摘要
为了解决云服务器的数据安全性的问题,本文在CP-ABE的基础上设计出一种云存储中基于属性层次权限变更的访问控制方案,首先对用户的文件进行对称加密,将所得的密钥利用CP-ABE进行加密。在用户要访问数据时,必需自已的属性要满足预先定义的访问框架结构,才能进行访问。本文的方案将属性的版本号作为属性动态更改的关键点。当属性改变时,Authority会生成一个新的密钥与更新密钥。用户使用该更新密钥,就能够对密钥进行更新,而数据的用户只要拥有当前最新密钥就能对数据进行访问。仿真实验结果表明本文提出的控制方案具有良好的运行效率以及安全性。
In order to solve the problem of data security of cloud server,in this paper,on the basis of the CP-ABE designed a cloud storage access control scheme based on attribute hierarchical permission to change,first to symmetric encryption of user files,will be the key to use CP-ABE is encrypted.When the user is accessing the data,it is necessary to satisfy the pre-defined access framework structure for access.The schema in this article USES the version number of the attribute as a key point for dynamic change of attributes.When the property changes,the Authority generates a new key and the update key.With this update key,the user can update the key,and the data user can access the data as long as the current key is available.The simulation results show that the proposed control scheme has good operation efficiency and safety.
作者
闫洁
Yan Jie(Changchun Finance College,Changchun Jilin 130028,China)
出处
《科技通报》
2019年第11期118-122,共5页
Bulletin of Science and Technology
基金
吉林省教育科学“十三五”规划重点课题(ZD17177)
关键词
云存储
权限变更
数据安全
更新密匙
cloud storage
permission change
data security
a new key pair
