抗密钥委托滥用的可追踪属性基加密方案

doi:10.11959/j.issn.1000-436x.2020016

Abstract

Abstract:

Aiming at the problem that the traceability of a traceable attribute-based encryption (ABE) scheme was not sufficient to address the key abuse completely,a traceable ABE scheme against key-delegation abuse was proposed.A secret parameter was be shared to all user private key components corresponding to attributes,and the decryption was completed by using all these components together,such that only parts of them could not realize the decryption and the real key-delegation abuse resistance ability was be obtained consequently.A short signature technique was employed to prevent the tracing parameter embedded in a user private key from being forged,so as to achieve the traceability of the user who leaked his user private key.Supporting both key-delegation abuse resistance and user tracing enhances the security of the proposed scheme.And compared with related schemes,the proposed scheme has better advantage in terms of the parameters size and the computation cost.

Key words: attribute-based encryption, key-delegation abuse resistance, white-box, traceability

CLC Number:

TP309

Xixi YAN,Xu HE,Tao LIU,Qing YE,Jinxia YU,Yongli TANG. Traceable attribute-based encryption scheme with key-delegation abuse resistance[J]. Journal on Communications, 2020, 41(4): 150-161.

Figures/Tables 5

方案	通信代价			计算代价
方案	公共参数大小	密文大小	用户私钥大小	加密计算量	解密计算量
文献[8]方案	$\| U \| + 4$	$2 l + 3$	$\| S \| + 4$	$(3 l + 2) E + E_{T}$	$(2 \| I \| + 1) P + 2 E + \| I \| E_{T}$
文献[7]基础方案	$2 \| U \| + 1$	$2 \| U \| - l + 1$	$\| S \| + 4$	$(2 \| U \| - l) E + E_{T}$	$\| U \| P$
文献[7]扩展方案	$2 (\| U \| + ρ) + 1$	$2 (\| U \| + ρ) - l + 1$	$\| U \| + ρ$	$(2 (\| U \| + ρ) - l) E + E_{T}$	$(\| U \| + ρ) P$
本文方案	$2 \| U \| + 3$	$2 \| U \| - l + 3$	$\| U \| + 3$	$(2 \| U \| - l + 2) E + E_{T}$	$(\| U \| + 1) P + E$

References 20

[1]	SAHAI A , WATERS B . Fuzzy identity-based encryption[C]// The 24th Annual International Conference on the Theory and Applications of Cryptographic Techniques. Berlin:Springer, 2005: 457-473.
[2]	GOYAL V , PANDEY O , SAHAI A ,et al. Attribute-based encryption for fine-grained access control of encrypted data[C]// The 13th ACM Conference on Computer and Communications Security. New York:ACM Press, 2006: 89-98.
[3]	齐芳, 李艳梅, 汤哲 . 可撤销和可追踪的密钥策略属性基加密方案[J]. 通信学报, 2018,39(11): 63-69.
	QI F , LI Y M , TANG Z . Revocable and traceable key-policy attribute-based encryption scheme[J]. Journal on Communications, 2018,39(11): 63-69.
[4]	李学俊, 张丹, 李晖 . 可高效撤销的属性基加密方案[J]. 通信学报, 2019,40(6): 32-39.
	LI X J , ZHANG D , LI H . Efficient revocable attribute-based encryption scheme[J]. Journal on Communications, 2019,40(6): 32-39.
[5]	于金霞, 何旭, 闫玺玺 . 机构可验证的密文策略属性基加密方案[J]. 西安电子科技大学学报, 2019,46(4): 49-57.
	YU J X , HE X , YAN X X . Ciphertext-policy attribute-based encryption scheme with verifiability on authority[J]. Journal of Xidian University, 2019,46(4): 49-57.
[6]	JIANG Y , SUSILO W , MU Y ,et al. Ciphertext-policy attribute-based encryption with key-delegation abuse resistance[C]// The 21st Australasian Conference on Information Security and Privacy. Berlin:Springer, 2016: 477-494.
[7]	JIANG Y , SUSILO W , MU Y ,et al. Ciphertext-policy attribute-based encryption against key-delegation abuse in fog computing[J]. Future Generation Computer Systems, 2018,78(2): 720-729.
[8]	LIU Z , CAO Z , WONG D S . White-box traceable ciphertext-policy attribute-based encryption supporting any monotone access structures[J]. IEEE Transactions on Information Forensics and Security, 2013,8(1): 76-88.
[9]	ROUSELAKIS Y , WATERS B . Practical constructions and new proof methods for large universe attribute-based encryption[C]// The 2013 ACM SIGSAC Conference on Computer and Communications Security. New York:ACM Press, 2013: 463-474.
[10]	BONEH D , BOYEN X . Short signatures without random oracles[C]// The International Conference on the Theory and Applications of Cryptographic Techniques. Berlin:Springer, 2004: 56-73.
[11]	NING J , CAO Z , DONG X ,et al. Large universe ciphertext-policy attribute-based encryption with white-box traceability[C]// The 19th European Symposium on Research in Computer Security. Berlin:Springer, 2014: 55-72.
[12]	YU S , REN K , LOU W ,et al. Defending against key abuse attacks in KP-ABE enabled broadcast systems[C]// The 5th International Conference on Security and Privacy in Communication Networks. Berlin:Springer, 2009: 311-329.
[13]	张星, 文子龙, 沈晴霓 ,等. 可追责并解决密钥托管问题的属性基加密方案[J]. 计算机研究与发展, 2015,52(10): 2293-2303.
	ZHANG X , WEN Z L , SHEN Q N ,et al. Accountable attribute-based encryption scheme without key escrow[J]. Journal of Computer Research and Development, 2015,52(10): 2293-2303.
[14]	NING J , DONG X , CAO Z ,et al. Accountable authority ciphertext-policy attribute-based encryption with white-box traceability and public auditing in the cloud[C]// The 20th European Symposium on Research in Computer Security. Berlin:Springer, 2015: 270-289.
[15]	YU G , MA X , CAO Z ,et al. Accountable multi-authority ciphertext-policy attribute-based encryption without key escrow and key abuse[C]// The 9th International Symposium on Cyberspace Safety and Security. Berlin:Springer, 2017: 337-351.
[16]	ZHANG Y , LI J , ZHENG D ,et al. Towards privacy protection and malicious behavior traceability in smart health[J]. Personal and Ubiquitous Computing, 2017,21(5): 815-830.
[17]	LAI J , TANG Q . Making any attribute-based encryption accountable,efficiently[C]// The 23rd European Symposium on Research in Computer Security. Berlin:Springer, 2018: 527-547.
[18]	LI Q , ZHU H , YING Z ,et al. Traceable ciphertext-policy attributebased encryption with verifiable outsourced decryption in eHealth cloud[J]. Wireless Communications and Mobile Computing, 2018(1):1701675.
[19]	QIAO H , REN J , WANG Z ,et al. Compulsory traceable ciphertext-policy attribute-based encryption against privilege abuse in fog computing[J]. Future Generation Computer Systems, 2018,88(1): 107-116.
[20]	CARO A D , IOVINO V . jPBC:Java pairing based cryptography[C]// The 16th IEEE Symposium on Computers and Communications. Piscataway:IEEE Press, 2011: 850-855.

Metrics

Recommended 0

No Suggested Reading articles found!

方案	抗密钥委托滥用	可追踪	群阶数	可追踪性证明
文献[8]方案	×	√	合数阶	标准模型
文献[7]基础方案	√	×	素数阶	—
文献[7]扩展方案	√	√	素数阶	一般双线性群模型
本文方案	√	√	素数阶	标准模型

方案	通信代价			计算代价
方案	公共参数大小	密文大小	用户私钥大小	加密计算量	解密计算量
文献[8]方案	$\| U \| + 4$	$2 l + 3$	$\| S \| + 4$	$(3 l + 2) E + E_{T}$	$(2 \| I \| + 1) P + 2 E + \| I \| E_{T}$
文献[7]基础方案	$2 \| U \| + 1$	$2 \| U \| - l + 1$	$\| S \| + 4$	$(2 \| U \| - l) E + E_{T}$	$\| U \| P$
文献[7]扩展方案	$2 (\| U \| + ρ) + 1$	$2 (\| U \| + ρ) - l + 1$	$\| U \| + ρ$	$(2 (\| U \| + ρ) - l) E + E_{T}$	$(\| U \| + ρ) P$
本文方案	$2 \| U \| + 3$	$2 \| U \| - l + 3$	$\| U \| + 3$	$(2 \| U \| - l + 2) E + E_{T}$	$(\| U \| + 1) P + E$

Traceable attribute-based encryption scheme with key-delegation abuse resistance

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 5

References 20

Related Articles 15

Metrics

Recommended 0

[1]	Xuejiao LIU, Tiancong CAO, Yingjie XIA. Research on efficient and secure cross-domain data sharing of IoV under blockchain architecture [J]. Journal on Communications, 2023, 44(3): 186-197.
[2]	Yiliang HAN, Kaiyang GUO, Riming WU, Kai LIU. Attribute-based encryption scheme against key abuse based on OBDD access structure from lattice [J]. Journal on Communications, 2023, 44(1): 75-88.
[3]	Ruizhong DU, Tianhe ZHANG, Pengliang SHI. Ciphertext policy hidden access control scheme based on blockchain and supporting data sharing [J]. Journal on Communications, 2022, 43(6): 168-178.
[4]	Xinchun YIN, Mengyu WANG, Jianting NING. Lightweight searchable medical data sharing scheme [J]. Journal on Communications, 2022, 43(5): 110-122.
[5]	Haibo ZHANG, Hongwu HUANG, Kaijian LIU, Xiaofan HE. Verifiably secure fast group authentication protocol with anonymous traceability for Internet of vehicles [J]. Journal on Communications, 2021, 42(6): 213-225.
[6]	Bin WANG, Si CHEN, Jiadong CHEN, Xing WANG. DWB-AES: an implementation of dynamic white-box based on AES [J]. Journal on Communications, 2021, 42(2): 177-186.
[7]	Xixi YAN,Xiaohan YUAN,Yongli TANG,Yanli CHEN. Verifiable attribute-based searchable encryption scheme based on blockchain [J]. Journal on Communications, 2020, 41(2): 187-198.
[8]	Rongna XIE, Hui LI, Guozhen SHI, Yunchuan GUO, Ming ZHANG, Xiuze DONG. Blockchain-based access control mechanism for data traceability [J]. Journal on Communications, 2020, 41(12): 82-93.
[9]	FENG Chaosheng,LUO Wangping,QIN Zhiguang,YUAN Ding,ZOU Liping. Attribute-based proxy re-encryption scheme with multiple features [J]. Journal on Communications, 2019, 40(6): 177-189.
[10]	Lei SUN,Zhiyuan ZHAO,Jianhua WANG,Zhiqiang ZHU. Attribute-based encryption scheme supporting attribute revocation in cloud storage environment [J]. Journal on Communications, 2019, 40(5): 47-56.
[11]	Youliang TIAN,Kedi YANG,Zuan WANG,Tao FENG. Algorithm of blockchain data provenance based on ABE [J]. Journal on Communications, 2019, 40(11): 101-111.
[12]	Jian LIU,Ming XIAN,Huimei WANG,Hong RONG. Optimization method for attribute-based cryptographic access control in mobile cloud computing [J]. Journal on Communications, 2018, 39(7): 39-49.
[13]	Qi LI,Hongbo ZHU,Jinbo XIONG,Ruo MO. Multi-authority attribute-based access control system in mHealth with traceability [J]. Journal on Communications, 2018, 39(6): 1-10.
[14]	Xin LIU,Qiuliang XU,Bin ZHANG,Bo ZHANG. k-times attribute-based authentication scheme using direct anonymous attestation [J]. Journal on Communications, 2018, 39(12): 113-133.
[15]	Yong-hui ZHENG,Yuan-ji KANG,Chun-xiang GU,Hui DONG. Attribute-based fully homomorphic encryption scheme over rings [J]. Journal on Communications, 2017, 38(4): 55-63.