可撤销和可追踪的密钥策略属性基加密方案

doi:10.11959/j.issn.1000-436x.2018231

Abstract

Abstract:

The existing key-policy attribute-based encryption (KP-ABE) scheme can not balance the problem of attribute revocation and user identity tracking.Hence,a KP-ABE scheme which supported revocable and traceable was proposed.The scheme could revoke the user attributes without updating the system public key and user private key with a less update cost.Meanwhile,it could trace the user identity based on decryption key which could effectively prevent anonymous user key leakage problem.The proposed scheme was based on linear secret sharing scheme (LSSS),which was more efficient than tree-based access structure.Based on the deterministic q-BDHE hypothesis,the proposed scheme gave security proof until standard mode.Finally,compared with the existing KP-ABE scheme,the scheme has a shorter public key length,lower computational overhead and realizes the traceability function of user identity based on the revocable attribute,which has obvious advantages.

Key words: KP-ABE, revocable, traceable, linear secret sharing scheme

CLC Number:

TN918.1

Fang QI,Yanmei LI,Zhe TANG. Revocable and traceable key-policy attribute-based encryption scheme[J]. Journal on Communications, 2018, 39(11): 63-69.

Figures/Tables 2

References 24

[1]	BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryp-tion[C]// IEEE Symposium on Security and Privacy. 2007: 321-334.
[2]	GOVALl V , PANDEY O , SAHAI A ,et al. Attribute-based encryption for fine-grained access control of encrypted data[C]// ACM Conference on Computer and Communications Security. 2006: 89-98.
[3]	ATTRAPADUNG N , LIBERT B , PANAFIEU E . Expressive key-policy attribute-based encryption with constant-size cipher-texts[C]// International Conference on Practice and Theory in Public Key Cryptography. 2011: 90-108.
[4]	ATTRAPADUNG N , IMAI H . Conjunctive broadcast and attribute-based encryp-tion[C]// Pairing-Based Cryptography-Pairing 2009. 2009: 248-265.
[5]	ROY S , CHUAH M . Secure data retrieval based on ciphertext policy attribute-based encryption CP-ABE system for the DTNs[R]. Lehigh CSETech. 2009.
[6]	ATTRAPADUNG N , HERRANZ J , LIBERT B ,et al. Attribute-based encryption schemes with constant size ciphertexts[J]. Theoretical Computer Science, 2012,422(3): 15-38.
[7]	SAHAI A , WATERS B . Fuzzy identity-based encryption[M]. Advances in Cryptology EURO-CRYPT. 2005: 457-473.
[8]	GOYAL V , JAIN A , PANDEY O ,et al. Bounded ciphertext policy attribute based encryption[M]. Automata,Languages and Programming. 2008: 579-591.
[9]	BEIMEL A . Secure schemes for secret sharing and key distribution[J]. International Journal of Pure ＆ Applied Mathematics, 1996.
[10]	ATTRAPADUNG N , IMAI H . Attribute-based encryption supporting direct/indirect revoca-tion modes[C]// Ima International Conference on Cryptography and Coding. 2009: 278-300.
[11]	PIRRETTI M , TRAYNOR P , MCDANIEL P ,et al. Secure attribute-based systems[C]// ACM Conference on Computer and Communications Security. 2006: 799-837.
[12]	BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption[C]// IEEE Symposium on Security and Privacy. 2007: 321-334.
[13]	BOLDYREVA A , GOYAL V , KUNMAR V . Identity-based encryption with efficient re-vocation modes[C]// The ACM Conference on Computer and Communications Security. 2008: 417-426.
[14]	OSTROVSKY R , SAHAI A , WATERS B . Attribute-based encryption with non-monotonic access structures[C]// CCS 07 ACM Conference on Computer ＆ Commu-nications Security. 2007: 195-203.
[15]	STADDON J , GOLLE P , RASMUSSEN P . A content-driven access control sys-tem[C]// Symposium on Identity and Trust on the Internet. 2008: 26-35.
[16]	WANG P , FENG D , ZHANG L . Towards attribute revocation in key-policy attribute based encryption[C]// International Conference on Cryptology and Network Security. 2011: 272-291.
[17]	苏金树, 曹丹, 王小峰 ,等. 属性基加密机制[J]. 软件学报, 2011,22(6): 1299-1315.
	SU J S , CAO D , WANG X F ,et al. Attribute-based encryption schemes[J]. Journal of Software, 2011,22(6): 1299-1315
[18]	闫玺玺, 孟慧 . 支持直接撤销的密文策略属性基加密方案[J]. 通信学报, 2016,37(5): 44-50.
	YAN X X , MENG H . Ciphertext policy attribute-based encryption scheme supporting direct revocation[J]. Journal on Communications, 2016,37(5): 44-50.
[19]	胡海英, 商威 . 一种可撤销的 KP-ABE 方案[J]. 计算机系统应用, 2013,22(9): 123-128.
	HU H Y , SHANG W . A revocable KP-ABE scheme[J]. Computer Systems and Application, 2013,22(9): 123-128.
[20]	SHI Y , ZHENG Q , LIU J ,et al. Directly revocable key-policy attribute-based encryption with verifiable ciphertext delegation[J]. Information Sciences, 2015,295: 221-231.
[21]	王鹏翩, 冯登国, 张立武 . 一个基于访问树的支持用户撤销的KP-ABE方案[C]//. 中国计算机网络与信息安全学术会议. 2011.
	WANG P P , FENG D G , ZHANG L W . A KP-ABE scheme supporting user revocation based on access tree[C]// China Computer Networks and Information Security Conference. 2011.
[22]	林娟, 薛庆水, 曹珍富 . 基于代理的即时属性撤销KP-ABE方案[J]. 计算机工程, 2014,40(10): 20-24.
	LING J , XUE Q X , CAO Z F . Proxy-based immediate attribute revocation KP-ABE Scheme[J]. Computer Engineering, 2014,40(10): 20-24.
[23]	马海英, 曾国荪 . 可追踪并撤销叛徒的属性基加密方案[J]. 计算机学报, 2012,35(9): 1845-1855.
	MA H Y , ZENG G S . An attribute-based en-cryption scheme for traitor tracing and revo-cation together[J]. Chinese Journal of Computers, 2012,35(9): 1845-1855.
[24]	马海英, 曾国荪, 陈建平 ,等. 适应性安全的可追踪叛徒的基于属性加密方案[J]. 通信学报, 2016,37(1): 76-87.
	MA H Y , ZENG G S , CHEN J P ,et al. Adaptively secure attribute-based encryption for traitor tracing[J]. Journal on Communications, 2016,37(1): 76-87.

Metrics

Recommended 0

No Suggested Reading articles found!

方案	公钥长度	系统主密钥	密文长度	用户私钥长度	可撤销	可追踪
文献[12]	m+n+4	3n+2m+2	n+\|R\|+2	2\|L\|	×	×
文献[13]1th	2(m+n+1)	2n+3	2\|λ\|+3	2\|L\|	√	×
文献[13]2th	2(m+n+1)	3	2\|λ\|+3	4\|L\|	√	×
文献[22]	m+n+3	n+7	\|λ\|+4	3\|L\|	×	√
文献[24]	4m+n=1	2	\|λ\|+5	3\|L\|+m+2	√	×
本文	m+n+1	n+3	\|λ\|+\|R\|+3	\|L\|+3m	√	√

方案	加密	解密
文献[20]	(2n+1)G₁+G_e	(n+3)G_e
文献[22]	2G₁+(n+1)G_e+G₂	(4n+3)G_e+G₂
文献[23]	nG₁+(n+1)G₂+G_e	(n+1)G_e+nG₁+(n+1)G₂
文献[24]	(n²+1)G_e+G₁	2(n+1)G_e+(2n+3)G₁
本文	2G_e+3G ₁	(n+5)G_e+G₁

Revocable and traceable key-policy attribute-based encryption scheme

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 2

References 24

Related Articles 5

Metrics

Recommended 0

[1]	Qi LI,Hongbo ZHU,Jinbo XIONG,Ruo MO. Multi-authority attribute-based access control system in mHealth with traceability [J]. Journal on Communications, 2018, 39(6): 1-10.
[2]	En ZHANG,Yaoyao PEI,Jiao DU. RLWE-based ciphertext-policy attribute proxy re-encryption [J]. Journal on Communications, 2018, 39(11): 129-137.
[3]	Chang-li ZHOU,Hui TIAN,Chun-guang MA,Song-tao YANG. Research on LBS privacy preservation based on pseudorandom permutation in road network [J]. Journal on Communications, 2017, 38(6): 19-29.
[4]	Hong-zhen DU,Qiao-yan WEN. Efficient traceable identity-based signature scheme [J]. Journal on Communications, 2009, 30(8): 56-61.
[5]	Guo-yin ZHANG,ANGLing-ling WANG,Chun-guang MA. Survey on ring signature [J]. Journal on Communications, 2007, 28(5): 109-117.