摘要
针对单授权中心方案通信和计算开销较大的问题,提出一种基于密文策略属性基加密(ciphertext-policy attribute-based encryption,CP-ABE)的多授权中心访问控制方案。该方案引入属性管理器对用户属性进行分组,多个授权中心共同生成密钥,同时将部分解密交给云服务器进行。该方案减少了授权中心间的通信消耗和用户解密的资源消耗,同时通过安全性证明及与现有方案进行对比证明该方案安全高效。
Considering high communication and computation overhead in single authority setting,this paper proposed an efficient multi-authorities access control scheme based on ciphertext-policy attribute-based encryption(CP-ABE).The scheme introduced an attribute management server which distributed attributes,and multi-authorities centers generated the key together,and also delegated partial decryption to the cloud server.The scheme reduced the communication cost between the attribute authorities,and also reduced the resource consumption of users.The scheme is provable secure,and comparison with the existing schemes show that it is efficient.
作者
雷丽楠
李勇
Lei Linan;Li Yong(School of Electronic&Information Engineering,Beijing Jiaotong University,Beijing 100044,China;Fujian Provincial Key Laboratory of Network Security&Cryptology,Fujian Normal University,Fuzhou 350007,China)
出处
《计算机应用研究》
CSCD
北大核心
2018年第1期248-252,276,共6页
Application Research of Computers
基金
中央高校基本科研业务费专项资金资助项目(2016YJS003)
国家自然科学基金面上项目(61472032)
福建省网络安全与密码技术重点实验室(福建师范大学)开放课题(15007)
关键词
访问控制
密文策略属性基加密
多授权中心
抗合谋攻击
选择明文攻击
access control
ciphertext-policy attribute-based encryption
multi-authorities center
anti-collusion attack
chosen plaintext attack