|
文摘
|
提出一种基于属性群的云存储密文访问控制方案。采用对称加密算法加密大型数据文件,并用属性加密算法加密对称密钥,将重加密的任务转移到云服务提供商,从而降低数据拥有者的计算代价,且未向云服务提供商泄露额外信息。在属性和用户权限撤销时,以同一属性集下的不同用户为单位,数据拥有者不参与属性和用户权限的撤销,从而减轻数据拥有者的权限管理代价。分析结果表明,该方案在权限撤销时的效率优于已有的密文访问控制方案,支持细粒度的灵活访问控制策略,具有数据机密性、抗合谋攻击性、前向保密性和后向保密性。 |
|
其他语种文摘
|
This paper proposes a cryptographic access control scheme based on attribute group in cloud storage.The symmetric cryptosystem is used to encrypt the original data by the Data Owner(DO),and the attribute-based encryption algorithm is used to encrypt the symmetric key.DO delegate the task of data re-encryption to the Cloud Service Provider(CSP),which not only reduces the computational cost of DO,but also does not reveal extra information of the plaintext to CSP.The proposed scheme supports the unit of a collection of multiple users when any attribute or user is revoked.The fine-grained and flexible access control can be achieved by hybrid cryptosystem meachanism.Compared with the existing access control schemes,the proposed scheme is more efficient in revocation cost and can alleviate the administering burders on DO.The scheme guarantees collusion resistance against colluding users,data confidentiality,forward and backward secrecy. |
|
来源
|
计算机工程
,2012,38(11):20-22,26 【核心库】
|
|
关键词
|
密文访问控制
;
云存储
;
属性群
;
用户权限撤销
;
重加密
|
|
地址
|
西北师范大学数学与信息科学学院, 兰州, 730070
|
|
语种
|
中文 |
|
文献类型
|
研究性论文 |
|
ISSN
|
1000-3428 |
|
学科
|
自动化技术、计算机技术 |
|
基金
|
国家自然科学基金资助项目
;
西北师范大学青年教师科研能力提升计划基金资助项目
|
|
文献收藏号
|
CSCD:4564951
|
|
|
1.
Bethencourt J. Ciphertext-policy Attribute-based Encryption.
Proc. of SSP'07,2007
|
被引
1
次
|
|
|
|
|
2.
Ibraimi L. An Encryption Scheme for a Secure Policy Updating.
Proc. of SECRYPT'10,2010
|
被引
1
次
|
|
|
|
|
3.
Yu Shucheng. Attribute Based Data Sharing with Attribute Revocation.
Proc. of ASIACCS'10,2010
|
被引
1
次
|
|
|
|
|
4.
Hong Cheng. Achieving Efficient Dynamic Cryptographic Access Control in Cloud Storage.
Journal on Communications,2011,32(7):125-132
|
被引
2
次
|
|
|
|
|
5.
Lv Zhiquan. Cryptographic Access Control Scheme for Cloud Storage.
Journal of Frontiers of Computer Science and Technology,2011,5(9):835-844
|
被引
1
次
|
|
|
|
|
6.
Hur J. Attribute-based Access Control with Efficient Revocation in Data Outsourcing Systems.
IEEE Trans. on Parallel and Distributed Systems,2011,22(7):1214-1221
|
被引
108
次
|
|
|
|
|
7.
Bethencourt J.
Advanced Crypto Software Collection: the Cpabe Toolkit,2011
|
被引
4
次
|
|
|
|
|
8.
.
The Open-source Toolkit for SSL/TLS,2011
|
被引
1
次
|
|
|
了解气象卫星更多信息,请访问