电子学报
電子學報
전자학보
ACTA ELECTRONICA SINICA
2014年
4期
821-827
,共7页
陈丹伟%邵菊%樊晓唯%陈林铃%何利文
陳丹偉%邵菊%樊曉唯%陳林鈴%何利文
진단위%소국%번효유%진림령%하리문
云计算%访问控制%隐私保护%属性基加密
雲計算%訪問控製%隱私保護%屬性基加密
운계산%방문공제%은사보호%속성기가밀
cloud computing%access control%privacy%attribute-based encryption
针对云计算环境下的安全性和隐私性问题,在 CP-ABE 的基础上提出 MAH-ABE (Multiple and Hierarchi-cal Attribute Based Encryption)访问控制模型,划分了公共领域和私人领域,私人领域采用 CP ,ABE 密文访问控制,公共领域采用等级多信任机构来管理属性和密钥,减少了管理复杂度。同时,该模型引入失效时间属性来执行属性更新操作。最后给出模型的安全性证明和仿真,表明该模型是高效灵活,细粒度并且安全的。
針對雲計算環境下的安全性和隱私性問題,在 CP-ABE 的基礎上提齣 MAH-ABE (Multiple and Hierarchi-cal Attribute Based Encryption)訪問控製模型,劃分瞭公共領域和私人領域,私人領域採用 CP ,ABE 密文訪問控製,公共領域採用等級多信任機構來管理屬性和密鑰,減少瞭管理複雜度。同時,該模型引入失效時間屬性來執行屬性更新操作。最後給齣模型的安全性證明和倣真,錶明該模型是高效靈活,細粒度併且安全的。
침대운계산배경하적안전성화은사성문제,재 CP-ABE 적기출상제출 MAH-ABE (Multiple and Hierarchi-cal Attribute Based Encryption)방문공제모형,화분료공공영역화사인영역,사인영역채용 CP ,ABE 밀문방문공제,공공영역채용등급다신임궤구래관리속성화밀약,감소료관리복잡도。동시,해모형인입실효시간속성래집행속성경신조작。최후급출모형적안전성증명화방진,표명해모형시고효령활,세립도병차안전적。
For solving security and privacy problems ,a novel access control model-multiple and hierarchical attribute-based encryption (MAH-ABE) based on the ciphertext-policy attribute-based encryption (CP-ABE) is proposed .In this model ,the do-main has been divided into public and private ones ,private domain is managed with CP-ABE scheme ,while public domain adopts multiple and hierarchical trust authorities to manage attributes and keys to help reduce the complexity of key management .A new concept called “expiration time” is created to deal with attribute revocation with high efficiency .Finally ,security and performance analysis is provided to demonstrate that the model is scalable ,flexible ,fine-grained and secure in cloud computing environment .