摘要
针对移动云服务中的安全和隐私保护问题,提出一种匿名使用云存储服务的机制。在匿名身份注册部分,零知识验证和数字签名技术简化了移动云用户的密钥验证步骤,同时第三方使用户与自己的身份证书绑定,防止用户对移动云服务的恶意使用;在数据共享部分,系统通过提取共享者账号参数,用于解决因共享密钥丢失导致数据安全性降低的问题。结合理论分析的方法对所提出的机制进行安全性验证与评价,结果表明身份证书和共享密钥生成算法对用户隐私安全有很好的保护作用。
In response to the issue of security and privacy-preserving in mobile cloud computing, an anonymous mechanism using cloud storage was proposed. Zero-knowledge proofs and the digital signature technology were introduced into anonymous registration to simplify the steps of key authentication, building upon which the third party was used to bind users and their identity certificates that avoid legitimate cloud services for malicious purposes. The focus of data sharing is on how to take advantage of account parameters of sharers so as to solve the security issues due to secret key loss. Theoretical analysis shows that the proposed identity certificate and shared key generation schemes contribute to users' privacy.
出处
《计算机应用》
CSCD
北大核心
2014年第7期1897-1901,共5页
journal of Computer Applications
基金
国家自然科学基金资助项目(60673185
61073197)
江苏省自然科学基金资助项目(BK2010548)
江苏省科技支撑计划(工业)项目(BE2011186)
江苏省普通高校研究生科研创新计划项目(CXLX11_0262
CXZZ12_0425)
江苏省六大高峰人才基金资助项目
关键词
移动云计算
隐私
身份认证
共享
匿名
mobile cloud computing
privacy
identity authentication
sharing
anonymity