计算机工程与应用
計算機工程與應用
계산궤공정여응용
COMPUTER ENGINEERING AND APPLICATIONS
2015年
3期
79-84
,共6页
属性基加密%多授权机构%叛徒撤销%完全子树架构
屬性基加密%多授權機構%叛徒撤銷%完全子樹架構
속성기가밀%다수권궤구%반도철소%완전자수가구
attribute-based encryption%multi-authority%traitor verocation%complete subtree structure
针对单授权机构下属性基加密方案中的密钥滥用问题,以及加密机制本身存在的效率和安全问题,研究一种在多授权机构下可对非法用户(或叛徒)进行撤销的属性基加密方案。在单授权机构下属性基加密方案的基础上,利用双线性映射和线性秘密共享方案等来实现多个授权机构相互协作而不需要中央机构控制,并结合完全子树架构将用户映射到二叉树上来提高撤销叛徒的效率,将单授权方案转化成多授权机构下的可撤销叛徒的属性基加密方案MA-TRABE,还分析了该方案的抗串谋攻击安全性和多授权机构下的安全性。根据电子商务安全支付的需要,设计了MA-TRABE的实际应用。
針對單授權機構下屬性基加密方案中的密鑰濫用問題,以及加密機製本身存在的效率和安全問題,研究一種在多授權機構下可對非法用戶(或叛徒)進行撤銷的屬性基加密方案。在單授權機構下屬性基加密方案的基礎上,利用雙線性映射和線性祕密共享方案等來實現多箇授權機構相互協作而不需要中央機構控製,併結閤完全子樹架構將用戶映射到二扠樹上來提高撤銷叛徒的效率,將單授權方案轉化成多授權機構下的可撤銷叛徒的屬性基加密方案MA-TRABE,還分析瞭該方案的抗串謀攻擊安全性和多授權機構下的安全性。根據電子商務安全支付的需要,設計瞭MA-TRABE的實際應用。
침대단수권궤구하속성기가밀방안중적밀약람용문제,이급가밀궤제본신존재적효솔화안전문제,연구일충재다수권궤구하가대비법용호(혹반도)진행철소적속성기가밀방안。재단수권궤구하속성기가밀방안적기출상,이용쌍선성영사화선성비밀공향방안등래실현다개수권궤구상호협작이불수요중앙궤구공제,병결합완전자수가구장용호영사도이차수상래제고철소반도적효솔,장단수권방안전화성다수권궤구하적가철소반도적속성기가밀방안MA-TRABE,환분석료해방안적항천모공격안전성화다수권궤구하적안전성。근거전자상무안전지부적수요,설계료MA-TRABE적실제응용。
Due to the key-abuse problem in the single authority attribute-based encryption, as well as the efficiency and security issues because of the encryption mechanism, this paper studies a multi-authority attribute-based encryption which can implement the revocation of unauthorized users(or traitors). Using bilinear mapping and linear secret sharing scheme to implement the interaction of multiple authorities without the need for a central authority, as well as combing with the complete subtree structure to map the users to a binary tree for efficiency improvement of traitor revocation, the paper transfers a single authority scheme into a multi-authority attribute-based encryption scheme for traitor revocation called MA-TRABE. It also analyzes the security under collusion attack and multi-authority circumstances. According to the needs of security payment in the e-commerce, the practical application of MA-TRABE is designed.