期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

支持撤销属性和外包解密的CP-ABE方案 被引量:7

CP-ABE Scheme Supporting Attribute Revocation and Outsourcing Decryption
在线阅读 下载PDF
导出
摘要 属性基加密机制能够为云环境下的数据分享和管理提供灵活的访问控制方案。然而,传统的属性基加密方案存在解密复杂度高和属性撤销困难的问题,导致属性基加密机制在实际中的应用受限。针对上述问题,文章提出一种支持撤销属性和外包解密的密文策略属性基加密方案,该方案在属性撤销过程只需更新对应的密文组件,有效降低密文更新的计算开销,并且属性撤销过程对用户是透明的,用户不需要参与密文和密钥的更新,减少了属性撤销对用户的影响。同时,引入解密代理将解密过程中计算开销较大的部分外包到服务端,降低用户端解密开销。安全性分析表明,该方案可以抵抗联合共谋以及选择性明文攻击,并通过对比分析得到该方案在密文更新和解密过程的计算开销均具有一定的优势。 The attribute-based encryption mechanism provides a flexible access control scheme for data sharing and management in a cloud environment.However,the traditional attribute-based encryption scheme has the problems of high decryption complexity and difficulty in attribute revocation,which leads to limited application of the attribute-based encryption mechanism in practice.Aiming at the above problems,this paper proposes a ciphertext-policy attribute-based encryption scheme,which only needs to update the corresponding secret in the attribute revocation process.The text component effectively reduces the computational cost of the ciphertext update,and the attribute revocation process is transparent to the user.The user does not need to participate in the ciphertext and the key update,thereby reducing the impact of the attribute revocation on the user.At the same time,the decryption agent is introduced to outsource the part with large computational cost in the decryption process to the server,thereby reducing the decryption overhead of the client.Security analysis shows that this scheme can resist joint collusion and selective plaintext attacks.Finally,through comparative analysis,the scheme has certain advantages in the computational overhead of the ciphertext update and decryption process.
作者 刘鹏 何倩 刘汪洋 程序 LIU Peng;HE Qian;LIU Wangyang;CHENG Xu(CETC Big Data Research Institute Co.,Ltd.,Guiyang 550018,China;Guangxi Key Laboratory of Cryptography and Information Security,Guilin University of Electronic Technology,Guilin 541004,China)
机构地区 中电科大数据研究院有限公司 桂林电子科技大学广西密码学与信息安全重点实验室
出处 《信息网络安全》 CSCD 北大核心 2020年第3期90-97,共8页 Netinfo Security
基金 国家自然科学基金[61661015] 广西云计算与大数据协同创新基金[YD16801,C77KYS02SX18] 广西创新驱动重大专项[AA17202024] 广西密码学与信息安全重点实验室基金[CIS201701]。
关键词 属性基加密 访问控制 属性撤销 外包解密 attribute-based encryption access control attribute revocation outsourcing decryption
分类号 TP309 [自动化与计算机技术—计算机系统结构]
  • 相关文献

参考文献4

二级参考文献41

  • 1罗武庭.DJ—2可变矩形电子束曝光机的DMA驱动程序[J].LSI制造与测试,1989,10(4):20-26. 被引量:373
  • 2Organization for the Advancement of Structured Information Standards (OASIS) http://www.oasis-open.org/.
  • 3Distributed Management Task Force (DMTF) http://www.dmtf.org/home.
  • 4Cloud Security Alliance http://www.cloudsecurityalliance.org.
  • 5Crampton J, Martin K, Wild P. On key assignment for hierarchical access control. In: Guttan J, ed, Proc. of the 19th IEEE Computer Security Foundations Workshop--CSFW 2006. Venice: IEEE Computer Society Press, 2006. 5-7.
  • 6Damiani E, De S, Vimercati C, Foresti S, Jajodia S, Paraboschi S, Samarati P. An experimental evaluation of multi-key strategies for data outsourcing. In: Venter HS, Eloff MM, Labuschagne L, Eloff JHP, Solms RV, eds. New Approaches for Security, Privacy and Trust in Complex Environments, Proc. of the IFIP TC-11 22nd Int'l Information Security Conf. Sandton: Springer-Verlag, 2007. 395-396.
  • 7Bethencourt J, Sahai A, Waters B. Ciphertext-Policy attribute-based encryption. In: Shands D, ed. Proc. of the 2007 IEEE Symp. on Security and Privacy. Oakland: IEEE Computer Society, 2007. 321-334. [doi: 10.1109/SP.2007.11].
  • 8Yu S, Ren K, Lou W, Li J. Defending against key abuse attacks in KP-ABE enabled broadcast systems. In: Bao F, ed. Proc. of the 5th Int'l Conf. on Security and Privacy in Communication Networks. Singapore: Springer-Verlag, http://www.linkpdf.com/ ebook-viewer.php?url=http://www.ualr.edu/sxyul/file/SecureCommO9_AFKP_ABE.pdf.
  • 9Ibraimi L, Petkovic M, Nikova S, Hartel P, Jonker W. Ciphertext-Policy attribute-based threshold decryption with flexible delegation and revocation of user attributes. Technical Report, Centre for Telematics and Information Technology, University of Twente, 2009.
  • 10Roy S, Chuah M. Secure data retrieval based on ciphertext policy attribute-based encryption (CP-ABE) system for the DTNs. Technical Report, 2009.

共引文献1110

同被引文献32

引证文献7

二级引证文献17

信息网络安全
2020年 第3期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部