摘要
重复数据删除技术在云存储的快速发展中扮演着重要角色。在上传数据之前,对数据加密已成常态。使用不同加密密钥加密相同数据得到不同密文,导致云服务器无法实现加密重复数据删除。文章提出一种能够离线传递加密密钥的安全加密重复数据删除方案。在划分数据类型的基础上,借助椭圆曲线构造数据流行度的查询标签;利用广播加密技术构建安全密钥传递方案,使得相同明文被加密为相同密文,云服务器能够完成非流行数据重复删除;针对流行数据,使用改进后的收敛加密算法,在保证数据存储安全的同时,提高流行数据重复删除的效率。安全分析与仿真实验表明,文章方案拥有较高的安全性与实用性。
Deduplication technology plays an important role in the rapid development of cloud storage. The data that are encrypted has become normal before the user uploading them. Different encryption keys are used to encrypt the same data to obtain different ciphertext, which makes the cloud server unable to realize encrypted deduplication. This paper presents a secure encrypted deduplication scheme that can deliver encryption keys in an offline manner. On the basis of dividing data types, the query tags of data popularity are constructed by using elliptic curve. The secure key transfer scheme is constructed by using the broadcast encryption technology so that the same plaintext is encrypted the same ciphertext, which cloud server can complete the unpopular deduplication. For popular data, the improved convergence encryption algorithm can improve the efficiency of deduplication while ensuring data storage security. Security analysis and simulation results show that the scheme has high security and practicability.
出处
《信息网络安全》
CSCD
2017年第7期66-72,共7页
Netinfo Security
基金
国家自然科学基金[61303197
61501276]
山东省自然科学基金[ZR2013FQ005
ZR2016FQ02]
中国科学院网络测评技术重点实验室开放课题
