摘要
传统基于数字证书的数据加密认证方式存在认证授权问题,在系统数据分发过多情况下会导致单点传输的拥塞问题。提出属性基加密数据传输、共享与管理策略,由多个网络节点参与数字签名、属性信息加密与叠加,只有符合密文或密钥属性要求的访问主体才能解密消息,进而提高属性基数据加密/解密、用户访问控制的效率与安全性。
The traditional data encryption and authentication method based on digital certificates has authentication and authorization issues,which can lead to congestion in single point transmission when the system distributes too much data.Propose a strategy for attribute based encrypted data transmission,sharing,and management,with multiple network nodes participating in digital signature,attribute information encryption,and overlay.Only access subjects that meet the requirements of ciphertext or key attributes can decrypt messages,thereby improving the efficiency and security of attribute based data encryption/decryption,and user access control.
作者
徐浩
张侃
刘亚天
XU Hao;ZHANG Kan;LIU Yatian(China Telecom Group Limited Network and Information Security Management Department,Beijing 100010)
出处
《软件》
2023年第11期91-93,共3页
Software
关键词
云计算
属性基加密
安全访问控制
cloud computing
attribute based encryption
security access control