智能电网中支持细粒度访问控制的隐私保护数据聚合方案

Privacy-preserving Data Aggregation with Fine Grained Access Control for Smart Grid

智能电网通过实时采集和分析用电数据,可实现电力的动态调配和智能定价,对提高电网的工作效率和可靠性具有重要意义。然而在用电数据采集过程中,存在用户隐私泄露等安全威胁。此外,基于最小必要知情原则,各种用电数据的统计信息应仅能被相应授权实体读取。针对以上问题,文章提出一种智能电网中支持细粒度访问控制的隐私保护数据聚合方案,该方案使用霍纳规则以多维方式对多用户以及多区域的用电数据进行聚合,使用同态加密保证用户用电数据的私密性,使用数字签名保证用电数据的完整性,使用代理重加密实现聚合后数据的细粒度访问控制,即只有指定的授权实体才能读取聚合后的数据。安全性分析表明,文章提出的方案不仅能保证用户隐私及用电数据的完整性,而且能对聚合数据进行细粒度的访问控制,能够更好地满足实际应用需求。

Smart grid enables dynamic power allocation and intelligent pricing,thanks to collecting and analyzing power consumption data in real time.This feature is of great significance to improve the efficiency and reliability of power grid.However,in the process of power data acquisition,security threats need to be considered with respect to the leakage of user's privacy.In addition,based on the principle of minimum necessary knowledge,the statistical information of various power consumption data should only be read by the designated authorized entity.To address the above problems,a privacy-preserving data aggregation with fine grained access control for smart grid was proposed.The scheme used Horner rule to aggregate multi-user and multi region power consumption data in a multidimensional way.The homomorphic encryption was used to ensure the privacy of user power consumption data,the digital signature was used to ensure authenticity of power consumption data.And the proxy re-encryption was used to achieve fine-grained access control of aggregated data,that is to say,the designated authorized entity could only read the aggregated data.Security analyses show that the proposed scheme can not only guarantee user's privacy and the integrity of power consumption data,but also enables fine-grained access control of the aggregated data.Therefore,the scheme is suitable for real-world applications.