CAJ | 학술논문

为保护组合文档全生命周期的隐私安全，提出了一种基于属性加密的组合文档安全自毁方案。该方案引入多级安全思想创建新的组合文档结构，采用访问密钥加密组合文档内容、基于属性的加密算法加密访问密钥，两者的密文经过一系列算法提取和变换后获得密文分量和封装自毁对象，分别存储在两个分布式哈希表网络和云服务器中。当组合文档过期后，该网络节点将自动丢弃所存密文分量，使得原始组合文档密文和访问密钥不可恢复，从而实现安全自毁。安全分析表明，该方案既能抵抗传统的密码分析或蛮力攻击，又能抵抗分布式哈希表网络的Sybil攻击。
위보호조합문당전생명주기적은사안전，제출료일충기우속성가밀적조합문당안전자훼방안。해방안인입다급안전사상창건신적조합문당결구，채용방문밀약가밀조합문당내용、기우속성적가밀산법가밀방문밀약，량자적밀문경과일계렬산법제취화변환후획득밀문분량화봉장자훼대상，분별존저재량개분포식합희표망락화운복무기중。당조합문당과기후，해망락절점장자동주기소존밀문분량，사득원시조합문당밀문화방문밀약불가회복，종이실현안전자훼。안전분석표명，해방안기능저항전통적밀마분석혹만력공격，우능저항분포식합희표망락적Sybil공격。
In order to protect the confidentiality and privacy security of the composite documents within the whole life cycle , we leverage attribute-based encryption (ABE ) algorithm to propose a secure self-destruction scheme for composite documents ,re-ferred to as SelfDoc .We firstly set up a new composite document structure by employing the idea of multilevel security ,and then , use an access key to encrypt the composite document and the ABE algorithm to encrypt the access key .After a series of algorithms for extracting and transforming from the two ciphertexts ,we obtain ciphertext shares and encapsulated self-destruction object ,both of which are stored into two distributed hash table (DHT ) networks and cloud servers respectively .Nodes in the DHT networks will self-discard the ciphertext shares periodically ,so the original ciphertext and access key are unrecoverable after the expiration time , and the function of secure self-destruction is achieved .Compared with existing schemes ,the security analyses indicate that SelfDoc scheme is able to resist the traditional cryptoanalysis or brute-force attack ,and the Sybil attacks from the DHT networks .