基于密文策略的动态属性加密方案
发布时间:2021-01-20 23:22
随着现代社会中大数据的迅速发展,越来越多的用户与企业选择将数据存放在云服务器中,并通过云服务器来进行数据共享,将数据共享给指定的其他用户。然而,云服务器存在着安全性的问题,随时可能遭到攻击,影响数据的安全性;同时,云服务提供商有可能获取用户的隐私数据,同样影响数据的安全性。为了保证终端用户存储在云服务器中数据的安全,需要设计一种可以保护用户数据不泄露给云服务商和外部攻击者的方案。在这样的应用环境下对于该方案的设计,是一个亟需解决的问题。属性加密方案(ABE)是一种公钥加密体制,适用于对数据进行加密并控制用户对密文的访问。属性加密方案提供了一种控制用户访问密文的方法,即通过细粒度的访问策略与属性集的匹配来判定用户能否访问。这种灵活的访问策略使得属性加密在政府和商业中有着非常好的应用环境。然而,目前的属性加密方案在投入实际应用前仍然存在三个方面的问题,即用户撤销问题,密文策略更新问题和解密计算外包问题。本文通过对Lewko等人提出的基于密文策略的属性加密方案的改进,结合了Boneh等人的中介密码学思想,设计了具有安全中介员的基于密文策略的属性加密方案,支持实时的用户撤销。同时,在引入安全中...
【文章来源】:哈尔滨工业大学黑龙江省 211工程院校 985工程院校
【文章页数】:67 页
【学位级别】:硕士
【文章目录】:
摘要
Abstract
Acknowledgements
Nomenclature
1. Introduction
1.1 Background
1.2 Related work
1.2.1 Attribute based encryption(ABE)
1.2.2 ABE with user revocation
1.2.3 ABE with policy updating
1.2.4 ABE with decryption outsourcing
1.3 Main content of research and the structure of dissertation
1.3.1 Main content of research
1.3.2 Structure of dissertation
2. Preliminaries
2.1 Ciphertext-policy attribute based encryption
2.1.1 CP-ABE model
2.1.2 Security model for CP-ABE
2.2 Bilinear maps
2.3 Decisional parallel BDHE assumption
2.4 Linear secret sharing scheme
2.5 Composite order bilinear groups
2.6 Dual system encryption
2.7 Brief summary of this chapter
3. CP-ABE with Security Mediator
3.1 Definition
3.2 Construction
3.3 User revocation
3.4 Policy update
3.4.1 Policy updating
3.4.2 Proof of correctness
3.5 Decryption computation outsourcing
3.6 Brief summary of this chapter
4. Security Proof of CP-ABE with SEM
4.1 Security model of CP-ABE with SEM
4.2 Proof of security
4.2.1 Proof of Theorem
4.2.2 Proof of Theorem 2
4.3 Brief summary of this chapter
5. Implementation of CP-ABE with SEM
5.1 Overview
5.2 Development environment, results and analysis
5.3 Comparison of CP-ABE
5.4 Decrypt time analysis
5.5 Brief summary of this chapter
Conclusion
References
攻读博士学位期间发表的论文及其它成果
【参考文献】:
期刊论文
[1]Fully Secure Revocable Attribute-Based Encryption[J]. 钱俊磊,董晓蕾. Journal of Shanghai Jiaotong University(Science). 2011(04)
本文编号:2989977
【文章来源】:哈尔滨工业大学黑龙江省 211工程院校 985工程院校
【文章页数】:67 页
【学位级别】:硕士
【文章目录】:
摘要
Abstract
Acknowledgements
Nomenclature
1. Introduction
1.1 Background
1.2 Related work
1.2.1 Attribute based encryption(ABE)
1.2.2 ABE with user revocation
1.2.3 ABE with policy updating
1.2.4 ABE with decryption outsourcing
1.3 Main content of research and the structure of dissertation
1.3.1 Main content of research
1.3.2 Structure of dissertation
2. Preliminaries
2.1 Ciphertext-policy attribute based encryption
2.1.1 CP-ABE model
2.1.2 Security model for CP-ABE
2.2 Bilinear maps
2.3 Decisional parallel BDHE assumption
2.4 Linear secret sharing scheme
2.5 Composite order bilinear groups
2.6 Dual system encryption
2.7 Brief summary of this chapter
3. CP-ABE with Security Mediator
3.1 Definition
3.2 Construction
3.3 User revocation
3.4 Policy update
3.4.1 Policy updating
3.4.2 Proof of correctness
3.5 Decryption computation outsourcing
3.6 Brief summary of this chapter
4. Security Proof of CP-ABE with SEM
4.1 Security model of CP-ABE with SEM
4.2 Proof of security
4.2.1 Proof of Theorem
4.2.2 Proof of Theorem 2
4.3 Brief summary of this chapter
5. Implementation of CP-ABE with SEM
5.1 Overview
5.2 Development environment, results and analysis
5.3 Comparison of CP-ABE
5.4 Decrypt time analysis
5.5 Brief summary of this chapter
Conclusion
References
攻读博士学位期间发表的论文及其它成果
【参考文献】:
期刊论文
[1]Fully Secure Revocable Attribute-Based Encryption[J]. 钱俊磊,董晓蕾. Journal of Shanghai Jiaotong University(Science). 2011(04)
本文编号:2989977
本文链接:https://www.wllwen.com/kejilunwen/wltx/2989977.html
