支持安全外包计算的无线体域网数据共享方案

doi:10.11959/j.issn.1000-436x.2017085

通信学报 ›› 2017, Vol. 38 ›› Issue (4): 64-75.doi: 10.11959/j.issn.1000-436x.2017085

支持安全外包计算的无线体域网数据共享方案

张维纬^1,²,张育钊^1,²,黄焯^1,²,张茹³,杨义先³

¹ 华侨大学工学院，福建泉州 362021
² 工业智能化技术与系统福建省高校工程研究中心，福建泉州 362021
³ 北京邮电大学信息安全中心，北京100876

修回日期:2017-03-02 出版日期:2017-04-01 发布日期:2017-07-20
作者简介:张维纬（1982-），男，福建泉州人，博士，华侨大学讲师、硕士生导师，主要研究方向为大数据与云计算安全、物联网安全与密码学等。|张育钊（1963-），男，福建泉州人，华侨大学副教授、硕士生导师，主要研究方向为嵌入式系统安全、物联网技术应用等。|黄焯（1993-），男，福建福州人，华侨大学硕士生，主要研究方向为数据挖掘、云计算安全等。|张茹（1976-），女，山东济南人，博士，北京邮电大学副教授、硕士生导师，主要研究方向为数字水印、数字图像取证与密码学等。|杨义先（1961-），男，四川绵阳人，博士，北京邮电大学教授、博士生导师，主要研究为网络与信息安全、密码学、编码理论等。
基金资助:
华侨大学科研基金资助项目(13BS415);泉州市科技计划基金资助项目(2014Z112);福建省自然科学基金资助项目(2015J05125);国家自然科学基金资助项目(61372107)

Data sharing scheme supporting secure outsourced computation in wireless body area network

Wei-wei ZHANG^1,²,Yu-zhao ZHANG^1,²,Chao HUANG^1,²,Ru ZHANG³,Yi-xian YANG³

¹ College of Engineering,Huaqiao University,Quanzhou 362021,China
² Fujian Provincial Academic Engineering Research Centre in Industrial Intellectual Techniques and Systems,Quanzhou 362021,China
³ Information Security Center,Beijing University of Posts and Telecommunications,Beijing 100876,China

Revised:2017-03-02 Online:2017-04-01 Published:2017-07-20
Supported by:
Research Foundation of Huaqiao University(13BS415);Science and Technology Development Foundation of Quanzhou City(2014Z112);The Natural Science Foundation of Fujian Province(2015J05125);The National Natural Science Foundation of China(61372107)

摘要/Abstract

摘要：

如何有效保护无线体域网（WBAN）中数据共享时的数据安全是一个亟待解决的关键问题。传统的CP-ABE机制具有“一对多”的数据安全通信功能，适用于 WBAN 中的访问控制，但运算复杂度高且不支持属性撤销。充分考虑WBAN节点资源的有限性和用户属性的动态性，提出一种在标准模型下CPA安全、支持属性撤销、加密和解密安全外包计算的CP-ABE方案。与已有的方案相比，提出的方案在保证安全性的同时，终端的运算负担大为减少，且可以实时、细粒度地撤销用户属性。

关键词: 无线体域网, 安全共享, 外包计算, 属性基加密, 属性撤销

Abstract:

How to effectively protect the security of data sharing in WBAN was a key problem to be solved urgently.The traditional CP-ABE mechanism had a 〝one to many〝 data security communication function which was suitable for access control in WBAN,but it had high computational complexity and did not support attribute revocation.Fully considering of limitations on computation and storage of sensor nodes and dynamic user attribute in WBAN,a CP-ABE scheme was proposed which was provably secure against CPA under the standard model and supported attributes revocation,outsourced encryption and decryption.Compared with the proposed schemes,the computation burden on senor nodes is greatly reduced and the user's attribution can be revoked immediately and fine grained while meeting the demand of its security in the proposed scheme.

Key words: wireless body area network, security sharing, outsourced computation, attribute-based encryption, attribute revocation

中图分类号:

TP309

张维纬,张育钊,黄焯,张茹,杨义先. 支持安全外包计算的无线体域网数据共享方案[J]. 通信学报, 2017, 38(4): 64-75.

Wei-wei ZHANG,Yu-zhao ZHANG,Chao HUANG,Ru ZHANG,Yi-xian YANG. Data sharing scheme supporting secure outsourced computation in wireless body area network[J]. Journal on Communications, 2017, 38(4): 64-75.

图/表 10

表1

图1

图2

图3

表2

表3

本文方案与文献[12,19]计算复杂度比较"

方案	本地加密	外包加密	本地解密	外包解密	安全模型
文献[12]	$(3 l + 1) t_{E} + t_{T}$	—	(2η+1)t_p+ηt_T	—	d-parallel BDHE
文献[19]	5t _E+t_T	(6l+1) _Et	t _T	(4η+3)t_p+(3η 4)+ t_T	Generic Group
本文方案	4t _E+t_T	(5l+1) _Et	t _T	(2η+1)t_p+ηt_T	d-parallel BDHE

表3

图4

图5

图6

图7

参考文献 23

[1]	HUSSEIN M , FRANCIS M B . Optimal relay selection and power control with quality-of-service provisioning in wireless body area networks[J]. IEEE Transactions on Wireless Communications, 2016,15(8): 5497-5510.
[2]	HU F Y , WANG L , WANG S S . A human body posture recognition algorithm based on BP neural network for wireless body area networks[J]. China Communications, 2016,13(8): 198-208.
[3]	肖人毅 . 云计算中数据隐私保护研究进展[J]. 通信学报, 2014,35(12): 168-177.
	XIAO R Y . Survey of privacy preserving data queries in cloud computing[J]. Journal on Communications, 2014,35(12): 168-177.
[4]	董晓蕾 . 物联网隐私保护研究进展[J]. 计算机研究与发展, 2015,52(10): 2341-2351.
	DONG X L . Advances of privacy preservation in internet of things[J]. Journal of Computer Research and Development, 2015,52(10): 2341-2351.
[5]	LI M , LOU W , REN K . Data security and privacy in wireless body area networks[J]. IEEE Wireless Communications, 2010,17(1): 51-58.
[6]	HU C Q , LI H J , HUO Y ,et al. Secure and efficient data communication protocol for wireless body area networks[J]. IEEE Transactions on Multi-Scale Computing Systems, 2016,2(2): 94-107.
[7]	TIAN Y , PENG Y B , PENG X G ,et al. An attribute-based encryption scheme with revocation for fine-grained access control in wireless body area networks[J]. International Journal of Distributed Sensor Networks, 2014,10(11): 1-11.
[8]	LIU X Y , ZHU Y S , GE Y ,et al. A secure medical information management system for wireless body area networks[J]. KSII Transactions on Internet and Information Systems, 2016,10(1): 221-237.
[9]	SAHAI A , WATERS B . Fuzzy identity-based encryption[C]// Eurocrypt 2005. Berlin:Heidelberg, 2005: 457-473.
[10]	GOYAL V , PANDEY O , SAHAI A ,et al. Attribute-based encryption for fine-grained access control of encrypted data[C]// The ACM 13th Conference on Computer and Communications Security. 2006: 89-98.
[11]	BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption[C]// 2007 IEEE Symposium on Security and Privacy. Berkeley,CA:IEEE, 2007: 321-334.
[12]	WATERS B , . Ciphertext-policy attribute-based encryption:an expressive,efficient and provably secure realization[C]// PKC 2011. Berlin:Heidelberg, 2005: 53-70.
[13]	YU S , REN K , LOU W . FDAC:Toward fine-grained distributed data access control in wireless sensor networks[J]. IEEE Transactions on Parallel and Distributed Systems, 2011,22(4): 637-686.
[14]	PICAZO-SANCHEZ P , TAPIADOR J E,PERIS-LOPEZ P ,et al. Secure publish-subscribe protocols for heterogeneous medical wireless body area networks[J]. Sensors, 2014,14(12): 22619-22642.
[15]	GUO F , MU Y , SUSILO W ,et al. CP-ABE with constant-size keys for lightweight devices[J]. IEEE Transactions on Information Forensics and Security, 2014,9(5): 763-771.
[16]	GREEN M , HOHENBERGER S , WATERS B . Outsourcing the decryption of ABE ciphertexts[C]// USENIX Security Symposium. Berkeley,CA:USENIX, 2011: 523-538.
[17]	ASIM M , PETKOVIC M , IGNATENKO T . Attribute-based encryption with encryption and decryption outsourcing[C]// The 12th Australian Information Security Management Conference,Perth,Western Australia,Austria:Edith Cowan University, 2014: 21-28.
[18]	ZHOU Z B , HUANG D J . Efficient and secure data storage operations for mobile cloud computing[C]// The 8th International Conference on Network and Service Management,Laxenburg,Austria:International Federation for Information Processing. 2012: 37-45.
[19]	ZHOU S G , DU R Y , CHEN J ,et al. FACOR:flexible access control with outsourceable revocation in mobile clouds[J]. China Communications, 2016,13(4): 136-150.
[20]	SHOUP V , . Lower bounds for discrete logarithms and related problems[C]// Eurocrypt'97. 1997: 256-266.
[21]	MAURER U , . Abstract models of computation in cryptography[C]// Cryptography and Coding 2005. 2005: 1-12.
[22]	BONEH D , FRANKLIN M . Identity-based encryption from the weil paring[C]// CRYPTO 2001. Berlin:Heidelberg, 2001: 213-229.
[23]	BEIMEL A . Secure schemes for secret sharing and key distribution[D]. Haifa:Israel Institute of Technology, 1996.

符号	说明
BSN	体域网
ESP	加密服务提供商
DSP	解密服务提供商
AA	权威机构
CSP	云服务提供商
EU	终端用户

支持安全外包计算的无线体域网数据共享方案

Data sharing scheme supporting secure outsourced computation in wireless body area network

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 10

参考文献 23

相关文章 15

Metrics

推荐阅读 0

[1]	刘雪娇, 曹天聪, 夏莹杰. 区块链架构下高效的车联网跨域数据安全共享研究[J]. 通信学报, 2023, 44(3): 186-197.
[2]	杜瑞忠, 张添赫, 石朋亮. 基于区块链且支持数据共享的密文策略隐藏访问控制方案[J]. 通信学报, 2022, 43(6): 168-178.
[3]	殷新春, 王梦宇, 宁建廷. 轻量级可搜索医疗数据共享方案[J]. 通信学报, 2022, 43(5): 110-122.
[4]	王继锋, 王国峰. 边缘计算模式下密文搜索与共享技术研究[J]. 通信学报, 2022, 43(4): 227-238.
[5]	刘玉红, 杨亮, 朴春慧, 张志国. 基于区块链的铁路工程施工安全监测数据共享关键技术研究[J]. 通信学报, 2021, 42(8): 206-216.
[6]	杜瑞忠, 闫沛文, 刘妍. 雾计算中细粒度属性更新的外包计算访问控制方案[J]. 通信学报, 2021, 42(3): 160-170.
[7]	张嘉伟, 马建峰, 马卓, 李腾. 云计算中基于时间和隐私保护的可撤销可追踪的数据共享方案[J]. 通信学报, 2021, 42(10): 81-94.
[8]	郑东, 朱天泽, 郭瑞. 基于区块链的多用户环境中公钥可搜索加密方案[J]. 通信学报, 2021, 42(10): 140-152.
[9]	闫玺玺,何旭,刘涛,叶青,于金霞,汤永利. 抗密钥委托滥用的可追踪属性基加密方案[J]. 通信学报, 2020, 41(4): 150-161.
[10]	闫玺玺,原笑含,汤永利,陈艳丽. 基于区块链且支持验证的属性基搜索加密方案[J]. 通信学报, 2020, 41(2): 187-198.
[11]	李学俊,张丹,李晖. 可高效撤销的属性基加密方案[J]. 通信学报, 2019, 40(6): 32-39.
[12]	孙磊,赵志远,王建华,朱智强. 云存储环境下支持属性撤销的属性基加密方案[J]. 通信学报, 2019, 40(5): 47-56.
[13]	刘建,鲜明,王会梅,荣宏. 面向移动云的属性基密文访问控制优化方法[J]. 通信学报, 2018, 39(7): 39-49.
[14]	张顺,范鸿丽,仲红,田苗苗. 无线体域网中高效可撤销的无证书远程匿名认证协议[J]. 通信学报, 2018, 39(4): 100-111.
[15]	闫玺玺,刘媛,李子臣,汤永利,叶青. 理想格上支持隐私保护的属性基加密方案[J]. 通信学报, 2018, 39(3): 128-135.