通信学报 ›› 2015, Vol. 36 ›› Issue (12): 1-221.doi: 10.11959/j.issn.1000-436x.2015327

• 数据安全 •    下一篇

支持动态策略更新的半策略隐藏属性加密方案

应作斌,马建峰,崔江涛   

  1. 西安电子科技大学 计算机学院,陕西 西安 710071
  • 出版日期:2015-12-25 发布日期:2017-07-17
  • 基金资助:
    国家自然科学基金资助项目;国家自然科学基金资助项目;国家自然科学基金资助项目;国家自然科学基金资助项目;国家高技术研究发展计划(“863”计划)基金资助项目;教育部留学回国人员科研启动计划基金资助项目

Partially policy hidden CP-ABE supporting dynamic policy updating

Zuo-bin YING,Jian-feng MA,Jiang-tao CUI   

  1. School of Computer Science and Technology,Xidian University,Xi’an 710071,China
  • Online:2015-12-25 Published:2017-07-17
  • Supported by:
    The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National High Technology Research and Development Program (863 Program);SRF for ROCS,SEM and the Fundamental Research Funds for the Central Universities

摘要:

基于密文策略的属性加密被认为适用于云存储的环境,但当数据拥有者需要更新访问策略时,现有的更新方式因受数据的规模和属性集的大小的限制,会使数据拥有者增加相应的计算开销和通信开销。同时,以明文形式存放在云端的访问策略也会造成用户数据的隐私泄露。针对以上2个问题,提出了一种支持动态策略更新的半策略隐藏属性加密方案,使用所提方案进行策略更新时,用户的计算开销减少,大量的计算由云服务器承担。由于使用了半策略隐藏,用户的具体属性值不会泄露给其他任何第三方,有效保护了用户的隐私。此外,所提方案可以支持任何形式的策略更新,在标准模型下证明了方案是自适应选择明文攻击(CPA)安全的。

关键词: 密文策略属性加密, 动态策略更新, 半策略隐藏, 标准模型, 自适应选择明文攻击安全

Abstract:

Ciphertext-policy attribute-based encryption (CP-ABE) was considered to be appropriate for cloud storage.However,under traditional CP-ABE scheme which was limited in terms of the scale of the data and the quantities of the attributes,computation and communication costs would be introduced correspondingly whenever the data owner wants to update the policy.Moreover,the policy which was stored in the form of plaintext would also result in privacy leakage.Aiming at tackling the above two problems,a novel scheme called partially policy hidden CP-ABE supporting dynamic policy updating (DPUPH-CP-ABE) was proposed.Through utilizing proposed scheme,the computation cost will be reduced,especially on user side,leaving the most computational work to the cloud server.Meanwhile,the value of the user’s attributes will never be revealed to any third parties,and the users’ privacy will be effectively preserved.Besides,the scheme is proved to be adaptively chosen plaintext attack (CPA) secure in the standard model and can support any types of policy updating.

Key words: ciphertext-policy ABE, dynamic policy updating, partially policy hidden, standard model, adaptive chosen plaintext attack secure

[1] 刘伯涛. 移动回传的融合之路[J]. 电信科学, 2009, 25(11): 91 -93 .
[2] 鲜永菊,董灿,张祖凡,吴东伟. LTE-A载波聚合下的载波切换分析[J]. 电信科学, 2009, 25(12): 46 -50 .
[3] 桑俊俊,石胜飞,李建中,熊蜀光. 无线传感器网络分布式单向链路检测算法[J]. 通信学报, 2008, 29(11): 22 -172 .
[4] 曾 益,胡 波,冯 辉. 用于传感器网络的高效分时洪泛时钟同步协议[J]. 通信学报, 2007, 28(5): 2 -14 .
[5] 王俊波,陈 明. 单业务TDD-CDMA系统上行用户容量分析[J]. 通信学报, 2007, 28(6): 8 -53 .
[6] 欧智慧,赵亚群. 一类对称布尔函数的研究[J]. 通信学报, 2013, 34(1): 10 -95 .
[7] 彭俊宇,蔡孙增,朱正航,徐景,周婷. 基于MIMO-OFDM的高频段Gbit/s通信系统设计和实现[J]. 电信科学, 2014, 30(6): 95 -101 .
[8] 葛仕明,程义民,曾 丹. 基于边缘方向投影的图像块修复方法[J]. 通信学报, 2008, 29(1): 5 -38 .
[9] 刘月平,姜秋喜,毕大平,崔 瑞. 网络雷达对Rician目标检测性能分析[J]. 通信学报, 2011, 32(10): 3 -26 .
[10] 干 楠,龚声蓉,王朝晖,刘纯平,刘 全. 基于张量投票的空域错误隐藏算法[J]. 通信学报, 2011, 32(10): 16 -134 .