Abstract：In view of the problems of traditional file sharing schemes, such as easy disclosure of files, difficulty in determining the destination of files, and complex access control, as well as the application requirements of cloud file classification management and sharing, a new hierarchical file access control scheme based on identity multi-condition proxy re-encryption was proposed. Firstly, the permission level of the file was taken as the condition of ciphertext generation, the trusted hierarchical management unit was introduced to determine and manage the user level. Secondly, the re-encryption key of the user's hierarchical access right was generated, which solved the problems that the identity based conditional proxy re-encryption scheme could only restrict the re-encryption behavior of the proxy server, and lacked the limitation of the user's permission. Meanwhile, the burden of the client was reduced, only encryption and decryption operations were needed for users. The results of comprehensive scheme analysis show that, compared with the existing access control schemes, the proposed scheme can complete the update of the access authority without the direct participation of user, and has the characteristics of anonymity of uploaders.