摘要
针对云计算环境下为解决属性加密方案在实际应用中的属性撤销问题,本文结合直接撤销方式和间接撤销方式的优点提出云存储中支持属性可撤销的属性加密方案.该方案中的授权机构依照系统中的所有用户给出一份合法用户列表并在加密算法中定义当前的属性时间,当撤销发生时可选择直接将合法用户列表中撤销的用户删除或依据被定义的属性时间更新未撤销属性密钥完成间接撤销并在标准模型下使安全性得到了证明.仿真实验表明了在保证安全性的同时增加了撤销效率.
Combining the advantages of direct revocation method and indirect revocation,a property encryption scheme supporting revocation of attributes in cloud storage was proposed to solve the attribute revocation problem of the attribute encryption scheme in practical applications in the cloud computing environment. The authorized agency in the scheme gives a list of legal users according to all users in the system and defines the current attribute time in the encryption algorithm. When the revocation occurs,the authorized user can choose to delete the revoked user directly from the list of legitimate users or update the unrevoked attribute key according to the defined attribute time to complete the indirect revocation,and the security was demonstrated under the standard model. Simulation experiments show that the efficiency of revocation is increased while the security is ensured.
作者
谭跃生
曹耀介
王静宇
TAN Yue-sheng;CAO Yao-jie;WANG Jing-yu(Information Engineering School,Inner Mongolia University of Science and Technology,Baotou 014010,China)
出处
《内蒙古科技大学学报》
CAS
2018年第1期65-71,共7页
Journal of Inner Mongolia University of Science and Technology
基金
国家自然科学基金资助项目(61662056)
内蒙古自然科学基金资助项目(2016MS0608
2016MS0609)
关键词
云计算
云存储
属性加密
直接属性撤销
间接属性撤销
逻辑二叉树
cloud computing
cloud storage
attribute encryption
direct attribute revocation
indirect attribute revocation
logical bi-nary tree
