李婷1,
麻婷春1,
陈桂兰1,
王彩芬1, 2
1.西北师范大学计算机科学与工程学院 兰州 730070
2.深圳技术大学大数据与互联网学院 深圳 518118
基金项目:国家自然科学基金(61662069, 61562077),中国博士后科学基金(2017M610817),兰州市科技计划项目(2013-4-22),西北师范大学青年教师科研能力提升计划(NWNU-LKQN-14-7)
详细信息
作者简介:杨小东:男,1981年生,博士,教授,研究方向为代理重签名和云计算安全
李婷:女,1995年生,硕士生,研究方向为云审计安全
麻婷春:女,1992年生,硕士生,研究方向为属性加密
陈桂兰:女,1995年生,硕士生,研究方向为可搜索加密
王彩芬:女,1963年生,博士,教授,研究方向为信息安全协议与网络安全
通讯作者:杨小东 y200888@163.com
中图分类号:TN918.4计量
文章访问数:415
HTML全文浏览量:93
PDF下载量:44
被引次数:0
出版历程
收稿日期:2020-01-20
修回日期:2021-10-21
网络出版日期:2020-11-16
刊出日期:2021-04-20
Searchable Encryption Scheme Supporting Policy Hiding and Constant Ciphertext Length
Xiaodong YANG1,,,Ting LI1,
Tingchun MA1,
Guilan CHEN1,
Caifen WANG1, 2
1. College of Computer Science and Engineering, Northwest Normal University, Lanzhou 730070, China
2. College of Big Data and Internet, Shenzhen Technology University, Shenzhen 518118, China
Funds:The National Natural Science Foundation of China (61662069, 61562077), The Postdoctoral Science Foundation of China (2017M610817), The Science and Technology Project of Lanzhou City (2013-4-22), The Foundation of Northwest Normal University (NWNU-LKQN-14-7)
摘要
摘要:属性加密体制是实现云存储中数据灵活访问控制的关键技术之一,但已有的属性加密方案存在密文存储开销过大和用户隐私泄露等问题,并且不能同时支持云端数据的公开审计。为了解决这些问题,该文提出一个新的可搜索属性加密方案,其安全性可归约到q-BDHE问题和CDH问题的困难性。该方案在支持关键词搜索的基础上,实现了密文长度恒定;引入策略隐藏思想,防止攻击者获取敏感信息,确保了用户的隐私性;通过数据公开审计机制,实现了云存储中数据的完整性验证。与已有的同类方案相比较,该方案有效地降低了数据的加密开销、关键词的搜索开销、密文的存储成本与解密开销,在云存储环境中具有较好的应用前景。
关键词:云存储/
属性加密/
密文长度恒定/
关键词搜索/
公开审计
Abstract:The Attribute-Based Encryption (ABE) mechanism is one of the key technologies for implementing flexible access control of data in cloud storage. However, the existing ABE schemes have some problems, such as too much ciphertext storage overhead and user privacy leakage, and unsupported public auditing of cloud data. To solve these problems, a new searchable ABE scheme is proposed, and its security can be reduced to the difficulty of q-BDHE (q –decisional Bilinear Diffie-Hellman Exponent) problem and CDH (Computational Diffie-Hellman) problem. The proposed scheme achieves a constant ciphertext length on the basis of supporting keyword search. By introducing strategies to hide ideas, it prevents attackers from obtaining sensitive information and ensures the privacy of users. And the integrity of the data in cloud storage is verified through data public audit mechanism. Compared with the existing similar schemes, this scheme greatly reduces the data encryption overhead, keyword search overhead, ciphertext storage cost and decryption cost, which has a good application prospect to the cloud storage environment.
Key words:Cloud storage/
Attribute-Based Encryption (ABE)/
Constant ciphertext length/
Keyword search/
Public audit
PDF全文下载地址:
https://jeit.ac.cn/article/exportPdf?id=4b22b7dc-10f6-4978-936c-326f8f2028e9