[1]李拴保.单云服务提供者环境下的随机化属性保护研究[J].郑州大学学报(工学版),2017,38(06):17-22.[doi:10.13705/j.issn.1671-6833.2017.06.004]
Li Shuanbao.Research on Randomization Attribute Protection in Single Cloud Serivce Provider[J].Journal of Zhengzhou University (Engineering Science),2017,38(06):17-22.[doi:10.13705/j.issn.1671-6833.2017.06.004]
点击复制
单云服务提供者环境下的随机化属性保护研究()
《郑州大学学报(工学版)》[ISSN:1671-6833/CN:41-1339/T]
- 卷:
-
38
- 期数:
-
2017年06期
- 页码:
-
17-22
- 栏目:
-
- 出版日期:
-
2017-11-20
文章信息/Info
- Title:
-
Research on Randomization Attribute Protection in Single Cloud Serivce Provider
- 作者:
-
李拴保
-
河南财政金融学院信息工程系,河南郑州451464
- Author(s):
-
Li Shuanbao
-
Department of Information Engineering, Henan University of Finance and Economics, Zhengzhou 451464, Henan; Key Laboratory of Aerospace Information Security and Trusted Computing, Ministry of Education, Wuhan University, Wuhan 430072, Hubei, China
-
- 关键词:
-
密文策略属性基加密; 密钥; 签名; 验证; 不可伪造
- Keywords:
-
CP-ABE(ciphertext policy attribute-based encryption); key; signature; verify; unforgeability
- DOI:
-
10.13705/j.issn.1671-6833.2017.06.004
- 文献标志码:
-
A
- 摘要:
-
单云服务提供者环境下用户随机属性隐私保护包括防范属性集更新泄露与密钥关联属性泄露,主要通过代理认证、零知识证明、可信第三方和匿名签名实现。针对属性保护严重依赖第三方的密钥分配与属性授权,提出了一种密文策略属性基群签密部分属性保护方案。该方案利用无证书群签密的无连接交互验证特性,在用户计算密钥因子时系统控制云服务提供者获得密钥关联属性信息;利用属性撤销和属性分割的密钥重构与密文重构相互独立特性,系统降低了用户签密所需要的最小属性集数量,抵制了攻击者利用属性集更新伪造签名;以密钥服务为中心设计了群签密的身份验证机制以达到控制其它用户身份伪装。结果表明,该方案实现了保护随机属性安全和消息隐私。
- Abstract:
-
User randomization attribute privacy protection included attribute set updating leakage and attribute leakage of key in Single-CSP(Could Service Provider), which performed mainly throygh proxy authentication, zero-knowledge proof, the trusted third party and anonymous signature. Focusing on attribute protection heavily dependent on third-party key diatribution and attribute authority, this paper presented a ciphertext policy attribute-based group signcryption randomization attribute protection scheme. When a user calculated the key factor, the scheme controled CSP getting key associated attribute information by using certificateless group signcryption connectless cross-validation; it reduced the minimal number of attribute set for signcrytion need by using attribute revocation and attribute segmentation to mutual independent with sign key and encryption key, and resisted an attacker forged signatures of attribute set updating. In key service-centric, it designed the identity verifying mechanism of group signcrypyion, and controls masquerading as other user. The scheme implemented the protection of the randomization attribute security and message privacy.
更新日期/Last Update: