属性基无中央授权中心DMA-ABE方案

doi:10.13190/j.jbupt.2015.05.014

北京邮电大学学报 ›› 2015, Vol. 38 ›› Issue (5): 77-80.doi: 10.13190/j.jbupt.2015.05.014

属性基无中央授权中心DMA-ABE方案

陈丹伟¹, 吴琼¹, 陈林铃¹, 潘甦²

1. 南京邮电大学计算机学院, 南京 210003;
2. 南京邮电大学通信与信息工程学院, 南京 210003

收稿日期:2014-12-25 出版日期:2015-10-28 发布日期:2015-10-28
作者简介:陈丹伟(1970—),男,教授,E-mail:danweichen@163.com.
基金资助:
国家自然科学基金项目(61271235)

Attribute-Based Encryption without Central Authority: DMA-ABE

CHEN Dan-wei¹, WU Qiong¹, CHEN Lin-ling¹, PAN Su²

1. Department of Computer and Science, Nanjing University of Posts and Telecommunications, Nanjing 210003, China;
2. Department of Communication and Information Technology, Nanjing University of Posts and Telecommunications, Nanjing 210003, China

Received:2014-12-25 Online:2015-10-28 Published:2015-10-28

摘要/Abstract

摘要：

针对当前云环境下属性基访问控制机制中采用中央授权中心带来的安全性问题,提出了分散多机构属性基加密DMA-ABE方案. 该方案采用多个授权中心负责用户密钥的分发,无需中央授权中心的协调;支持任意的线性秘密共享方案访问结构,访问策略灵活;采用代理重加密进行属性的即时撤销和授权,支持高效、灵活、细粒度的访问控制.安全性分析证明该方案达到选择明文攻击安全.

关键词: 属性基加密, 代理重加密, 属性撤销和授权

Abstract:

A scheme decentralizing multi-authority attribute based encryption DMA-ABE was proposed. In this scheme, the multiple attribute authority was used to issue users' keys without any coordination of central authority. Any linear secret sharing schemes access structure was supported, which is efficient, flexibility and fine-grained. The proxy re-encryption was used to realize on-demand attribute revocation and authorization. A security analysis was given to verify the scheme is secure against chosen plain-text attack.

Key words: attribute-based encryption, proxy re-encryption, attribute revocation and grant

中图分类号:

TN929.53

陈丹伟, 吴琼, 陈林铃, 潘甦. 属性基无中央授权中心DMA-ABE方案[J]. 北京邮电大学学报, 2015, 38(5): 77-80.

CHEN Dan-wei, WU Qiong, CHEN Lin-ling, PAN Su. Attribute-Based Encryption without Central Authority: DMA-ABE[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(5): 77-80.

参考文献

[1] 冯登国,张敏,张妍,等. 云计算安全研究[J].软件学报, 2011, 22(1): 71-83. Feng Dengguo, Zhang Min, Zhang Yan, et al. Research on cloud security [J]. Journal of Software, 2011, 22(1): 71-83.

[2] Sahai A, Waters B. Advances in cryptology-eurocrtpt 2005[M]. Heidelberg: Springer Berlin Heidelberg, 2005: 457-473.

[3] Goyal V, Pandet O, Sahai A, et al. Attribute based encryption for fine-grained access control of encrypted data[C]//ACM Conference on Computer and Communications Security. Alexandria: ACM , 2006: 89-98.

[4] Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute-based encryption[C]//IEEE Symposium on Security and Privacy(SP07). Berkeley: IEEE, 2007: 321-334.

[5] Chase M. Theory of cryptography[M]. Heidelberg: Springer Berlin Heidelberg, 2007: 515-534.

[6] Chase M, Chow S S. Improving privacy and security in multi-authority attribute-based encryption[C]//2009 ACM Computer and Communications Security(CCS09). Chicago: ACM, 2009: 121-130.

[7] Bo?ovic' V, Socek D, Steinwandt R, et al. Multi-authority attribute-based encryption with honest-but-curious central authority[J]. International Journal of Computer Mathematics, 2012, 89(3): 268-283.

[8] Hur J, Noh D K. Attribute-based access control with efficient revocation in data outsourcing systems[J]. Parallel and Distributed Systems, 2011, 22(7): 1214-1221.

[9] Narayan S, Gagné M, Safavi-Naini R. Privacy preserving EHR system using attribute-based infrastructure[C]//2010 ACM Workshop on Cloud Computing Security Workshop. Chicago: ACM, 2010: 47-52.

[10] Ruj S, Nayak A, Stojmenovic I. DACC: distributed access control in clouds[C]//2011 IEEE Trust, Security and Privacy in Computing and Communications (TrustCom). Changsha: IEEE, 2011: 91-98.

[11] Li Ming, Yu Shucheng, Zheng Yao, et al. Scalable and secure sharing of personal health records in cloud computing using attribute-based encryption[J]. Parallel and Distributed Systems, 2013, 24(1): 131-143.

属性基无中央授权中心DMA-ABE方案

Attribute-Based Encryption without Central Authority: DMA-ABE

RichHTML

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 5

编辑推荐

Metrics

本文评价

[1]	李兆斌张璐赵洪魏占祯. 基于无证书的门限条件代理重加密方案[J]. 北京邮电大学学报, 2023, 46(1): 44-49,83.
[2]	王峥, 李玲, 李娜. 雾计算中用户和属性可撤销的访问控制方案[J]. 北京邮电大学学报, 2020, 43(6): 88-95.
[3]	陈红松, 沈强磊. 云计算环境下支持高效撤销的新型属性基加密方案[J]. 北京邮电大学学报, 2018, 41(3): 113-118.
[4]	黄勤龙, 马兆丰, 傅镜艺, 钮心忻. 基于代理重加密的多媒体数字版权授权协议[J]. 北京邮电大学学报, 2013, 36(6): 7-12.
[5]	闫玺玺, 马兆丰, 杨义先, 钮心忻. 多域环境下基于代理重加密的电子文档分发协议[J]. 北京邮电大学学报, 2012, 35(5): 81-84.