摘要
传统的加密方案仅依赖密钥管理来确保数据隐私,一旦密钥泄露,密文数据便无法抵抗被破解的风险.为增强外包数据的安全性,避免攻击者通过窃取密钥来获取可用信息,本文首次提出了利用基于Hash算法改进的全有或全无转换(All-or-Nothing Transformation,AONT)机制(H-AONT)对数据进行预处理,再结合传统的加密算法隐藏数据信息.通过H-AONT算法将明文消息转换成伪消息数据块,显著提升了外包数据的安全性.因此,用户能够将支持公开验证的数据持有性验证操作迁移到可信的第三方执行,而不必担心泄露隐私信息.经过分析和实验证明,该系统具有可靠的安全性和较高的审计效率.
The traditional encryption schemes only rely on key management to ensure data privacy.Once the key is leaked,the encrypted data cannot resist the risk of being cracked.In order to enhance the security of outsourcing data and prevent attackers from stealing the key to obtain the available information,this paper proposes for the first time to use the improved All-or-Nothing Transformation(AONT)mechanism based on hash algorithm(H-AONT)to preprocess the data,and then combine with the traditional encryption algorithm to hide the data information.The plaintext is converted into pseudo-message data blocks by H-AONT algorithm,which significantly improves the security of outsourced data.Therefore,users can migrate the prove of data possess operations that support public verification to a trusted third-party agent(TPA)without fear of disclosing privacy information.The analysis and experiments show that the system has reliable security and high audit efficiency.
作者
边根庆
李欣妍
BIAN Gen-qing;LI Xin-yan(School of Information and Control Engineering,Xi′an University of Architecture and Technology,Xi′an 710055,China)
出处
《小型微型计算机系统》
CSCD
北大核心
2022年第10期2219-2225,共7页
Journal of Chinese Computer Systems
基金
国家自然科学基金项目(61872284)资助.
