摘要
单云服务提供者环境下用户随机属性隐私保护包括防范属性集更新泄露与密钥关联属性泄露,主要通过代理认证、零知识证明、可信第三方和匿名签名实现.针对属性保护严重依赖第三方的密钥分配与属性授权,提出了一种密文策略属性基群签密随机属性保护方案.该方案利用无证书群签密的无连接交互验证特性,在用户计算密钥因子时防范云服务提供者获得密钥关联属性信息;利用属性撤销的密钥重构与属性分割的密文重构的相互独立特性,降低了用户签密所需要的最小属性集数量,抵制了攻击者利用属性集更新伪造签名;以密钥服务为中心设计了群签密的身份验证机制以防范其他用户身份伪装.结果表明:该方案实现了保护随机属性安全和消息隐私.
User randomization attribute privacy protection included attribute set updating leakage and attribute leakage of key in Single-CSP(Cloud Service Provider), which performed mainly through proxy authentica-tion,zero-knowledge proof,the trusted third party and anonymous signature.Focusing on attribute protection heavily dependent on third-party key distribution and attribute authority,this paper presented a ciphertext poli-cy attribute-based group signcryption randomization attribute protection scheme.When a user calculated the key factor,the scheme controled CSP getting key associated attribute information by using certificateless group signcryption connectless cross-validation;it reduced the minimal number of attribute set for signcryption need by using attribute revocation and attribute segmentation to mutual independent with sign key and encryption key, and resisted an attacker forged signatures of attribute set updating .In key service-centric, it designed the identity verifying mechanism of group signcryption, and controls masquerading as other user .The scheme implemented the protection of the randomization attribute security and message privacy .
出处
《郑州大学学报(工学版)》
CAS
北大核心
2017年第6期17-22,共6页
Journal of Zhengzhou University(Engineering Science)
基金
国家自然科学基金资助项目(U1636107
61373168)
河南省自然科学基金资助项目(162300410191)
河南省软科学研究计划资助项目(172400410501)
河南省科技攻关计划资助项目(152102310245
172102210172)
关键词
密文策略属性基加密
密钥
签名
验证
不可伪造
CP-ABE(ciphertext policy attribute-based encryption)
key
signature
verify
unforgeability
