Cloud computing, a new and widely-applied concept, makes hardware, software and information shared. It provides low-cost services for business and improves efficiency. Although cloud computing brings people convenience, cloud service providers must focus on data protection, identity management, application security, and privacy to ensure that data is secure and data privacy is protected. In this thesis, we make discussions on security mechanisms for cloud computing. In 2017, Kumari et al. proposed a biometrics-based authentication scheme to ensure the security of communications between a user and cloud-servers to realize Cloud of Things. They claimed their scheme ensured user anonymity. After analyzing Kumari et al.’s scheme, we find that one weakness exists in their scheme such that user anonymity is not ensured as claimed. On the other hand, users store and share confidential data in the cloud while this approach makes data security become an important and tough issue. To ensure data security, cloud service providers must provide efficient and feasible mechanisms to provide a reliable encryption method and a suitable access control system. In order to realize this ideal, Huang et al. proposed a data collaboration scheme with hierarchical attribute-based encryption in 2017. After analyzing Huang et al.’s scheme, we find that one weakness exists in their scheme such that the semi-trusted cloud service provider can decrypt the protected data to obtain the plaintext. Data confidentiality is not ensured as claimed. In this thesis, we will explicitly indicate how these weaknesses damage Kumari et al.’s and Huang et al.’s schemes designed for different applications in cloud computing.