摘要
基于网络入侵攻击、匿名用户访问的安全防护管理需求,利用Hadoop分布式软件框架、CP-ABE(Ciphertext Policy ABE)属性基加密算法,建构起访问身份认证、密钥共享的云服务控制平台,由属性授权中心机构自主生成网络通信的公钥、主私钥,数据所有者基于CP-ABE加密算法的双线性映射规则作出数据属性集合的密钥加密,数据接收者基于访问结构的密文、解密密钥完成数据属性集合解密操作,并在公有云服务平台形成加密数据存储和细粒度共享,有效提升计算机网络通信的数据访问、传输管理安全性。
Based on the security protection management requirements of network intrusion at-tacks and anonymous user access,using the Hadoop distributed software framework and the CP-ABE(Ciphertext Policy ABE)attribute based cncryption algorithm,a cloud service control plat-form for access identity authentication and key sharing is constructed.The attribute authoriza-tion center independently generates the public key and master private key for network commu-nication,The data owner encrypts the set of data attributes based on the bilinear mapping rule of the CP-ABE encryption algorithm,while the data recciver decrypts the sct of data attributes based on the ciphertext and decryption key of the access structure.The cncrypted data is stored and shared at a fine-grained level on the public cloud service platform,effectively improving the security of data access and transmission management in computer network communication.
作者
高海燕
GAO Haiyan(Jin Zhong Vocational&Technical College,Jinzhong Shanxi 030600)
出处
《长江信息通信》
2024年第10期169-171,共3页
Changjiang Information & Communications
关键词
计算机网络通信
数据加密
访问控制
属性基加密技术
computer network communication
Data encryption
Access control
Attribute based encryption technology
