密码学报(中英文)2024,Vol.11Issue(5):1126-1138,13.DOI:10.13868/j.cnki.jcr.000728
基于区块链的国密轻量级属性基访问控制方案
Blockchain-Based Domestic Cryptographic Lightweight Attribte-Based Access Control Scheme
摘要
Abstract
Mobile devices generate a large amount of private data related to users,it is important to achieve secure data storage and fine-grained access control.Currently,ciphertext policy attribute-based encryption(CP-ABE)is a popular solution.Nevertheless,the existing domestic cryptographic CP-ABE access control schemes are few in number and have bilinear pairing operations with high computational overheads,which are not suitable for resource-constrained IoT devices.Therefore,this study proposes a domestic cryptographic lightweight CP-ABE access control scheme,which replaces the bilinear pairing operation with scalar multiplication in elliptic curves,and reduces the computational overhead of the user side by outsourcing the decryption.Blockchain and interplanetary file system(IPFS)are used to store the encrypted ciphertexts to ensure that they cannot be tampered with and to avoid a single point of failure.In addition,multiple attribute authorities act as blockchain nodes to distribute attribute keys and maintain the blockchain.The results of security analysis and experimental analysis show that the proposed scheme is efficient and secure.关键词
物联网/密文策略属性基加密/轻量级/区块链/访问控制Key words
IoT/CP-ABE/lightweight/blockchain/access control分类
信息技术与安全科学引用本文复制引用
周权,卫凯俊,陈民辉,郑玉龙,曾志康..基于区块链的国密轻量级属性基访问控制方案[J].密码学报(中英文),2024,11(5):1126-1138,13.基金项目
国家重点研发计划(2021YFA1000600) (2021YFA1000600)
国家自然科学基金(12171114) (12171114)
广州大学研究生创新能力培养项目(JCCX2024-012)National Key Research and Development Program of China(2021YFA1000600) (JCCX2024-012)
National Natural Science Foundation of China(12171114) (12171114)
Graduate Innovation Capability Cultivating Program of Guangzhou University(JCCX2024-012) (JCCX2024-012)
