通信学报 ›› 2022, Vol. 43 ›› Issue (5): 144-154.doi: 10.11959/j.issn.1000-436x.2022104

• 学术论文 • 上一篇    下一篇

基于云边协同的无证书多用户多关键字密文检索方案

杨小东1, 田甜1, 王嘉琪1, 李梅娟1, 王彩芬2   

  1. 1 西北师范大学计算机科学与工程学院,甘肃 兰州 730070
    2 深圳技术大学大数据与互联网学院,广东 深圳 518118
  • 修回日期:2022-03-11 出版日期:2022-05-25 发布日期:2022-05-01
  • 作者简介:杨小东(1981- ),男,甘肃甘谷人,博士,西北师范大学教授,主要研究方向为信息安全及云计算安全
    田甜(1998- ),女,甘肃兰州人,西北师范大学硕士生,主要研究方向为信息安全及密码学
    王嘉琪(1997- ),女,甘肃兰州人,西北师范大学硕士生,主要研究方向为密码学及信息安全
    李梅娟(1997- ),女,甘肃临洮人,西北师范大学硕士生,主要研究方向为密码学及信息安全
    王彩芬(1963- ),女,河北安国人,博士,深圳技术大学教授,主要研究方向为密码学及信息安全
  • 基金资助:
    国家自然科学基金资助项目(61662069);国家自然科学基金资助项目(61562077);国家自然科学基金资助项目(61702552);广东省教育厅基金资助项目(2020KTSCX126);中国博士后科学基金资助项目(2017M610817);甘肃省科技计划基金资助项目(20CX9ZA076)

Certificateless ciphertext retrieval scheme with multi-user and multi-keyword based on cloud-edge collaboration

Xiaodong YANG1, Tian TIAN1, Jiaqi WANG1, Meijuan LI1, Caifen WANG2   

  1. 1 College of Computer Science and Engineering, Northwest Normal University, Lanzhou 730070, China
    2 College of Big Data and Internet, Shenzhen Technology University, Shenzhen 518118, China
  • Revised:2022-03-11 Online:2022-05-25 Published:2022-05-01
  • Supported by:
    The National Natural Science Foundation of China(61662069);The National Natural Science Foundation of China(61562077);The National Natural Science Foundation of China(61702552);Educational Commission of Guangdong Province(2020KTSCX126);Project of China Postdoctoral Science Foundation(2017M610817);Gansu Science and Technology Planning Project(20CX9ZA076)

摘要:

针对工业物联网环境中密文数据检索面临的单用户单关键字搜索、计算开销过大、安全等级较低等问题,提出了一种基于云边协同的无证书多用户多关键字密文检索方案。所提方案通过设定用户访问权限表并执行一次加密算法,实现了支持用户访问权限更新的多用户搜索。利用线性扫描方法进行关键字密文与陷门的匹配计算,并引入云边协同的计算模式提高计算效率,实现了关键字索引不完全包含检索关键字情况下的多关键字密文检索。基于无证书加密体制解决了密钥托管与证书管理问题,并使用数字签名技术确保了关键字密文的可认证性。安全分析结果表明,所提方案在随机预言模型下能抵抗内部关键字猜测攻击。仿真实验结果表明,与同类方案相比较,所提方案具有较高的计算效率。

关键词: 密文数据检索, 云边协同, 多关键字, 多用户, 工业物联网

Abstract:

To solve the problems of single-user search, single-keyword search, high computational cost and low-security level of ciphertext data retrieval in the industrial Internet of things environment, a certificateless ciphertext retrieval scheme with multi-user and multi-keyword based on cloud-edge collaboration was proposed.A user access permissions table was set and once encryption algorithm was executed to realize multi-user search and update users’ access permissions.A cloud-side collaborative computing model was introduced to match keyword ciphertext and keyword trapdoor efficiently by a linear scanning method when the keyword ciphertext does not entirely contain the search keyword.Key escrow and certificate management problems were solved by utilizing certificateless encryption system.Keyword ciphertext authentication was ensured by using digital signature technology.The security analysis results show that the proposed scheme can resist internal keyword guessing attacks under the random oracle model.Simulation results show that the proposed scheme has higher computational efficiency compared with similar schemes.

Key words: ciphertext data retrieval, cloud-edge collaboration, multi-keyword, multi-user, industrial Internet of things

中图分类号: 

No Suggested Reading articles found!