基于属性加密的安全分布式云存储研究

发布时间：2018-05-18 05:00

本文选题：云计算 + 分布式云存储　；参考：《福建师范大学》2014年硕士论文

【摘要】：近年来,云计算成为一个备受关注的新技术。云计算是指通过“网络+互联网”的组合模式向用户提供按需支付的一种计算模式,使软件、硬件资源作为像水和电一样的公共服务方便、快捷地提供给用户。云存储是云计算的一个延伸概念,即将个人电脑、手机或其他存储设备的存储任务交由服务器完成,释放本身的存储空间。数据存储到云存储服务器时,其安全性、健壮性、隐私性等问题则成为一系列非常重要且敏感的问题。本文旨在研究云存储过程中的这些问题,主要贡献有： 1.首先,提出了一种便于对数据进行监控与管理的应用于私有云环境下的安全分布式云存储模型。该模型中,利用分布式纠删码技术,密文数据被分块编码处理后存储在若干个云存储服务器中,提高了模型的健壮性。应用了多属性服务器模式对属性进行分管及对应属性私钥的分布式分发,模型中存在一个中心授权服务器,便于对数据进行监控和管理。 2.其次,提出了一种应用于混合云环境下的完全分布式云存储模型。在基于属性加密技术基础上,去除绝对的可信中心的干预,所有服务器完全独立式工作。整个属性私钥分发过程遵循完全的分布式特点,无任何可信中心的存在,改善了模型的安全性,也更适用于混合云环境中。 3.最后,研究了兼顾数据内容、身份信息、访问结构三项隐私保护的模型实现。在保证数据安全性的基础上,提出了保护加解密者身份信息和访问结构中的属性信息的模型。该模型实现云存储的安全性、健壮性及隐私保护的功能。
[Abstract]:In recent years, cloud computing has become a concerned new technology. Cloud computing is a kind of computing mode that provides users with on-demand payment through the combination mode of "network Internet", which makes software and hardware resources as public services such as water and electricity to be provided to users conveniently and quickly. Cloud storage is an extended concept of cloud computing, in which the storage tasks of personal computers, mobile phones or other storage devices are left to the server to free up its own storage space. When data is stored in cloud storage server, its security, robustness and privacy become a series of very important and sensitive issues. The purpose of this paper is to study these problems in cloud storage. The main contributions are as follows: 1. Firstly, a secure distributed cloud storage model is proposed, which is easy to monitor and manage data in private cloud environment. In this model, using distributed erasure code technology, ciphertext data is processed in blocks and stored in several cloud storage servers, which improves the robustness of the model. The multi-attribute server mode is applied to manage the attributes and distribute the private keys of the corresponding attributes. There is a central authorization server in the model, which is convenient to monitor and manage the data. 2. Secondly, a fully distributed cloud storage model for mixed cloud environments is proposed. On the basis of attribute-based encryption, all servers work independently without the intervention of absolute trusted center. The whole attribute private key distribution process follows the completely distributed characteristic, without any trusted center, which improves the security of the model and is more suitable for the mixed cloud environment. 3. Finally, the implementation of three privacy protection models, including data content, identity information and access structure, is studied. On the basis of ensuring data security, a model for protecting encryptor identity information and attribute information in access structure is proposed. The model realizes the security, robustness and privacy protection of cloud storage.
【学位授予单位】：福建师范大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP309;TP333

【参考文献】