通信学报
通信學報
통신학보
JOURNAL OF CHINA INSTITUTE OF COMMUNICATIONS
2014年
2期
95-103
,共9页
黄勤龙%马兆丰%傅镜艺%杨义先%钮心忻
黃勤龍%馬兆豐%傅鏡藝%楊義先%鈕心忻
황근룡%마조봉%부경예%양의선%뉴심흔
数字版权管理%隐私保护%属性基加密%同态加密%云计算
數字版權管理%隱私保護%屬性基加密%同態加密%雲計算
수자판권관리%은사보호%속성기가밀%동태가밀%운계산
digital rights management%privacy preserving%attribute-based encryption%homomorphic encryption%cloud computing
针对云计算环境中数字内容安全和用户隐私保护的需求,提出了一种云计算环境中支持隐私保护的数字版权保护方案。设计了云计算环境中数字内容版权全生命周期保护和用户隐私保护的框架,包括系统初始化、内容加密、许可授权和内容解密4个主要协议;采用基于属性基加密和加法同态加密算法的内容加密密钥保护和分发机制,保证内容加密密钥的安全性;允许用户匿名向云服务提供商订购内容和申请授权,保护用户的隐私,并且防止云服务提供商、授权服务器和密钥服务器等收集用户使用习惯等敏感信息。与现有的云计算环境中数字版权保护方案相比,该方案在保护内容安全和用户隐私的同时,支持灵活的访问控制,并且支持在线和超级分发应用模式,在云计算环境中具有较好的实用性。
針對雲計算環境中數字內容安全和用戶隱私保護的需求,提齣瞭一種雲計算環境中支持隱私保護的數字版權保護方案。設計瞭雲計算環境中數字內容版權全生命週期保護和用戶隱私保護的框架,包括繫統初始化、內容加密、許可授權和內容解密4箇主要協議;採用基于屬性基加密和加法同態加密算法的內容加密密鑰保護和分髮機製,保證內容加密密鑰的安全性;允許用戶匿名嚮雲服務提供商訂購內容和申請授權,保護用戶的隱私,併且防止雲服務提供商、授權服務器和密鑰服務器等收集用戶使用習慣等敏感信息。與現有的雲計算環境中數字版權保護方案相比,該方案在保護內容安全和用戶隱私的同時,支持靈活的訪問控製,併且支持在線和超級分髮應用模式,在雲計算環境中具有較好的實用性。
침대운계산배경중수자내용안전화용호은사보호적수구,제출료일충운계산배경중지지은사보호적수자판권보호방안。설계료운계산배경중수자내용판권전생명주기보호화용호은사보호적광가,포괄계통초시화、내용가밀、허가수권화내용해밀4개주요협의;채용기우속성기가밀화가법동태가밀산법적내용가밀밀약보호화분발궤제,보증내용가밀밀약적안전성;윤허용호닉명향운복무제공상정구내용화신청수권,보호용호적은사,병차방지운복무제공상、수권복무기화밀약복무기등수집용호사용습관등민감신식。여현유적운계산배경중수자판권보호방안상비,해방안재보호내용안전화용호은사적동시,지지령활적방문공제,병차지지재선화초급분발응용모식,재운계산배경중구유교호적실용성。
In order to meet the needs of digital content and user privacy protection in cloud computing environment, a privacy-preserving digital rights management (DRM) scheme in cloud computing was proposed. The framework of digital content copyright lifecycle protection and user privacy protection in cloud computing was firstly designed, which includes four protocols:system setup, content encryption, license acquisition and content decryption, and then a content encryption key protection and distribution mechanism based on attribute-based encryption and additively ho-momorphic encryption was proposed, which ensures the security of content encryption key. In addition, the proposed scheme also allows the users to purchase content and acquire license anonymously from cloud service provider, which protects the user privacy and prevents cloud service provider, license server and key server in the cloud from collect-ing the user’s sensitive information. Compared with existing DRM schemes in cloud computing, the proposed scheme which not only protects the data security and user privacy, but also supports fine-grained access control, and supports online and super-distribution application modes, is more applicable in the copyright protection for cloud computing.
