from the computer is required to mainly create an efficient method of
communication within the company primarily among the project leader and his team
members, in other words, the administrator and the clients. The output of VPN is the system
which allows the project leader to manage his clients in terms of creating new clients and
assigning new projects to them, maintaining a record of the project validity and providing
folder level access to each client on the user side depending on the projects allotted to him.
After completion of a project, a new project may be assigned to the client. User
authentication procedures are maintained at the initial stages itself. A new user may be

created by the administrator himself or a user can himself register as a new user but the task
of assigning projects and validating a new user rest with the administrator only. The
application starts running when it is executed for the first time. The server has to be started
and then the internet explorer in used as the browser. The project will run on the local area
network so the server machine will serve as the administrator while the other connected
systems can act as the clients. The developed system is highly user friendly and can be easily
understood by anyone using it even for the first time.
4.1 System Architecture

In this device architecture, the Facial look detection is to reserve the required look eager
on certainly considered one among important sentiment classes. In difference to
standard technique, in which the thing extraction step in addition to the detail kind step
is independent, considerate business enterprise can obtain facial features reputation in
a start to cease method. In meticulous, a catastrophe degree is extra to furthest restrict
of business enterprise to control the back-unfold blunder; at to tip, the forecast
probability of every example may be instantly forwardly output .
ARCHITECTURE DIAGRAM

DATA FLOW DIAGRAM
4.2 MODULES
1.DATA OWNER
2.CLOUD SERVER
3.AUTHORITY
4.END USER

Module description
1.DATA OWNER
In this module, Data owner has to register to cloud and logs in, Encrypts and uploads a file
to cloud server and also performs the following operations such as Register with department
(Cardiology, Nephrology, etc) and Specialist (Heart, Brain, Kidney) and Login and View Profile
,Upload patient details with (pid, pname, paddress, dob, email, cno, age, hospital name,
Disease, blood group, Symptom, attach disease file, attach user image) and encrypt all
attribute except pname , Select patient name details uploaded and Set Access Control
permission like by selecting Department and Profession and View all uploaded patient
Details with date and Time, View all Access Control provided details with date and Time.
2.CLOUD SERVER
In this module the cloud will authorize both the owner and the user and also performs the
following operations such as View all patient details in decrypt mode and View all Access
Control Details, View all Transactions (like upload, download, search) and View secret key
request and response details with date and Time View No. of same disease in chart, View
Patient Rank in chart and View No. Of attackers on patient accessing by wrong secret Key.
3.Authority
In this module, the Authority performs the following operations such as Login ,view Owners
and authorize and View Users and authorize, List all secret key request details and generate
and permit with date and Time and List all attackers Details with date and Time by wrong
secret Key with date and Time.
4.End USER
In this module, the user has to register to cloud and log in and performs the following
operations such as Register with Department (Cardiology, Nephrology, etc) and Profession
(like Doctor, nurse, Surgeon etc) and Login, View Profile and Search patient details by content
keyword (Display patient files and details if access control is given) and request secret key
and List all secret key permitted response from Authority and give download option here
only.

4.3 UML Diagrams

Use Case Diagram:

Sequence Diagram:

State chart Diagram:
COLLABORATION DIAGRAM:

Activity Diagram:
Component Diagram:

Deployment Diagram:
Class Diagram:

CHAPTER 5
SYSTEM IMPLEMENTATION

5.1 TECHNOLOGIES
Client Server
Over view:
With the varied topic in existence in the fields of computers, Client Server is one, which has
generated more heat than light, and also more hype than reality. This technology has acquired
a certain critical mass attention with its dedication conferences and magazines. Major
computer vendors such as IBM and DEC, have declared that Client Servers is their main future
market. A survey of DBMS magazine revealed that 76% of its readers were actively looking
at the client server solution. The growth in the client server development tools from $200
million in 1992 to more than $1.2 billion in 1996.
Client server implementations are complex but the underlying concept is simple and powerful.
A client is an application running with local resources but able to request the database and
relate the services from separate remote server. The software mediating this client server
interaction is often referred to as MIDDLEWARE.
The typical client either a PC or a Work Station connected through a network to a more
powerful PC, Workstation, Midrange or Main Frames server usually capable of handling
request from more than one client. However, with some configuration server may also act as
client. A server may need to access other server in order to process the original client request.
The key client server idea is that client as user is essentially insulated from the physical
location and formats of the data needs for their application. With the proper middleware, a
client input from or report can transparently access and manipulate both local database on the
client machine and remote databases on one or more servers. An added bonus is the client
server opens the door to multi-vendor database access indulging heterogeneous table joins.
What is a client Server?

Two prominent systems in existence are client server and file server systems. It is essential to
distinguish between client servers and file server systems. Both provide shared network access
to data but the comparison dens there! The file server simply provides a remote disk drive that
can be accessed by LAN applications on a file-by-file basis. The client server offers full
relational database services such as SQL-Access, Record modifying, Insert, delete with full
relational integrity backup/ restore performance for high volume of transactions, etc. the client
server middleware provides a flexible interface between client and server, who does what,
when and to whom.
Why Client Server?

Client server has evolved to solve a problem that has been around since the earliest days of
computing: how best to distribute your computing, data generation and data storage resources
in order to obtain efficient, cost effective departmental and enterprise-wide data processing.
During mainframe era choices were quite limited. A central machine housed both the CPU
and DATA (cards, tapes, drums, and later disks). Access to these resources was initially
confined to batched runs that produced departmental reports at the appropriate intervals. A

strong central information service department ruled the corporation. The role of the rest of the
corporation limited to requesting new or more frequent reports and to provide hand written
forms from which the central data banks were created and updated. The earliest client server
solutions therefore could best be characterized as “SLAVE-MASTER”.
Front end or User Interface Design
The entire user interface is planned to be developed in browser specific environment with a
touch of Intranet-Based Architecture for achieving the Distributed Concept.
The browser specific components are designed by using the HTML standards, and the
dynamism of the designed by concentrating on the constructs of the Java Server Pages.
Communication or Database Connectivity Tier
The Communication architecture is designed by concentrating on the Standards of
Servlets and Enterprise Java Beans. The database connectivity is established by using
the Java Data Base Connectivity.
The standards of three-tire architecture are given major concentration to keep the
standards of higher cohesion and limited coupling for effectiveness of the operations.
Features of The Language Used
In my project, I have chosen Java language for developing the code.
5.1 About Java
Initially the language was called as “oak” but it was renamed as “Java” in 1995. The primary
motivation of this language was the need for a platform-independent (i.e., architecture
neutral) language that could be used to create software to be embedded in various consumer
electronic devices.
➢ Java is a programmer’s language.
➢ Java is cohesive and consistent.
➢ Except for those constraints imposed by the Internet environment, Java gives
the programmer, full control.

Finally, Java is to Internet programming where C was to system programming.

Importance of Java to the Internet
Java has had a profound effect on the Internet. This is because; Java expands the Universe of
objects that can move about freely in Cyberspace. In a network, two categories of objects are
transmitted between the Server and the Personal computer. They are: Passive information
and Dynamic active programs. The Dynamic, Self-executing programs cause serious
problems in the areas of Security and probability. But, Java addresses those concerns and by
doing so, has opened the door to an exciting new form of program called the Applet.
Java can be used to create two types of programs
Applications and Applets: An application is a program that runs on our computer under the
operating system of that computer. It is more or less like one creating using C or C++. Java’s
ability to create Applets makes it important. An Applet is an application designed to be
transmitted over the Internet and executed by a Java –compatible web browser. An applet is
actually a tiny Java program, dynamically downloaded across the network, just like an
image. But the difference is, it is an intelligent program, not just a media file. It can react to
the user input and dynamically change.
Features Of Java
Security
Every time you that you download a “normal” program, you are risking a viral infection. Prior
to Java, most users did not download executable programs frequently, and those who did
scanned them for viruses prior to execution. Most users still worried about the possibility of
infecting their systems with a virus. In addition, another type of malicious program exists that
must be guarded against. This type of program can gather private information, such as credit
card numbers, bank account balances, and passwords. Java answers both these concerns by
providing a “firewall” between a network application and your computer.
When you use a Java-compatible Web browser, you can safely download Java applets without
fear of virus infection or malicious intent.
Portability
For programs to be dynamically downloaded to all the various types of platforms connected
to the Internet, some means of generating portable executable code is needed. As you will see,
the same mechanism that helps ensure security also helps create portability. Indeed, Java’s
solution to these two problems is both elegant and efficient.

The Byte code
The key that allows the Java to solve the security and portability problems is that the output
of Java compiler is Byte code. Byte code is a highly optimized set of instructions designed to
be executed by the Java run-time system, which is called the Java Virtual Machine (JVM).
That is, in its standard form, the JVM is an interpreter for byte code.
Translating a Java program into byte code helps makes it much easier to run a program in a
wide variety of environments. The reason is, once the run-time package exists for a given
system, any Java program can run on it.
Although Java was designed for interpretation, there is technically nothing about Java that
prevents on-the-fly compilation of byte code into native code. Sun has just completed its
Just In Time (JIT) compiler for byte code. When the JIT compiler is a part of JVM, it
compiles byte code into executable code in real time, on a piece-by-piece, demand basis. It
is not possible to compile an entire Java program into executable code all at once, because
Java performs various run-time checks that can be done only at run time. The JIT compiles
code, as it is needed, during execution.
Java, Virtual Machine (JVM)
Beyond the language, there is the Java virtual machine. The Java virtual machine is an
important element of the Java technology. The virtual machine can be embedded within a
web browser or an operating system. Once a piece of Java code is loaded onto a machine, it
is verified. As part of the loading process, a class loader is invoked and does byte code
verification makes sure that the code that’s has been generated by the compiler will not
corrupt the machine that it’s loaded on. Byte code verification takes place at the end of the
compilation process to make sure that is all accurate and correct. So byte code verification is
integral to the compiling and executing of Java code.
Overall Description
Java byte code

Java Source JavaVM
Java .Class
Picture showing the development process of JAVA Program
Java programming uses to produce byte codes and executes them. The first box indicates
that the Java source code is located in a. Java file that is processed with a Java compiler
called javac. The Java compiler produces a file called a. class file, which contains the byte
code. The. Class file is then loaded across the network or loaded locally on your machine
into the execution environment is the Java virtual machine, which interprets and executes the
byte code.

Java Architecture: Java architecture provides a portable, robust, high performing

environment for development. Java provides portability by compiling the byte codes for the
Java Virtual Machine, which is then interpreted on each platform by the run-time
environment. Java is a dynamic system, able to load code when needed from a machine in
the same room or across the planet.
Compilation of code: When you compile the code, the Java compiler creates machine code
(called byte code) for a hypothetical machine called Java Virtual Machine (JVM). The JVM
is supposed to execute the byte code. The JVM is created for overcoming the issue of
portability. The code is written and compiled for one machine and interpreted on all
machines. This machine is called Java Virtual Machine.
Compiling and interpreting Java Source Code
Java
PC Compiler Interpreter
Source Java (PC)
Code Byte code
……….. Macintosh Java
……….. Compiler Interpreter

(Platform (Macintosh)
independent)
………..
SPARC
Java
Compiler
Interpreter
(Sparc)
During run-time the Java interpreter tricks the byte code file into thinking that it is running
on a Java Virtual Machine. In reality this could be an Intel Pentium Windows 95 or Sun
SARC station running Solaris or Apple Macintosh running system and all could receive
code from any computer through Internet and run the Applets.
Simple
Java was designed to be easy for the Professional programmer to learn and to use
effectively. If you are an experienced C++ programmer, learning Java will be even easier.
Because Java inherits the C/C++ syntax and many of the object-oriented features of C++.

Most of the confusing concepts from C++ are either left out of Java or implemented in a
cleaner, more approachable manner. In Java there are a small number of clearly defined
ways to accomplish a given task.
Object-Oriented
Java was not designed to be source-code compatible with any other language. This allowed
the Java team the freedom to design with a blank slate. One outcome of this was a clean
usable, pragmatic approach to objects. The object model in Java is simple and easy to
extend, while simple types, such as integers, are kept as high-performance non-objects.
Robust
The multi-platform environment of the Web places extraordinary demands on a program,

because the program must execute reliably in a variety of systems. The ability to create
robust programs was given a high priority in the design of Java. Java is strictly typed
language; it checks your code at compile time and run time. Java virtually eliminates the
problems of memory management and deallocation, which is completely automatic. In a
well-written Java program, all run time errors can –and should –be managed by your
program.
JAVASCRIPT
JavaScript is a script-based programming language that was developed by Netscape
Communication Corporation. JavaScript was originally called Live Script and renamed as
JavaScript to indicate its relationship with Java. JavaScript supports the development of both
client and server components of 34Web-based applications. On the client side, it can be used
to write programs that are executed by a Web browser within the context of a Web page. On
the server side, it can be used to write Web server programs that can process information
submitted by a Web browser and then updates the browser’s display accordingly
Even though JavaScript supports both client and server Web programming, we prefer
JavaScript at Client-side programming since most of the browsers supports it. JavaScript is
almost as easy to learn as HTML, and JavaScript statements can be included in HTML
documents by enclosing the statements between a pair of scripting tags
<SCRIPTS>...</SCRIPT>.
<SCRIPT LANGUAGE = “JavaScript”>
JavaScript statements

</SCRIPT>
Here are a few things we can do with JavaScript:
➢ Validate the contents of a form and make calculations.

➢ Add scrolling or changing messages to the Browser’s status line.
➢ Animate images or rotate images that change when we move the mouse over
them.
➢ Detect the browser in use and display different content for different
browsers.
➢ Detect installed plug-ins and notify the user if a plug-in is required.
JAVASCRIPT Vs JAVA:
JavaScript and Java are entirely different languages. A few of the most glaring differences
are:
➢ Java applets are generally displayed in a box within the web document;
JavaScript can affect any part of the Web document itself.
➢ While JavaScript is best suited to simple applications and adding interactive
features to Web pages; Java can be used for incredibly complex
applications.
A D V A N T A G E S
➢ JavaScript can be used for Sever-side and Client-side scripting.
➢ It is more flexible than VBScript.
➢ JavaScript is the default scripting languages at Client-side since all the
browsers supports it.
5.2 Hyper Text Markup Language: Hypertext Markup Language (HTML), the
languages of the World Wide Web (WWW), allows users to produces Web pages that
include text, graphics and pointer to other Web pages (Hyperlinks).
HTML is not a programming language but it is an application of ISO Standard 8879,

SGML (Standard Generalized Markup Language), but specialized to hypertext and adapted to
the Web. The idea behind Hypertext is that instead of reading text in rigid linear structure, we
can easily jump from one point to another point. We can navigate through the information

based on our interest and preference. A markup language is simply a series of elements, each
delimited with special characters that define how text or other items enclosed within the
elements should be displayed. Hyperlinks are underlined or emphasized works that load to
other documents or some portions of the same document.
HTML can be used to display any type of document on the host computer, which can
be geographically at a different location. It is a versatile language and can be used on any
platform or desktop.HTML provides tags (special codes) to make the document look
attractive. HTML tags are not case-sensitive. Using graphics, fonts, different sizes, colour,
etc., can enhance the presentation of the document. Anything that is not a tag is part of the
document itself.
Basic HTML Tags:
<! -- --> Specifies comments
<A>………. </A> Creates hypertext links
<B>………. </B> Formats text as bold
<BIG>………. </BIG> Formats text in large font.
<BODY>…</BODY> Contains all tags and text in the HTML document
<CENTER>...</CENTER> Creates text
<DD>…</DD> Definition of a term
<DL>...</DL> Creates definition list
<FONT>…</FONT> Formats text with a particular font
<FORM>...</FORM> Encloses a fill-out form
<FRAME>...</FRAME> Defines a particular frame in a set of frames
<H#>…</H#> Creates headings of different levels
<HEAD>...</HEAD> Contains tags that specify information about a document
<HR>...</HR> Creates a horizontal rule
<HTML>…</HTML> Contains all other HTML tags
<META>...</META> Provides meta-information about a document
<SCRIPT>…</SCRIPT> Contains client-side or server-side script

<TABLE>…</TABLE> Creates a table
<TD>…</TD> Indicates table data in a table
<TR>…</TR> Designates a table row
<TH>…</TH> Creates a heading in a table
ADVANTAGES
➢ A HTML document is small and hence easy to send over the net. It is small
because it does not include formatted information.
➢ HTML is platform independent.
➢ HTML tags are not case-sensitive.
5.3 Java Database Connectivity (JDBC)
What Is JDBC?
JDBC is a Java API for executing SQL statements. (As a point of interest, JDBC is a
trademarked name and is not an acronym; nevertheless, JDBC is often thought of as
standing for Java Database Connectivity. It consists of a set of classes and interfaces written
in the Java programming language. JDBC provides a standard API for tool/database
developers and makes it possible to write database applications using a pure Java API.
Using JDBC, it is easy to send SQL statements to virtually any relational database. One can
write a single program using the JDBC API, and the program will be able to send SQL
statements to the appropriate database. The combinations of Java and JDBC lets a programmer
write it once and run it anywhere.
What Does JDBC Do?
Simply put, JDBC makes it possible to do three things:

➢ Establish a connection with a database
➢ Send SQL statements
➢ Process the results.
JDBC versus ODBC and other APIs
At this point, Microsoft's ODBC (Open Database Connectivity) API is that probably the most
widely used programming interface for accessing relational databases. It offers the ability to
connect to almost all databases on almost all platforms.

So why not just use ODBC from Java? The answer is that you can use ODBC from Java,
but this is best done with the help of JDBC in the form of the JDBC-ODBC Bridge, which
we will cover shortly. "Why do you need JDBC?"
ODBC is not appropriate for direct use from Java because it uses a C interface. Calls from
Java to native C code have a number of drawbacks in the security, implementation,
robustness, and automatic portability of applications.
1. A literal translation of the ODBC C API into a Java API would not be desirable. For
example, Java has no pointers, and ODBC makes copious use of them, including the
notoriously error-prone generic pointer "void *". You can think of JDBC as ODBC
translated into an object-oriented interface that is natural for Java programmers.
2. ODBC is hard to learn. It mixes simple and advanced features together, and it has
complex options even for simple queries. JDBC, on the other hand, was designed to
keep simple things simple while allowing more advanced capabilities where required.
3. A Java API like JDBC is needed in order to enable a "pure Java" solution. When
ODBC is used, the ODBC driver manager and drivers must be manually installed on
every client machine. When the JDBC driver is written completely in Java, however,
JDBC code is automatically installable, portable, and secure on all Java platforms
from network computers to mainframes.
5.4 Two-tier and Three-tier Models
The JDBC API supports both two-tier and three-tier models for database access. In the
two-tier model, a Java applet or application talks directly to the database. This requires
JAVA
Client machine
Application
DBMS-proprietary protocol
JDBC
Database server
DBMS

a JDBC driver that can communicate with the particular database management system
being accessed.
A user's SQL statements are delivered to the database, and the results of those statements are
sent back to the user. The database may be located on another machine to which the user is
connected via a network. This is referred to as a client/server configuration, with the user's
machine as the client, and the machine housing the database as the server
In the three-tier model, commands are sent to a "middle tier" of services, which then send SQL
statements to the database. The database processes the SQL statements and sends the results
back to the middle tier, which then sends them to the user. MIS directors find the three-tier
model very attractive because the middle tier makes it possible to maintain control over access
and the kinds of updates that can be made to corporate data. Another advantage is that when
there is a middle tier, the user can employ an easy-to-use higher-level API which is translated
by the middle tier into the appropriate low-level calls. Finally, in many cases the three-tier
architecture can provide performance advantages.
Java applet or Html

browser Client machine
HTTP, RMI, or CORBA calls
Application
Server (Java)
Server machine (business Logic)
DBMS-proprietary protocol
JDBC
Database server
DBMS
Until now the middle tier has typically been written in languages such as C or C++,
which offer fast performance. However, with the introduction of optimizing compilers that
translate Java byte code into efficient machine-specific code, it is becoming practical to
implement the middle tier in Java. This is a big plus, making it possible to take advantage of
Java's robustness, multithreading, and security features. JDBC is important to allow database
access from a Java middle tier.
JDBC Driver Types
The JDBC drivers that we are aware of at this time fit into one of four categories:
➢ JDBC-ODBC bridge plus ODBC driver

➢ Native-API partly-Java driver

➢ JDBC-Net pure Java driver

➢ Native-protocol pure Java driver
JDBC-ODBC Bridge
If possible, use a Pure Java JDBC driver instead of the Bridge and an ODBC driver. This completely
eliminates the client configuration required by ODBC. It also eliminates the potential that the Java VM
could be corrupted by an error in the native code brought in by the Bridge (that is, the Bridge native library,
the ODBC driver manager library, the ODBC driver library, and the database client library).
What Is the JDBC- ODBC Bridge?
The JDBC-ODBC Bridge is a JDBC driver, which implements JDBC operations by translating them
into ODBC operations. To ODBC it appears as a normal application program. The Bridge implements
JDBC for any database for which an ODBC driver is available. The Bridge is implemented as the
sun.jdbc.odbc Java package and contains a native library used to access ODBC. The Bridge is a joint
development of Intersolv and JavaSoft.
5.5 Java Server Pages (JSP)

Java server Pages is a simple, yet powerful technology for creating and maintaining dynamic-content
web pages. Based on the Java programming language, Java Server Pages offers proven portability,
open standards, and a mature re-usable component model .The Java Server Pages architecture enables
the separation of content generation from content presentation. This separation not eases maintenance
headaches, it also allows web team members to focus on their areas of expertise. Now, web page
designer can concentrate on layout, and web application designers on programming, with minimal
concern about impacting each other’s work.
Features of JSP
Portability: Java Server Pages files can be run on any web server or web-enabled application server
that provides support for them. Dubbed the JSP engine, this support involves recognition, translation,
and management of the Java Server Page lifecycle and its interaction components.
Components: It was mentioned earlier that the Java Server Pages architecture can include reusable
Java components. The architecture also allows for the embedding of a scripting language directly into
the Java Server Pages file. The components current supported include Java Beans, and Servlets.
Processing: A Java Server Pages file is essentially an HTML document with JSP scripting or tags.
The Java Server Pages file has a JSP extension to the server as a Java Server Pages file. Before the
page is served, the Java Server Pages syntax is parsed and processed into a Servlet on the server side.
The Servlet that is generated outputs real content in straight HTML for responding to the client.

Access Models:
A Java Server Pages file may be accessed in at least two different ways. A client’s request comes directly
into a Java Server Page. In this scenario, suppose the page accesses reusable Java Bean components that
perform well-defined computations like accessing a database. The result of the Beans computations, called
result sets is stored within the Bean as properties. The page uses such Beans to generate dynamic content
and present it back to the client.
In both above cases, the page could also contain any valid Java code. Java Server Pages architecture
encourages separation of content from presentation.
Steps in the execution of a JSP Application:
1. The client sends a request to the web server for a JSP file by giving the name of the JSP file within
the form tag of a HTML page.
2. This request is transferred to the Java Webserver. At the server side Java Webserver receives the
request and if it is a request for a jsp file server gives this request to the JSP engine.
3. JSP engine is program which can understands the tags of the jsp and then it converts those tags
into a Servlet program and it is stored at the server side. This Servlet is loaded in the memory and
then it is executed and the result is given back to the Java Webserver and then it is transferred
back to the result is given back to the Java Webserver and then it is transferred back to the client.
JDBC connectivity
The JDBC provides database-independent connectivity between the J2EE platform and a wide range of
tabular data sources. JDBC technology allows an Application Component Provider to:
• Perform connection and authentication to a database server

• Manager transactions
• Move SQL statements to a database engine for pre-processing and execution
• Execute stored procedures
• Inspect and modify the results from Select statements.
5.6 Tomcat 6.0 web server

Tomcat is an open-source web server developed by Apache Group. Apache Tomcat is the servlet
container that is used in the official Reference Implementation for the Java Servlet and Java Server
Pages technologies. The Java Servlet and Java Server Pages specifications are developed by Sun under
the Java Community Process. Web Servers like Apache Tomcat support only web components while
an application server supports web components as well as business components (BEAs WebLogic, is

one of the popular application servers). To develop a web application with jsp /servlet install any web
server like JRun, Tomcat etc to run your application.
5.7 SOURCE CODE:

au_main.jsp
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Authority Main</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<link href="css/style.css" rel="stylesheet" type="text/css" />
<link rel="stylesheet" type="text/css" href="css/coin-slider.css" />
<script type="text/javascript" src="js/cufon-yui.js"></script>
<script type="text/javascript" src="js/cufon-aller.js"></script>
<script type="text/javascript" src="js/jquery-1.4.2.min.js"></script>
<script type="text/javascript" src="js/script.js"></script>
<script type="text/javascript" src="js/coin-slider.min.js"></script>
<script language="javascript" type="text/javascript">
</script>
<style type="text/css">

</style>
</head>
<body>
<div class="main">
<div class="header">
<div class="header_resize">
<div class="logo">
<h1><a href="index.html" class="style1 style2">Improving Security and Privacy Attribute Based Data
Sharing in Cloud Computing</a></h1>
</div>
<div class="menu_nav">
<ul>
<li><a href="index.html"><span>Home Page</span></a></li>
<li><a href="owner_login.jsp"><span>Owner</span></a></li>
<li><a href="user_login.jsp"><span>User</span></a></li>
<li><a href="cs_login.jsp"><span>Cloud Server</span></a></li>
<li class="active"><a href="au_login.jsp"><span>Authority</span></a></li>
</ul>
</div>
<div class="clr"></div>
<div class="slider">
<div id="coin-slider"> <a href="#"><img src="images/slide1.jpg" width="960" height="320" alt="" /> </a>
<a href="#"><img src="images/slide2.jpg" width="960" height="320" alt="" /> </a> <a href="#"><img
src="images/slide3.jpg" width="960" height="320" alt="" /> </a> </div>
</div>
</div>
</div>
<div class="content">
<div class="content_resize">
<div class="mainbar">

<div class="article">
<h2 align="center"> Welcome to Authority Main</h2>
<p><img src="images/gal4.jpg" width="521" height="316" /></p>
</div>
</div>
<div class="sidebar">
<div class="gadget">
<h2 class="star"><span>Authority</span> Menu</h2>
<ul class="sb_menu style4">
<li><a href="au_all_owners.jsp">View All Owners and Authorize</a></li>
<li><a href="au_all_users.jsp">View All Users and Authorize</a></li>
<li><a href="au_sk_req.jsp">View All SK Requests and Permit</a></li>
<li><a href="au_all_attacker.jsp"> View All Attackers Details by Wrong SK </a></li>
<li><a href="au_login.jsp">Log Out</a></li>
</ul>
</div>
</div>
</div>
</div>
<div class="fbg"></div>
<div class="footer">
<div class="footer_resize">
<div style="clear:both;"></div>
</div>
</div>
</div>
<div align=center></div>
</body>
</html>
ow_main.jsp

<head>
<title>Owner Main</title>
</script>

</style>
</head>
<body>
<div class="main">
<div class="logo">
</div>
<ul>
<li class="active"><a href="owner_login.jsp"><span>Owner</span></a></li>

<li><a href="au_login.jsp"><span>Authority</span></a></li>
</ul>
</div>
</div>
</div>
</div>
<h2 align="center"> Welcome to Owner Main : <span
class="style3"><%=application.getAttribute("ow")%></span></h2>
<p><img src="images/Owner.jpg" width="618" height="269" /></p>
</div>
</div>
<h2 class="star"><span>Owner</span> Menu</h2>
<ul class="sb_menu">
<li><a href="ow_profile.jsp"><span>View Profile</span></a></li>
<li><a href="ow_upload_patientt.jsp"><span>Upload Patient Details </span></a></li>
<li><a href="ow_access_control_per.jsp"><span>Set Access Control Permission</span></a></li>
<li><a href="ow_patient_det.jsp"><span>View All Uploaded Patient Details </span></a></li>
<li><a href="ow_acc_con_det.jsp"><span>View All Access Control Provided Details </span></a></li>
<li><a href="owner_login.jsp"><span>Log Out</span></a></li>
</ul>
</div>
</div>

</div>
</div>
</div>
</div>
</div>
</body>
</html>
s_main.jsp
<head>
<title>Server Main</title>
</script>

</style>
</head>
<body>
<div class="main">
<div class="logo">
</div>
<ul>
<li class="active"><a href="cs_login.jsp"><span>Cloud Server</span></a></li>
</ul>
</div>
</div>
</div>
</div>
<h2 align="center"> Welcome to Cloud Server Main</h2>
<p><img src="images/Cloudserver.jpg" width="625" height="291" /></p>

</div>
</div>
<h2 class="star"><span>Server</span> Menu</h2>
<ul class="sb_menu style4">
<li><a href="cs_all_patient.jsp"> View All Patient Details </a></li>
<li><a href="cs_acc_con_det.jsp"> View All Access Control Details </a></li>
<li><a href="cs_all_transaction.jsp"> View All Transactions </a></li>
<li><a href="cs_all_sk_req_res.jsp"> View All SK Request and Response Details
</a></li>
<li><a href="cs_chart1.jsp"> View No.of Same Disease in Chart </a></li>
<li><a href="cs_chart2.jsp"> View Patient Searched Rank in chart </a></li>
<li><a href="cs_chart3.jsp"> View Patient File Rank in chart </a></li>
<li><a href="cs_all_attacker.jsp"> View No.Of Attackers on Patient</a></li>
<li><a href="cs_login.jsp">Log Out</a></li>
</ul>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</body>
</html>
u_main.jsp


<head>
<title>User Main</title>
</script>

</style>
</head>
<body>
<div class="main">
<div class="logo">
</div>
<ul>

<li class="active"><a href="user_login.jsp"><span>User</span></a></li>
</ul>
</div>
</div>
</div>
</div>
<h2 align="center"> Welcome to User Main : <span class="style3"><%=application.getAttribute("us")%>
</span></h2>
<p> </p>
<p><img src="images/User.jpg" width="641" height="291" /></p>
</div>
</div>
<h2 class="star"><span>User</span> Menu</h2>
<ul class="sb_menu">
<li><a href="u_profile.jsp"><span>View Profile</span></a></li>
<li><a href="u_search_patient.jsp"><span>Search Patient</span></a></li>
<li><a href="u_sk_req.jsp"><span>View All SK Requests and Response</span></a></li>
<li><a href="u_sk_permitted.jsp"><span>View All SK Permitted and Download</span></a></li>
<li><a href="user_login.jsp"><span>Log Out</span></a></li>
</ul>

</div>
</div>
</div>
</div>
</div>
</div>
</div>
</body>
</html>

CHAPTER 6
TESTING

SYSTEM TESTING
The purpose of testing is to discover errors. Testing is the process of trying to discover every
conceivable fault or weakness in a work product. It provides a way to check the functionality of
components, sub-assemblies, assemblies and/or a finished product It is the process of exercising
software with the intent of ensuring that the
Software system meets its requirements and user expectations and does not fail in an
unacceptable manner. There are various types of test. Each test type addresses a specific
testing requirement.
TYPES OF TESTS
Unit testing: Unit testing involves the design of test cases that validate that the internal
program logic is functioning properly, and that program inputs produce valid outputs. All
decision branches and internal code flow should be validated. It is the testing of individual
software units of the application .it is done after the completion of an individual unit before
integration. This is a structural testing, that relies on knowledge of its construction and is
invasive. Unit tests perform basic tests at component level and test a specific business process,
application, and/or system configuration. Unit tests ensure that each unique path of a business
process performs accurately to the documented specifications and contains clearly defined
inputs and expected results.
Integration testing: Integration tests are designed to test integrated software components to
determine if they actually run as one program. Testing is event driven and is more concerned
with the basic outcome of screens or fields. Integration tests demonstrate that although the
components were individually satisfaction, as shown by successfully unit testing, the
combination of components is correct and consistent. Integration testing is specifically aimed
at exposing the problems that arise from the combination of components.
Functional test: Functional tests provide systematic demonstrations that functions tested are
available as specified by the business and technical requirements, system documentation, and
user manuals.
Functional testing is centered on the following items:
Valid Input : identified classes of valid input must be accepted.
Invalid Input : identified classes of invalid input must be rejected.
Functions : identified functions must be exercised.

Output : identified classes of application outputs must be exercised.
Systems/Procedures : interfacing systems or procedures must be invoked.
Organization and preparation of functional tests is focused on requirements, key functions,

or special test cases. In addition, systematic coverage pertaining to identify Business process
flows; data fields, predefined processes, and successive processes must be considered for
testing. Before functional testing is complete, additional tests are identified and the effective
value of current tests is determined.
System Test: System testing ensures that the entire integrated software system meets
requirements. It tests a configuration to ensure known and predictable results. An example of
system testing is the configuration-oriented system integration test. System testing is based on
process descriptions and flows, emphasizing pre-driven process links and integration points.
White Box Testing
White Box Testing is a testing in which in which the software tester has knowledge of
the inner workings, structure and language of the software, or at least its purpose. It is purpose.
It is used to test areas that cannot be reached from a black box level.
Black Box Testing

Black Box Testing is testing the software without any knowledge of the inner workings,
structure or language of the module being tested. Black box tests, as most other kinds of tests,
must be written from a definitive source document, such as specification or requirements
document, such as specification or requirements document. It is a testing in which the software
under test is treated, as a black box .you cannot “see” into it. The test provides inputs and
responds to outputs without considering how the software works.
Unit Testing: Unit testing is usually conducted as part of a combined code and unit test phase
of the software lifecycle, although it is not uncommon for coding and unit testing to be
conducted as two distinct phases
Test strategy and approach
Field testing will be performed manually and functional tests will be written in detail.
Test objectives
• All field entries must work properly.
• Pages must be activated from the identified link.
• The entry screen, messages and responses must not be delayed.

Features to be tested
• Verify that the entries are of the correct format
• No duplicate entries should be allowed
• All links should take the user to the correct page.
Integration Testing: Software integration testing is the incremental integration testing of two
or more integrated software components on a single platform to produce failures caused by
interface defects.
The task of the integration test is to check that components or software applications, e.g.
components in a software system or – one step up – software applications at the company level
– interact without error.
Test Results: All the test cases mentioned above passed successfully. No defects encountered.
Acceptance Testing: User Acceptance Testing is a critical phase of any project and requires
significant participation by the end user. It also ensures that the system meets the functional
requirements.
Test Results: All the test cases mentioned above passed successfully. No defects encountered.
TESTING METHODOLOGIES
The following are the Testing Methodologies:
o Unit Testing.
o Integration Testing.
o User Acceptance Testing.
o Output Testing.
o Validation Testing.
Unit Testing: Unit testing focuses verification effort on the smallest unit of Software design
that is the module. Unit testing exercises specific paths in a module’s control structure to
ensure complete coverage and maximum error detection. This test focuses on each module
individually, ensuring that it functions properly as a unit. Hence, the naming is Unit Testing.
During this testing, each module is tested individually and the module interfaces are
verified for the consistency with design specification. All-important processing path are
tested for the expected results. All error handling paths are also tested.
Integration Testing: Integration testing addresses the issues associated with the dual
problems of verification and program construction. After the software has been integrated a

set of high order tests are conducted. The main objective in this testing process is to take unit
tested modules and builds a program structure that has been dictated by design.
The following are the types of Integration Testing:
1. Top-Down Integration
This method is an incremental approach to the construction of program structure.
Modules are integrated by moving downward through the control hierarchy, beginning with
the main program module. The module subordinates to the main program module are
incorporated into the structure in either a depth first or breadth first manner.
In this method, the software is tested from main module and individual stubs are
replaced when the test proceeds downwards.
2. Bottom-up Integration
This method begins the construction and testing with the modules at the lowest level
in the program structure. Since the modules are integrated from the bottom up, processing
required for modules subordinate to a given level is always available and the need for stubs
is eliminated. The bottom-up integration strategy may be implemented with the following
steps:
▪ The low-level modules are combined into clusters into clusters that
perform a specific Software sub-function.
▪ A driver (i.e.) the control program for testing is written to coordinate test
case input and output.
▪ The cluster is tested.
▪ Drivers are removed and clusters are combined moving upward in the
program structure
The bottom-up approaches test each module individually and then each module is module is
integrated with a main module and tested for functionality.
User Acceptance Testing: User Acceptance of a system is the key factor for the success of
any system. The system under consideration is tested for user acceptance by constantly
keeping in touch with the prospective system users at the time of developing and making
changes wherever required. The system developed provides a friendly user interface that can
easily be understood even by a person who is new to the system.
Output Testing: After performing the validation testing, the next step is output
testing of the proposed system, since no system could be useful if it does not

produce the required output in the specified format. Asking the users about the
format required by them tests the outputs generated or displayed by the system
under consideration. Hence the output format is considered in 2 ways – one is
on screen and another in printed format.
Validation Checking
Validation checks are performed on the following fields.
Text Field:
The text field can contain only the number of characters lesser than or equal to its
size. The text fields are alphanumeric in some tables and alphabetic in other tables. Incorrect
entry always flashes and error message.
Numeric Field:
The numeric field can contain only numbers from 0 to 9. An entry of any character
flashes an error message. The individual modules are checked for accuracy and what it has
to perform. Each module is subjected to test run along with sample data. The individually
tested modules are integrated into a single system. Testing involves executing the real
data information is used in the program the existence of any program defect is inferred from
the output. The testing should be planned so that all the requirements are individually
tested.
A successful test is one that gives out the defects for the inappropriate data and
produces and output revealing the errors in the system.
Preparation of Test Data
Taking various kinds of test data does the above testing. Preparation of test data plays
a vital role in the system testing. After preparing the test data the system under study is tested
using that test data. While testing the system by using test data errors are again uncovered
and corrected by using above testing steps and corrections are also noted for future use.
Using Live Test Data:
Live test data are those that are actually extracted from organization files. After a system
is partially constructed, programmers or analysts often ask users to key in a set of data from
their normal activities. Then, the systems person uses this data as a way to partially test the
system. In other instances, programmers or analysts extract a set of live data from the files and
have them entered themselves.

It is difficult to obtain live data in sufficient amounts to conduct extensive testing.

And, although it is realistic data that will show how the system will perform for the typical
processing requirement, assuming that the live data entered are in fact typical, such data
generally will not test all combinations or formats that can enter the system. This bias toward
typical values then does not provide a true system test and in fact ignores the cases most
likely to cause system failure.
Using Artificial Test Data:
Artificial test data are created solely for test purposes, since they can be generated to test
all combinations of formats and values. In other words, the artificial data, which can quickly
be prepared by a data generating utility program in the information systems department, make
possible the testing of all login and control paths through the program.
The most effective test programs use artificial test data generated by persons other than
those who wrote the programs. Often, an independent team of testers formulates a testing plan,
using the systems specifications.
The package “Virtual Private Network” has satisfied all the requirements specified as
per software requirement specification and was accepted.
USER TRAINING
Whenever a new system is developed, user training is required to educate them about
the working of the system so that it can be put to efficient use by those for whom the system
has been primarily designed. For this purpose, the normal working of the project was
demonstrated to the prospective users. Its working is easily understandable and since the
expected users are people who have good knowledge of computers, the use of this system is
very easy.
MAINTAINENCE
This covers a wide range of activities including correcting code and design errors. To
reduce the need for maintenance in the long run, we have more accurately defined the user’s
requirements during the process of system development. Depending on the requirements, this
system has been developed to satisfy the needs to the largest possible extent. With
development in technology, it may be possible to add many more features based on the
requirements in future. The coding and designing is simple and easy to understand which will
make maintenance easier.

TESTING STRATEGY:
A strategy for system testing integrates system test cases and design techniques into a
well-planned series of steps that results in the successful construction of software. The testing
strategy must co-operate test planning, test case design, test execution, and the resultant data
collection and evaluation. A strategy for software testing must accommodate low-level tests
that are necessary to verify that a small source code segment has been correctly implemented
as well as high level tests that validate major system functions against user requirements.
Software testing is a critical element of software quality assurance and represents the
ultimate review of specification design and coding. Testing represents an interesting anomaly
for the software. Thus, a series of testing are performed for the proposed system before the
system is ready for user acceptance testing.
SYSTEM TESTING:
Software once validated must be combined with other system elements (e.g., Hardware,
people, database). System testing verifies that all the elements are proper and that overall
system function performance is
achieved. It also tests to find discrepancies between the system and its original objective,
current specifications, and system documentation.
UNIT TESTING:
In unit testing different are modules are tested against the specifications produced during the
design for the modules. Unit testing is essential for verification of the code produced during
the coding phase, and hence the goals to test the internal logic of the modules. Using the
detailed design description as a guide, important Conrail paths are tested to uncover errors
within the boundary of the modules. This testing is carried out during the programming stage
itself. In this type of testing step, each module was found to be working satisfactorily as
regards to the expected output from the module.
In Due Course, latest technology advancements will be taken into consideration. As

part of technical build-up many components of the networking system will be generic in nature
so that future projects can either use or interact with this. The future holds a lot to offer to the
development and refinement of this project.

CHAPTER 7
RESULTS

RESULT
HOME PAGE
AUTHORITY CENTER

OWNER REGISTRATION

CLOUD SERVER LOGIN
Permission From Users
View SK Permission and download

Permission for patient view
View all owners and authorise
View patient details

View all SK permissions and download

CHAPTER 8
CONCLUSION

8.1 CONCLUSION
We proposed a privacy preserving CP-ABE scheme in the standard model. The

presented scheme has many advantages over the existing schemes, such as
constant size private keys and short cipher texts. And in decryption, it only needs
four pairing computations. The proposed scheme achieves selective security and
anonymity in a prime order group. In the standard model, we show the security
of the proposed scheme is reduced to the decisional n-BDHE and the DL
assumptions. Additionally, the proposed scheme supports authority verification
with no privacy leakage.
However, the introduced scheme only supports “AND” policy and relies on a
weak security model. How to construct a strong secure HP-CP-ABE scheme
with more flexible access policy is left for the future works.

CHAPTER 9
FUTURE ENHANCEMENTS

FUTURE ENHANCEMENT:
The above predictions prove that the scope of growth for cloud computing is
immense. More and more organizations need to prioritize the use of this technology.
In fact, they need to restructure and invest in coding standards that can support
seamless migration into the cloud. Also, cloud computing is strongly associated with
concepts like the internet of things. When data gets stored in the cloud, it becomes
easier for IoT to ensure performance, security, and functionality. The only limitation
would be the speed of the network, which controls the pace at which data is gathered
and processed. If the network is fast, everything else about the use of cloud
computing will fall in place.

REFERENCES
[1] P. P.Kumar, P. S.Kumar, and P. J. A. Alphonse, “Attribute based encryption in cloud
computing:Asurvey, gap analysis, and future directions,” J. Netw. Comput. Appl., vol. 108,
pp. 37–52, 2018.
[2] A. Sahai and B. Waters, “Fuzzy identity-based encryption,” in Proc. 24th Annu. Int. Conf.
Theory Applications Cryptographic Techn., May 2005, vol. LNCS 3494, 2015, pp. 457–473.
[3] K. Emura, A. Miyaji, A. Nomura, K. Omote, and M. Soshi, “A ciphertextpolicy
attribute-based encryption scheme with constant ciphertext length,” in Proc. 5th Int. Conf.
Inf. Security Practice Experience,Apr. 2009, pp. 13–23.
[4] J. Han, W. Susilo, Y. Mu, and J. Yan, “Privacy-preserving decentralized key-policy
attribute-based Encryption,” IEEE Trans. Parallel Distrib. Syst., vol. 23, no. 11, pp. 2150–
2162, Nov. 2012.
[5] S. Wang, J. Zhou, J. K. Liu, J. Yu, J. Chen, and W. Xie, “An efficient file hierarchy
attribute-based encryption scheme in cloud computing,” IEEE Trans. Inf. Forensics Secur.,
vol. 11, no. 6, pp. 1256–1277, Jun. 2016.
[6] A. Lewko and B. Waters, “Decentralizing attribute-based encryption,” in Proc. 30th
Annu. Int. Conf. Theory Appl. Cryptographic Techn.: Advances Cryptology, May 2011, pp.
568–588.
[7] B.Waters, “Dual system encryption: Realizing fully secure IBE and HIBE under simple
assumptions,” in Proc. 29th Annu. Int. Cryptology Conf. Advances Cryptology, Aug. 2009,
pp. 619–636.
[8] T. Nishide, K. Yoneyama, and K. Ohta, “Attribute-based encryption with partially
hidden encryptor-specified access structures,” in Proc. Appl. Cryptogr. Netw. Security, Jun.
2008, vol. LNCS 5037, pp. 111–129.
[9] J. Lai, X. Zhou, R. H. Deng, and Y. Li, “Fully secure cipertext-policy hiding CP-ABE,”
in Proc. 6th ACM Symp. Inf. Comput. Commun. Secur., 2011, pp. 24–39.
[10] J. Lai, X. Zhou, R. H. Deng,Y. Li, and K. Chen, “Expressive CP-ABE with partially
hidden access structures,” in Proc. 7th ACM Symp. Inf. Comput. Commun. Secur., May
2012, pp. 18–19.

[11] B. Waters, “Ciphertext-policy attribute-based encryption: An expressive, efficient, and

provably secure realization,” in Proc. 14th Int. Conf. Practice Theory Public Key
Cryptography Conf. Public Key Cryptography, Mar. 2011, pp 53–70.
[12] Y. S. Rao and R. Dutta, “Recipient anonymous ciphertext-policy attribute based
encryption,” in Proc. 9th Int. Conf. Inf. Sys. Secur., Dec. 2013, pp. 329–344.
[13] L. Zhang, Q. Wu, Y. Mu, and J. Zhang, “Privacy-preserving and secure sharing of PHR
in the cloud,” J. Med. Syst., vol. 40, pp. 1–13, 2016.
[14] M. Abdalla, D. Catalano, and D. Fiore,“Verifiable random functions: Relations to
identity-based key encapsulation and new constructions,” J. Cryptol., vol. 27, pp. 544–593,
2014.
[15] C. Huang, K. Yan, S.Wei, G. Zhang, and D. H. Lee, “Efficient anonymous attribute-
based encryption with access policy hidden for cloud computing,” in Proc. IEEE Int. Conf.
Progress Inform. Comput., Dec. 2017, pp. 266–270.
[16] Y. Zhang, X. Chen, J. Li, D.Wong, and H. Li “Anonymous attribute-based encryption
supporting efficient decryption test,” in Proc. 8th ACM Symp. Inf. Comput. Commun. Secur.,
May 2013, pp. 511–516.
[17] J. Li, H. Wang, Y. Zhang, and J. Shen, “Ciphertext-policy attribute-based encryption
with hidden access policy and testing,” KSII Trans. Internet Inf. Syst., vol. 10, no. 7, pp.
3339–3352, Jul. 2016.
[18] H. Cui, R. H. Deng, G. Wu, and J. Lai, “An efficient and expressive Ciphertext-policy
attribute-based encryption scheme with partially hidden access structures,” in Proc. 10th Int.
Conf. Prov. Secur., Nov. 2016, pp. 19–38.
[19] F. Khan, H. Li, L. Zhang, and J. Shen, “An expressive hidden access policy CP-ABE,”
in Proc. IEEE 2nd Int. Conf. Data Sci. Cyberspace, Jun. 2017, pp. 26–29.
[20] Y. Zhang, Z. Dong, and R. H. Deng, “Security and privacy in smart health: Efficient
policy-hiding attribute-based access control,” IEEE Int. Things J., vol. 5, no. 3, pp. 2130–
2145, Jun. 2018.
[21] A. Lewko, T. Okamoto, A. Sahai, K. Takashima, and B. Waters, “Fully secure
functional encryption: Attribute-based encryption and (hierarchical) inner product
encryption,” in Proc. 29th Annu. Int. Conf. Theory Appl. Cryptographic Techn., 2010, pp.
62–91.
[22] T. Okamoto and K. Takashima, “Adaptively attribute-hiding (hierarchical) inner
product encryption,” in Proc. 31st Annu. Int. Conf. Theory Appl. Cryptographic Techn., May
2012, pp. 591–608.

[23] T. V. X. Phuong, G. Yang, and W. Susilo, “Hidden ciphertext policy attribute-based

encryption under standard assumptions,” IEEE Trans. Inf. Forensics Secur., vol. 11, no. 1,
pp. 35–45, Jan. 2015.
[24] X. Boyen and B.Waters, “Anonymous hierarchical identity-based encryption (without
random oracles),” in Proc. 26th Annu. Int. Conf. Advances Cryptology, Aug. 2006, pp. 290–
307.
[25] J. H. Park and H. L. Dong, “Anonymous HIBE: Compact construction over prime-order
groups, “IEEE Trans. Inf. Theory, vol. 59, no. 4, pp. 2531–2541, Apr. 2013.
[26] J. H. Seo, T. Kobayashi, M. Oukubo, and K. Suzuki, “Anonymous hierarchical identity-
based encryption with constant size ciphertexts,” in Proc. Int. Conf. Practice Theory
PublicKey Cryptography, Mar. 2009, vol. 5443, pp. 215–234.
[27] F. Li and W. Wu, Pairing-Based Cryptography. Beijing, China: Science
Press, 2014.

Final Document

Uploaded by

Copyright:

Available Formats

Final Document

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Final Document

Uploaded by

Copyright:

Available Formats

Improving security and privacy attribute-based data sharing in cloud computing

MRCE Department of ITE 1

MRCE Department of ITE 2

MRCE Department of ITE 3

Figure No Name of the Figure Page No.

MRCE Department of ITE 4

LIST OF SCREEN SHOTS

Figure No Name of Screenshot Page No.

16. Home Page 62

MRCE Department of ITE 5

S. No Short Form Full Form

1. HTTP Hyper Text Transfer Protocol

MRCE Department of ITE 6

To tackle the problems mentioned above, a privacy preserving CP-ABE scheme

MRCE Department of ITE 7

MRCE Department of ITE 8

MRCE Department of ITE 9

MRCE Department of ITE 10

MRCE Department of ITE 11

2.1 LITERATURE SURVEY

MRCE Department of ITE 12

MRCE Department of ITE 13

3.1 Existing system

3.3 Proposed system

MRCE Department of ITE 14

In CP-ABE, the secret keys of users have to be issued by a trusted key

3.4 Advantages of Proposed System

3.5 System Requirements

➢ Key Board - Standard Windows Keyboard

➢ Mouse - Two or Three Button Mouse

MRCE Department of ITE 15

➢ Front End - J2EE

FEASIBILITY ANALYSIS: An important outcome of preliminary investigation is the

MRCE Department of ITE 16

Economic Feasibility or Cost-benefit is an assessment of the economic justification

MRCE Department of ITE 17

MRCE Department of ITE 18

SYSTEM DESIGN AND DEVELOPMENT

MRCE Department of ITE 19

4.1 System Architecture

MRCE Department of ITE 20

DATA FLOW DIAGRAM

MRCE Department of ITE 21

MRCE Department of ITE 22

4.3 UML Diagrams

MRCE Department of ITE 23

MRCE Department of ITE 24

State chart Diagram:

MRCE Department of ITE 25

MRCE Department of ITE 26

MRCE Department of ITE 27

MRCE Department of ITE 28

What is a client Server?

Why Client Server?

MRCE Department of ITE 29

Front end or User Interface Design

touch of Intranet-Based Architecture for achieving the Distributed Concept.

Communication or Database Connectivity Tier

The Communication architecture is designed by concentrating on the Standards of