CAJ | 학술논문

针对云计算环境下的安全性和隐私性问题，在 CP-ABE 的基础上提出 MAH-ABE （Multiple and Hierarchi-cal Attribute Based Encryption）访问控制模型，划分了公共领域和私人领域，私人领域采用 CP ，ABE 密文访问控制，公共领域采用等级多信任机构来管理属性和密钥，减少了管理复杂度。同时，该模型引入失效时间属性来执行属性更新操作。最后给出模型的安全性证明和仿真，表明该模型是高效灵活，细粒度并且安全的。
침대운계산배경하적안전성화은사성문제，재 CP-ABE 적기출상제출 MAH-ABE （Multiple and Hierarchi-cal Attribute Based Encryption）방문공제모형，화분료공공영역화사인영역，사인영역채용 CP ，ABE 밀문방문공제，공공영역채용등급다신임궤구래관리속성화밀약，감소료관리복잡도。동시，해모형인입실효시간속성래집행속성경신조작。최후급출모형적안전성증명화방진，표명해모형시고효령활，세립도병차안전적。
For solving security and privacy problems ,a novel access control model-multiple and hierarchical attribute-based encryption (MAH-ABE) based on the ciphertext-policy attribute-based encryption (CP-ABE) is proposed .In this model ,the do-main has been divided into public and private ones ,private domain is managed with CP-ABE scheme ,while public domain adopts multiple and hierarchical trust authorities to manage attributes and keys to help reduce the complexity of key management .A new concept called “expiration time” is created to deal with attribute revocation with high efficiency .Finally ,security and performance analysis is provided to demonstrate that the model is scalable ,flexible ,fine-grained and secure in cloud computing environment .