In CloudIoT platform, the data is collected and shared by different nodes of Internet of Things (IoT), and data is processed and stored based on cloud servers. It has increased the abilities of IoT on information computation. Meanwhile, it also has enriched the resource in cloud and improved integration of the Internet and human world. All of this offer advantages as well as the new challenges of information security and privacy protection. As the energy limitation of the nodes in IoT, they are particularly vulnerable. It is much easier to hijack the nodes than to attack the data center for hackers. Thus, it is a crucial and urgent issue to realize the trusted update of authorization of nodes. When some nodes are hijacked, both of the behaviors to upload data to servers and to download information from servers should be forbidden. Otherwise, it might cause the serious damage to the sensitive data and privacy of servers. In order to solve this problem, we proposed a Proxy Re-encryption based Trusted Authorization scheme for nodes on CloudIoT (PRTA). PRTA is based on the proxy re-encryption (PRE), and the cloud server will play the roles of data storing and re-encrypting, which would reach the full potential of cloud computing and reduce the cost of nodes. The node’s status is taken as one of the parameters for data re-encryption and it is under the authorization servers’ control, which could ensure the security and reliability of the data and be beneficial for the privacy protection in CloudIoT. Also, the authorization servers are divided into the downloading and uploading kinds, which will make the application range much wider.

在CloudIoT平台中，数据是由物联网（IoT）的不同节点收集和共享的，并且数据是基于云服务器进行处理和存储的。它提高了物联网在信息计算方面的能力。同时，它还丰富了云中的资源，并改善了Internet与人类世界的集成。所有这些都提供了优点以及信息安全和隐私保护的新挑战。由于物联网中节点的能量限制，它们特别容易受到攻击。劫持节点比攻击黑客攻击数据中心要容易得多。因此，实现节点授权的可信更新是一个紧迫而紧迫的问题。当某些节点被劫持时，应禁止将数据上传到服务器和从服务器下载信息的两种行为。除此以外，它可能会严重损坏服务器的敏感数据和隐私。为了解决此问题，我们针对CloudIoT（PRTA）上的节点提出了一种基于代理重新加密的可信授权方案。PRTA基于代理重新加密（PRE），并且云服务器将扮演数据存储和重新加密的角色，这将充分发挥云计算的潜力并降低节点成本。节点的状态作为数据重新加密的参数之一，在授权服务器的控制下，可以确保数据的安全性和可靠性，有利于CloudIoT的隐私保护。另外，授权服务器分为下载和上传两种，这将使应用范围更加广泛。