摘要
针对云存储环境下特有的信任依赖、用户串谋以及数据后向安全性问题,结合属性密钥分发方法、混合加密算法及ALKH算法,提出了一种适用于云存储的数据安全共享模型。数据安全共享模型混合使用CP-ABE和对称加密算法完成了数据的机密性保护,并使用多个密钥管理中心和云存储服务商分别完成用户属性和属性密钥的管理,在降低信任依赖的同时解决了用户串谋攻击问题。此外,安全共享模型提出了属性密钥更新和数据的重加密算法,增强了共享模型对数据后向安全性的保护能力。安全和可行性分析表明,数据安全共享模型降低了云存储环境下信任依赖、用户串谋攻击以及数据动态安全性问题,适用于实际的云存储环境。
According to the characteristics such as trust dependence,user collusion and backward security issues in cloud storage environment,this paper proposes a data sharing security model suits for cloud storage based on the attributes key distribution method,the mixed encryption algorithm and ALKH algorithm. Data security sharing model adopts a mixture of CP-ABE and symmetric encryption algorithm to complete the data confidentiality protection,uses multiple key management centers and cloud storage providers to complete user attributes and the management of attribute key respectively. At the same time,it reduced the trust dependence and solved the problems of user collusion attack. In addition,the secure sharing model proposed attribute key updating and data encryption algorithm to enhance the sharing model for data backwards security protection. The safety and feasibility analysis show that the data security sharing model reduces trust dependence,user collusion attacks and dynamic data security issues in the cloud storage environment. And it applies to the actual cloud storage environment.
出处
《激光杂志》
北大核心
2017年第11期130-134,共5页
Laser Journal
基金
国家自然科学基金项目(51378350)
关键词
云存储
数据共享
加密算法
安全性
cloud storage
data sharing
encryption algorithm
security