一种支持属性撤销的ABE高效数据共享方案

doi:10.3969/j.issn.1006-2475.2016.02.015

计算机与现代化

一种支持属性撤销的ABE高效数据共享方案

河海大学计算机与信息学院,江苏南京211100

收稿日期:2015-09-07 出版日期:2016-03-02 发布日期:2016-03-03
作者简介:韦明伦(1990-)，男（壮族），广西桂林人，河海大学计算机与信息学院硕士研究生，研究方向：信息安全；吕鑫(1983-)，〖JP2〗男，江苏南京人，博士后，CCF会员，研究方向：密码学，网络信息安全；徐淑芳(1981-), 女，安徽青阳人，讲师，博士研究生，研究方向：通信工程；王龙宝（1977-），男，江苏盐城人，讲师，博士研究生，CCF会员，研究方向：机器学习，数据挖掘。
基金资助:
国家自然科学基金面上项目(61272543); 国家科技支撑计划(2013BAB06B04); 中国华能集团公司总部科技项目(HNKJ13-H17-04); 江苏省自然科学基金资助项目(BK20130852); 江苏省博士后科研资助计划(1401001C)

An Efficient Attribute Based Encryption Data Sharing Scheme of #br# Supporting Attribute Revocation

College of Computer and Information, Hohai University, Nanjing 211100, China

Received:2015-09-07 Online:2016-03-02 Published:2016-03-03

摘要/Abstract

摘要： 随着云计算的流行，越来越多的敏感数据存储在云端并通过Internet实现数据共享，与此同时也带来了很多安全问题。针对这一问题，提出一种基于CP-ABE的高效数据共享方案。该方案是一种非常适用于外包数据的细粒度访问控制加密方案，可用于解决云存储中的一些安全问题。采用只有与门的访问结构，以属性作为公钥，能够表示属性在与门中正、非和无关紧要3种情况，将密文与用户私钥属性相关联，支持代理重加密技术，能够灵活表示访问控制策略的同时减轻授权机构的负担，并能够实现用户属性的即时撤销和高效解密。

关键词: , 基于属性的加密；访问控制；密钥撤销

Abstract: With the popular of cloud computing, more and more sensitive data are stored on cloud and it can easily be shared over the Internet. At the same time, the problems of security come. To counter this problem, this paper proposes an effectual way for data shared based on CP-ABE. This encryption scheme is very applicable to fine-grained access controls of outsourced database, and can be used to solve some safety problems of cloud usage. In this paper, we use the access structure with only AND gates and make attributes as public key. Every attribute can express three different situations, including positive, negative, and irrelevant, in AND gate. In particular, It associates ciphertext with user‘s private key properties, supporting proxy re-encryption. Based on the above, this proposed scheme can also have high flexibility in representing access control policy and reduce the burden of authorized agency. In addition, it implemented instant revoking of user properties and efficient decryption.

Key words: Attribute-based Encryption (ABE), access control, key revocation

韦明伦，吕鑫，徐淑芳，王龙宝，李水艳，平萍，马鸿旭，刘璇. 一种支持属性撤销的ABE高效数据共享方案[J]. 计算机与现代化, doi: 10.3969/j.issn.1006-2475.2016.02.015.

WEI Ming-lun, LYU Xin, XU Shu-fang, WANG Long-bao, LI Shui-yan, PING Ping, MA Hong-xu, LIU Xuan. An Efficient Attribute Based Encryption Data Sharing Scheme of #br# Supporting Attribute Revocation[J]. Computer and Modernization, doi: 10.3969/j.issn.1006-2475.2016.02.015.

参考文献

［1］ Ruj Sushmita. Attribute based access control in clouds: A survey［C］// SPCOM 2014: Signal Processing and Communications. Bangalore: IEEE, 2014:1-6.
［2］李晖,孙文海,李凤华,等. 公共云存储服务数据安全及隐私保护技术综述［J］. 计算机研究与发展, 2014,51(7):1397-1409.
［3］ Sahai A, Waters B. Fuzzy identity-based encryption［C］// Advances in Cryptology - Eurocrypt 2005. 2005, 3494:457-473.
［4］ Goyal V, Pandey O, Sahai A, et al. Attribute-based encryption for fine-grained access control of encrypted data［C］// Proceedings of the 13th ACM Conference on Computer and Communications Security. 2006:89-98
［5］ Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute-based encryption［C］// IEEE Symposium on Security and Privacy. 2007:321-334.
［6］ Waters B. Ciphertext-policy attribute-based encryption: An expressive, efficient, and provably secure realization［C］// Public Key Cryptography-PKC 2011. 2011:53-70.
［7］ Wang Guojun, Liu Qin, Wu Jie. Hierarchical attribute-based encryption for fine-grained access control in cloud storage services［C］// Proceedings of the 17th ACM Conference on Computer and Communications Security. 2010:735-737.
［8］ Yu Shucheng, Wang Cong, Ren Kui, et al. Achieving secure, scalable, and fine-grained data access control in cloud computing［C］// INFOCOM 2010: International Conference on Computer Communications. 2010:1-9.
［9］ Chase M, Chow S. Improving privacy and security in multi-authority attribute-based encryption［C］// Proceedings of the 16th ACM Conference on Computer and Communications Security. 2009:121-130. 
［10］Hur J, Dong K. Attribute-based access control with efficient revocation in data outsourcing systems［J］. IEEE Transactions on Parallel & Distributed Systems, 2011,22(7):1214-1221.
［11］Wang Pengpian, Feng Dengguo, Zhang Liwu. Towards attribute revocation in key-policy attribute based encryption［C］// Cryptology and Network Security. 2011:272-291.
［12］Matthew P, Patrick T, Patrick M, et al. Secure attribute-based systems［C］// Proceedings of ACM Conference on Computer & Communications Security. 2006:99-112.
［13］ Yu Shucheng, Wang Cong, Ren Kui, et al. Attribute based data sharing with attribute revocation［C］// Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security. 2010:261-270. 
［14］Cheung L, Newport C. Provably secure ciphertext policy ABE［C］// Proceedings of the 2007 ACM Conference on Computer and Communications Security. 2007:456-465.
［15］Canetti R, Halevi S, Katz J. Chosen-Ciphertext security from identity-based encryption［C］// Advances in Cryptology-EUROCRYPT 2004. 2004:207-222.
［16］Nishide T, Yoneyama K, Ohta K. Attribute-Based encryption with partially hidden encryptor-specified access structures［C］// Proceedings of the Applied Cryptography and Network Security. 2008:111-129.
［17］Emura K, Miyaji A, Nomura A, et al. A ciphertext-policy attribute-based encryption scheme with constant ciphertext length［C］// Proceedings of the 5th International Conference on Information Security Practice and Experience (ISPEC 2009). 2009:13-23.

[1]	李静元, 张珂, 杨东裕. 基于雾计算的工业互联网安全数据访问方法[J]. 计算机与现代化, 2022, 0(12): 118-122.
[2]	陈春燕, 刘梦赤. 基于粒子群遗传算法的智能组卷策略[J]. 计算机与现代化, 2021, 0(08): 16-23.
[3]	宋鑫, 樊志强, . 基于Laguerre 前向神经网络的信息服务性能建模方法 [J]. 计算机与现代化, 2021, 0(03): 1-6.
[4]	魏健, 赵红涛, 刘敦楠, 加鹤萍 . 基于集成模型的超短时负荷预测方法[J]. 计算机与现代化, 2021, 0(03): 12-17.
[5]	段桂芹1，邹臣嵩2，刘锋2. 基于优化初始聚类中心的K中心点算法[J]. 计算机与现代化, 2019, 0(04): 1-.
[6]	李富星，蒙祖强 . 一种改进的类别区分词特征选择算法[J]. 计算机与现代化, 2019, 0(03): 73-.
[7]	白晓波1，邵景峰1，和征1，田建刚2. 基于学习的核偏最小二乘法优化扩展卡尔曼滤波[J]. 计算机与现代化, 2018, 0(09): 110-.
[8]	郑亚鹏，樊璐. 基于LSTM的临床血液需求预测方法[J]. 计算机与现代化, 2018, 0(05): 41-.
[9]	刘德春1，张秀国2，姜微2. 基于马尔科夫链的大学生自主学习能力预测方法[J]. 计算机与现代化, 2018, 0(05): 106-.
[10]	夏琨1，丁波1，刘俊1，刘子豪1，林亮成2. 基于内容分析的网络协议指纹识别[J]. 计算机与现代化, 2018, 0(05): 121-.
[11]	李华，江峰，于旭，杜军威，刘国柱. 基于粒度决策熵的属性约简[J]. 计算机与现代化, 2018, 0(04): 7-.
[12]	陈丽娟，谢伙生. 带负项值的onshelf效用项集并行挖掘算法[J]. 计算机与现代化, 2018, 0(04): 13-.
[13]	吴克介,王家伟. 基于知网与搜索引擎的词汇语义相似度计算[J]. 计算机与现代化, 2018, 0(04): 90-.
[14]	曲晓燕1，张勇亮2，吕晓峰1，马羚1. 基于模糊粒度相关向量机的缓变故障参数区间预测[J]. 计算机与现代化, 2017, 0(8): 5-.
[15]	付永忠，潘云峰. 基于改进蚁群算法的垂直旋转式贴片机贴装顺序优化[J]. 计算机与现代化, 2017, 0(8): 17-.

一种支持属性撤销的ABE高效数据共享方案

An Efficient Attribute Based Encryption Data Sharing Scheme of #br# Supporting Attribute Revocation

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价