计算机工程Issue(10):20-24,5.DOI:10.3969/j.issn.1000-3428.2014.10.005
基于代理的即时属性撤销KP-ABE方案
Proxy-based Immediate Attribute Revocation KP-ABE Scheme
摘要
Abstract
Attribute revocation is crucial to the practical use of Attribute-based Encryption( ABE) . Most of the existing revocable ABE schemes under the indirect revocation model suffer in terms of delaying in revocation or updating keys and ciphertexts. To address this,this paper proposes a proxy-based immediate attribute revocation Key Policy( KP) attribute-based encryption under the indirect model without issuing new keys or re-encrypting existing ciphertexts. It achieves attribute revocation by introducing a proxy in the decryption process and reduces the burden for the key authority. The proxy is semi-trusted which revokes user access privileges and cannot decrypt ciphertexts. Analysis results show that the scheme supports fine-grained access control policies and achieves three kinds of revocation including system attribute revocation,user revocation and user attribute revocation.关键词
属性基加密/密钥策略/访问控制/半可信代理/属性撤销/即时撤销Key words
Attribute-based Encryption(ABE)/Key Policy(KP)/access control/semi-trusted proxy/attribute revocation/immediate revocation分类
信息技术与安全科学引用本文复制引用
林娟,薛庆水,曹珍富..基于代理的即时属性撤销KP-ABE方案[J].计算机工程,2014,(10):20-24,5.基金项目
国家“973”计划基金资助项目(2012CB723401) (2012CB723401)
国家自然科学基金资助项目(61170227,61161140320)。 (61170227,61161140320)
