云存储中的用户数据安全
운존저중적용호수거안전
User Data Security in Cloud Storage Service
  • 万方数据
    计算机科学与探索 계산궤과학여탐색
    JOURNAL OF FRONTIERS OF COMPUTER SCIENCE & TECHNOLOGY
    2013年 12期 1093-1103 ,共11页

    张婧%陈克非%吕林%郭捷

    장청%진극비%려림%곽첩

    安全搜索引擎%云存储%属性加密(ABE)%代理重加密%可回取证明 安全搜索引擎%雲存儲%屬性加密(ABE)%代理重加密%可迴取證明
    안전수색인경%운존저%속성가밀(ABE)%대리중가밀%가회취증명
    secure search engine%cloud storage service%attribute-based encryption (ABE)%proxy re-encryption%proof of retrievability
    详细分析了目前主流的云服务提供商各自的运行机制、关键技术、安全措施等,从中提取出云中安全需求。提出了一个结合属性加密、可回取证明、代理重加密等技术的云数据安全框架,从保密性、完整性、可用性三个方面保障了云端数据的安全,并由此实现了一个基于云存储服务的安全搜索引擎,使用细粒度的访问控制保证非授权的、关键字等信息不会被泄露,同时仍保持较为高效的数据检索服务。
    상세분석료목전주류적운복무제공상각자적운행궤제、관건기술、안전조시등,종중제취출운중안전수구。제출료일개결합속성가밀、가회취증명、대리중가밀등기술적운수거안전광가,종보밀성、완정성、가용성삼개방면보장료운단수거적안전,병유차실현료일개기우운존저복무적안전수색인경,사용세립도적방문공제보증비수권적、관건자등신식불회피설로,동시잉보지교위고효적수거검색복무。
    This paper analyzes the major cloud service providers’key technology and security mechanism to extract the security requirement of current popular cloud services. And based on this analysis, this paper proposes a security framework which integrates cryptography algorithms as attribute-based encryption (ABE), proof of retrievability and proxy re-encryption to ensure the confidentiality, integrity, availability of cloud data. Furthermore, this paper implements a prototype of cloud storage service based efficient search system which employs ABE for fine-grained access control to protect unauthorized users’access to sensitive file information (abstract, keywords) during search process and at the same time keeps the efficiency.
    원문보기 원문다운로드 사이트로이동
저자의 최근 논문