基于OBDD访问结构的无配对CP-ABE方案

doi:10.11959/j.issn.1000-436x.2019234

通信学报 ›› 2019, Vol. 40 ›› Issue (12): 1-8.doi: 10.11959/j.issn.1000-436x.2019234

• 学术论文 • 下一篇

基于OBDD访问结构的无配对CP-ABE方案

丁晟,曹进,李晖

西安电子科技大学网络与信息安全学院，陕西西安 710071

修回日期:2019-09-18 出版日期:2019-12-25 发布日期:2020-01-16
作者简介:丁晟（1990- ），男，陕西西安人，西安电子科技大学博士生，主要研究方向为数据安全、访问控制、区块链等|曹进（1986- ），男，陕西西安人，博士，西安电子科技大学副教授、博士生导师，主要研究方向为无线网络安全|李晖（1968- ），男，河南灵宝人，博士，西安电子科技大学教授、博士生导师，主要研究方向为密码信息安全、信息论与编码理论
基金资助:
国家重点研发计划基金资助项目(2017YFB0802700);国家自然科学基金资助项目(61772404)

Efficient pairing-free CP-ABE based on ordered binary decision diagram

Sheng DING,Jin CAO,Hui LI

School of Cyber Engineering,Xidian University,Xi’an 710071,China

Revised:2019-09-18 Online:2019-12-25 Published:2020-01-16
Supported by:
The National Key Research and Development Program of China(2017YFB0802700);The National Natural Science Foundation of China(61772404)

摘要/Abstract

摘要：

为了提高基于属性加密技术的计算效率，对属性基加密构造中重要的一环——访问策略进行了优化，基于有序二元决策图（OBDD）提出了一种新型的无配对CP-ABE方案。一方面，所提方案基于椭圆曲线密码技术，将传统CP-ABE方案构造中复杂的双线性配对运算替换为较为轻量级的标量乘法，降低了方案整体的计算开销。另一方面，所提方案采用基于OBDD的访问结构，该类型访问结构不仅能表示任何关于属性的布尔表达式，还能同时支持访问策略中属性的正负值，密钥的长度不随属性的个数而正比变化，密文长度也仅与访问策略中有效路径的个数有关。安全性和性能分析结果表明，所提方案在判定性Diffie-Hellman (DDH) 假设下满足选择性选择明文安全，且方案的计算效率能满足物联网的实际应用需求。

关键词: 密文策略基于属性加密, 有序二元决策图, 椭圆曲线密码, 无配对

Abstract:

To improve the computational efficiency of ABE,its access structure was optimized and a pairing-free CP-ABE scheme based on ordered binary decision diagram (OBDD) was proposed.Based on the elliptic curve cryptography,the complex bilinear pairing operation in traditional CP-ABE was replaced with the relatively lightweight scalar multiplication,thus the overall computation overhead was reduced.And OBDD was used as the access structure of CP-ABE,which can not only represent any Boolean expression about attributes,but also support both positive and negative attributes.The length of the key was independent of the number of attributes and the length of the ciphertext was only related to the number of valid paths in the access policy.The security and performance analysis show that the scheme can resist chosen plaintext attack under the decisional Diffie-Hellman (DDH) assumption,and the computation efficiency can meet the practical application requirements of Internet of things.

Key words: CP-ABE, ordered binary decision diagram, elliptic curve cryptography, pairing-free

中图分类号:

TP393

丁晟,曹进,李晖. 基于OBDD访问结构的无配对CP-ABE方案[J]. 通信学报, 2019, 40(12): 1-8.

Sheng DING,Jin CAO,Hui LI. Efficient pairing-free CP-ABE based on ordered binary decision diagram[J]. Journal on Communications, 2019, 40(12): 1-8.

图/表 5

图1

图2

表1

表2

表3

参考文献 25

[1]	DING S , LI C , LI H . A novel efficient pairing-free CP-ABE based on elliptic curve cryptography for IoT[J]. IEEE Access, 2018(6): 27336-27345.
[2]	WATERS B , . Ciphertext-policy attribute-based encryption:an expressive,efficient,and provably secure realization[C]// International Workshop on Public Key Cryptography. Springer, 2011: 53-70.
[3]	CHEUNG L , NEWPORT C . Provably secure ciphertext policy ABE[C]// The 14th ACM conference on Computer and communications security. ACM, 2007: 456-465.
[4]	BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption[C]// 2007 IEEE Symposium on Security and Privacy. IEEE, 2007: 321-334.
[5]	JOUX A . A one round protocol for tripartite Diffie-Hellman[J]. Journal of Cryptology, 2004,17(4): 263-276.
[6]	BONEH D , LYNN B , SHACHAM H . Short signatures from the Weil pairing[J]. Journal of Cryptology, 2004,17(4): 297-319.
[7]	BONEH D , FRANKLIN M . Identity-based encryption from the Weil pairing[C]// Annual International Cryptology Conference. Springer, 2001: 213-229.
[8]	ZHOU Z , HUANG D , WANG Z . Efficient privacy-preserving ciphertext-policy attribute based-encryption and broadcast encryption[J]. IEEE Transactions on Computers, 2013,64(1): 126-138.
[9]	WANG S , LIANG K , LIU J K ,et al. Attribute-based data sharing scheme revisited in cloud computing[J]. IEEE Transactions on Information Forensics and Security, 2016,11(8): 1661-1673.
[10]	GUO F , MU Y , SUSILO W ,et al. CP-ABE with constant-size keys for lightweight devices[J]. IEEE Transactions on Information Forensics and Security, 2014,9(5): 763-771.
[11]	LI L , GU T , CHANG L ,et al. A ciphertext-policy attribute-based encryption based on an ordered binary decision diagram[J]. IEEE Access, 2017(5): 1137-1145.
[12]	BEUCHAT J L , GONZáLEZ-DíAZ J E , MITSUNARI S ,et al. High-speed software implementation of the optimal ate pairing over Barreto-Naehrig curves[C]// International Conference on Pairing-Based Cryptography. Springer, 2010: 21-39.
[13]	BARRETO P S L M , GALBRAITH S D , ó’HéIGEARTAIGH C ,et al. Efficient pairing computation on supersingular abelian varieties[J]. Designs,Codes and Cryptography, 2007,42(3): 239-271.
[14]	CANARD S , DEVIGNE J , SANDERS O . Delegating a pairing can be both secure and efficient[C]// International Conference on Applied Cryptography and Network Security. Springer, 2014: 549-565.
[15]	GUILLEVIC A , VERGNAUD D . Algorithms for outsourcing pairing computation[C]// International Conference on Smart Card Research and Advanced Applications. Springer, 2014: 193-211.
[16]	CANARD S , DESMOULINS N , DEVIGNE J ,et al. On the implementation of a pairing-based cryptographic protocol in a constrained device[C]// International Conference on Pairing-Based Cryptography. Springer, 2012: 210-217.
[17]	FREEMAN D , SCOTT M , TESKE E . A taxonomy of pairing-friendly elliptic curves[J]. Journal of Cryptology, 2010,23(2): 224-280.
[18]	SCOTT M , . On the efficient implementation of pairing-based protocols[C]// IMA International Conference on Cryptography and Coding. Springer, 2011: 296-308.
[19]	RIVAIN M . Fast and regular algorithms for scalar multiplication over elliptic curves[J]. IACR Cryptology ePrint Archive, 2011(1):338.
[20]	CHEVALLIER-MAMES B , CORON J S , MCCULLAGH N ,et al. Secure delegation of elliptic-curve pairing[C]// International Conference on Smart Card Research and Advanced Applications. Springer, 2010: 24-35.
[21]	CHEN X , SUSILO W , LI J ,et al. Efficient algorithms for secure outsourcing of bilinear pairings[J]. Theoretical Computer Science, 2015,562: 112-121.
[22]	GREEN M , HOHENBERGER S , WATERS B . Outsourcing the decryption of abe ciphertexts[C]// The 20th USENIX Conference on Security. USENIX Association, 2011.
[23]	LI J , CHEN X , LI J ,et al. Fine-grained access control system based on outsourced attribute-based encryption[C]// European Symposium on Research in Computer Security. Springer, 2013: 592-609.
[24]	ODELU V , DAS A K . Design of a new CP-ABE with constant-size secret keys for lightweight devices using elliptic curve cryptography[J]. Security and Communication Networks, 2016,9(17): 4048-4059.
[25]	ODELU V , DAS A K , KHAN M K ,et al. Expressive CP-ABE scheme for mobile devices in IoT satisfying constant-size keys and ciphertexts[J]. IEEE Access, 2017(5): 3273-3283.

符号	意义
C_G	群元素的幂乘或标量乘法
C_e	双线性对运算
V	OBDD中有效路径的个数
N	系统中定义的属性个数
S	访问策略中的属性个数
K	密钥生成所用到的属性个数
σ	成功解密所需的最少属性个数
L	群元素大小

运算	计算开销/ms
C_e	3.97
C_G	1.51

方案	密钥生成	加密	解密	密文长度	密钥长度
文献[3]	(2K+1)C_G	(N+1)C_G	O(N)	(N+2)L	(2N+1)L
文献[4]	(2K+2)C_G	(2S+1)C_G	O(σ)	(2S+2)L	(2K+1)L
文献[11]	2C_G	(V+1)C_G	O(1)	(V+2)L	2L
本文方案	—	(V+1)C_G	O(1)	(V+2)L	L

基于OBDD访问结构的无配对CP-ABE方案

Efficient pairing-free CP-ABE based on ordered binary decision diagram

在线阅读

PDF下载

可视化

摘要/Abstract

引用本文

使用本文

图/表 5

参考文献 25

相关文章 13

Metrics

推荐阅读 0

[1]	刘辉, 刘鑫衍, 许艳, 仲红, 王梦. 隐私保护的VANET警告消息发布协议[J]. 通信学报, 2021, 42(8): 120-129.
[2]	于斌, 黄海, 刘志伟, 赵石磊, 那宁. 面向多椭圆曲线的高速标量乘法器设计与实现[J]. 通信学报, 2020, 41(12): 100-109.
[3]	徐明,史量. 基于伪四维投射坐标的多基链标量乘法[J]. 通信学报, 2018, 39(5): 74-84.
[4]	秦艳琳,吴晓平,胡卫. 抗密钥泄露的无证书签密方案[J]. 通信学报, 2017, 38(Z2): 43-50.
[5]	吴黎兵,谢永,张宇波. 面向车联网高效安全的消息认证方案[J]. 通信学报, 2016, 37(11): 1-10.
[6]	张金中,寇应展,王韬,郭世泽,赵新杰. 针对滑动窗口算法的椭圆曲线密码故障分析[J]. 通信学报, 2012, 33(1): 71-78.
[7]	杨晓辉,戴紫彬,李淼,张永福. 面向椭圆曲线密码的处理器并行体系结构研究与设计[J]. 通信学报, 2011, 32(5): 70-77.
[8]	王潮,刘礼黎,牛志华,时向勇,张焕国. 适合CBTC系统无线信道加密算法[J]. 通信学报, 2011, 32(2): 48-52.
[9]	甄鸿鹄,陈越,谭鹏许,郭渊博. 基于非对称双线性对的直接匿名认证方案[J]. 通信学报, 2010, 31(8A): 37-43.
[10]	王潮,时向勇,牛志华. 基于Montgomery曲线改进ECDSA算法的研究[J]. 通信学报, 2010, 31(1): 9-13.
[11]	史建红,金晨辉,潘志舒. 整数对的七元联合稀疏型及其应用[J]. 通信学报, 2009, 30(12): 113-118.
[12]	李忠,王毅,彭代渊. 基于滑动窗口技术的有限域GF(2ⁿ)乘法算法[J]. 通信学报, 2008, 29(7): 27-31.
[13]	陈超,曾晓洋,章倩苓. 一种新型硬件可配置公钥制密码协处理器的VLSI实现[J]. 通信学报, 2005, 26(1): 6-11.