Abstract: This paper proposes a cryptographic access control scheme based on attribute in cloud storage for PHR .The symmetric crypto system(such as AES) is used to encrypt the original data by the Data Owner ,and the cipher-text attribute-based encryption algorithm is used to encrypt the symmetric key. According that the service of PHR Data has hierarchical users, purpose of accessing to PHR and hierarchical access control mechanism are combined to construct simple and efifcient access tree of CP-ABE, while simplifying the procedure of key management. By utilizing proxy re-encryption and lazy re-encryption, privileges are revoked by the cloud service provider, which can largely reduce computation tasks of DO.