计算机工程2012,Vol.38Issue(11):20-22,26,4.DOI:10.3969/j.issn.1000-3428.2012.11.007
基于属性群的云存储密文访问控制方案
Cryptographic Access Control Scheme in Cloud Storage Based on Attribute Group
摘要
Abstract
This paper proposes a cryptographic access control scheme based on attribute group in cloud storage. The symmetric cryptosystem is used to encrypt the original data by the Data Owner(DO), and the attribute-based encryption algorithm is used to encrypt the symmetric key. DO delegate the task of data re-encryption to the Cloud Service Provider(CSP), which not only reduces the computational cost of DO, but also does not reveal extra information of the plaintext to CSP The proposed scheme supports the unit of a collection of multiple users when any attribute or user is revoked. The fine-grained and flexible access control can be achieved by hybrid cryptosystem meachanism. Compared with the existing access control schemes, the proposed scheme is more efficient in revocation cost and can alleviate the administering burders on DO. The scheme guarantees collusion resistance against colluding users, data confidentiality, forward and backward secrecy.关键词
密文访问控制/云存储/属性群/用户权限撤销/重加密Key words
cryptographic access control/ cloud storage/ attribute group/ user revocation/ re-encryption分类
信息技术与安全科学引用本文复制引用
杨小东,王彩芬..基于属性群的云存储密文访问控制方案[J].计算机工程,2012,38(11):20-22,26,4.基金项目
国家自然科学基金资助项目(61163038) (61163038)
西北师范大学青年教师科研能力提升计划基金资助项目(NWNU-LKQN-10-22) (NWNU-LKQN-10-22)
