Enforcing dynamic write privileges in data outsourcing