支持策略更新的外包属性加密

doi:10.11959/j.issn.2096-109x.2016.00055

Abstract

Abstract:

In order to achieve the efficient and flexible access control for the encrypted data stored in the cloud,an outsourced attribute-based encryption scheme with policy update was proposed.Based on the standard attribute-based encryption scheme,the functionality of policy update from delegation for a ciphertext without revealing any confidential information of the plaintext and private keys by utilizing the techniques of key blinding and outsourcing decryption was accomplished.Simultaneously,the decryption overhead for a user to recover the plaintext was effectively reduced.The scheme supports non-monotonic access structure and can be proved to have selective IND-CPA security and private key security under standard assumptions,respectively,in the standard model.Compared with similar schemes from literatures,the scheme provides better security and efficiency.

Key words: attribute-based encryption, outsourced decryption, policy update, private key security

CLC Number:

TP309.7

Su-qing LIN. Outsourced attribute-based encryption with policy update[J]. Chinese Journal of Network and Information Security, 2016, 2(5): 39-49.

Figures/Tables 2

References 21

[9]	WATERS B , . Ciphertext-policy attribute-based encryption:An expressive,efficient,and provably secure realization[C]// Public Key Cryptography-PKC. c2011: 53-70.
[10]	LAI J , DENG R H , GUAN C ,et al. Attribute-based encryption with verifiable outsourced decryption[J]. Information Forensics and Security, 2013,8(8): 1343-1354.
[11]	LIN S , ZHANG R , MA H ,et al. Revisiting attribute-based encryption with verifiable outsourced decryption[J]. Information Forensics and Security, 2015,10(10): 2119-2130.
[12]	LI J , JIA C , LI J ,et al. Outsourcing encryption of attribute-based encryption with mapreduce[C]// The 14th Information and Communications Security. c2012: 191-201.
[13]	LI J , CHEN X , LI J ,et al. Fine-grained access control system based on outsourced attribute-based encryption[C]// Computer Security-ESORICS. c2013: 592-609.
[14]	LI J , HUANG X , LI J ,et al. Securely outsourcing attribute-based encryption with checkability[J]. Parallel and Distributed Systems, 2014,25(8): 2201-2210.
[15]	MA H , ZHANG R , WAN Z ,et al. Verifiable and exculpable outsourced attribute-based encryption for access control in cloud computing[J]. IEEE Transactions on Parallel and Distributed Systems, 2015:1.
[16]	HOHENBERGER S , WATERS B . Online/offline attribute-based encryption[C]// Public-Key Cryptography–PKC 2014. Berlin:Springer, 2014: 293-310.
[17]	ROUSELAKIS Y , WATERS B . Practical constructions and new proof methods for large universe attribute-based encryption[C]// The 2013 ACM SIGSAC Conference on Computer ＆ Communications Security. c2013: 463-474.
[18]	SHAO J , LU R , LIN X . Fine-grained data sharing in cloud computing for mobile devices[C]// Computer Communications (INFOCOM). c2015: 2677-2685.
[19]	BEIMEL A , . Secure schemes for secret sharing and key distribution[M]// Israel Institute of Technology. Haifa:Technion, 1996.
[20]	LIANG K , SUSILO W . Searchable attribute-based mechanism with efficient data sharing for secure cloud storage[J]. IEEE Transactions on Information Forensics and Security, 2015,10(9): 1981-1992.
[1]	SAHAI A , WATERS B . Fuzzy identity-based encryption[C]// International Conference on Theory and Applications of Cryptographic Techniques. c2005: 457-473.
[2]	LIANG X , CAO Z , LIN H ,et al. Attribute based proxy re-encryption with delegating capabilities[C]// The 4th International Symposium on Information,Computer,and Communications Security,ACM. c2009: 276-286.
[3]	CHEUNG L , NEWPORT C . Provably secure ciphertext policy ABE[C]// The 14th ACM conference on Computer and Communications Security. c2007: 456-465.
[4]	LUO S , HU J , CHEN Z . Ciphertext policy attribute-based proxy re-encryption[C]// The 12th Information and Communications Security. c2010: 401-415.
[5]	HOHENBERGER S , WATERS B . Attribute-based encryption with fast decryption[M]// Public-Key Cryptography-PKC 2013.Berlin:Springer. 2013: 162-179.
[6]	GREEN M , HOHENBERGER S , WATERS B . Outsourcing the Decryption of ABE Ciphertexts[C]// USENIX Security Symposium. c2011.
[7]	GOYAL V , PANDEY O , SAHAI A ,et al. Attribute-based encryption for fine-grained access control of encrypted data[C]// The 13th ACM Conference on Computer and Communications Security. c2006: 89-98.
[8]	LEWKO A , OKAMOTO T , SAHAI A ,et al. Fully secure functional encryption:attribute-based encryption and (hierarchical) inner product encryption[C]// Advances in Cryptology-EUROCRYPT. c2010: 62-91.
[21]	LIIN S , ZHANG R , WANG M . Verifiable attribute-based proxy re-encryption for secure public cloud data sharing[J]. Security and Communication Networks, 2016.

Metrics

Recommended 0

No Suggested Reading articles found!

方案	数据安全性		密钥安全性
方案	假设	安全级别	假设	安全级别
文献[18]	q?1型DPBDHE	选择IND-CPA	—	—
文献[2]	ADBDH	选择IND-CPA	CTDH	主私钥安全性
文献[4]	DBDH	选择IND-CPA	CBDH	私钥安全性
本文方案	DBDH	选择IND-CPA	CDH	私钥安全性

方案	访问结构	是否支持外包解密	终端解密计算量
文献[18]	线性秘密共享方案	是	E 或E+P
文献[2]	与门访问结构	否	(n+2)P
文献[4]	与门访问结构	否	3P
本文方案	与门访问结构	是	E

Outsourced attribute-based encryption with policy update

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 2

References 21

Related Articles 6

Metrics

Recommended 0

[1]	Yihua ZHOU, Xinyu HU, Meiqi LI, Yuguang YANG. Searchable encryption scheme based on attribute policy hiding in a cloud environment [J]. Chinese Journal of Network and Information Security, 2022, 8(2): 112-121.
[2]	Xinglan ZHANG,Yao CUI. Attribute-based encryption schema with group signatures [J]. Chinese Journal of Network and Information Security, 2019, 5(1): 15-21.
[3]	Suqing LIN. Verifiable outsourced attribute-based encryption with access update [J]. Chinese Journal of Network and Information Security, 2019, 5(1): 37-49.
[4]	Yang LI,Jiang-hua LIU,Wei WU. Group-oriented ciphertext-policy attribute-based encryption with expressive access policy [J]. Chinese Journal of Network and Information Security, 2017, 3(5): 54-61.
[5]	Tao FENG,Xiao-yu YIN. Research on privacy preserving mechanism of attribute-based encryption cloud storage [J]. Chinese Journal of Network and Information Security, 2016, 2(7): 8-17.
[6]	Liang-xuan ZHANG,Hui LI. Multi-authority attribute-based encryption with efficient user revocation in cloud computing [J]. Chinese Journal of Network and Information Security, 2016, 2(2): 62-74.