CP-ABE与数字信封融合技术的云存储安全模型设计与实现

发布时间：2018-02-11 09:01

  本文关键词： 云存储安全 属性加密机制 数字信封 动态口令　出处：《计算机应用与软件》2016年09期 　论文类型：期刊论文

【摘要】：为了高效地实现云端数据的存储和传输安全,提出一种结合数字信封技术的改进的密文策略的属性加密机制(CPABE)云存储安全模型。该模型在不影响云服务性能的前提下保护用户的敏感数据,在数据未上传至云端前对数据进行本地加密;加密密钥通过CP-ABE机制以保证密钥不会被非法用户获取,并通过数字信封技术确保数据在传输过程中的完整性和保密性。新模型还结合动态口令(OTP)对用户进行登录校验,从而有效阻止非授权用户对数据的访问。仿真实验表明,改进的模型能够安全有效地保护用户的机密数据,阻止恶意用户对云服务器的非法访问。通过和现有云存储安全方案进行时间性能对比,改进的CP-ABE方案加密效率和安全性能有较大幅度提高。
[Abstract]:In order to realize the storage and transmission security of cloud data efficiently, In this paper, an improved attribute encryption mechanism of ciphertext policy based on digital envelope technology, named CPABE-based cloud storage security model, is proposed, which protects the sensitive data of users without affecting the performance of cloud services. The data is encrypted locally before the data is uploaded to the cloud; the encryption key is used through the CP-ABE mechanism to ensure that the key will not be obtained by the illegal user. The digital envelope technology is used to ensure the integrity and confidentiality of the data in the transmission process. The new model also uses dynamic password and OTPto to verify the user's login, thus effectively preventing unauthorized users from accessing the data. The simulation results show that, The improved model can protect the confidential data of users safely and effectively, and prevent malicious users from accessing the cloud server illegally. The encryption efficiency and security performance of the improved CP-ABE scheme are greatly improved.
【作者单位】： 江西理工大学信息工程学院;
【基金】：国家自然科学基金项目(11062002,61363076) 江西省教育厅重点科技项目(GJJ13435,GJJ14465) 江西省自然科学基金项目(20142BAB207020)
【分类号】：TP309;TP333
，

本文编号：1502679