| 具有隐私保护的云存储访问控制方案 |
| |
| 引用本文: | 张应辉,郑东,马华.具有隐私保护的云存储访问控制方案[J].电子科技,2015,28(6):61. |
| |
| 作者姓名: | 张应辉 郑东 马华 |
| |
| 作者单位: | (1.西安邮电大学 无线网络安全技术国家工程实验室,陕西 西安 710121;
2.中国科学院信息工程研究所 信息安全国家重点实验室,北京 100093;
3.西安电子科技大学 数学与统计学院,陕西 西安 710071) |
| |
| 基金项目: | 国家自然科学基金资助项目,陕西省自然科学基础研究计划重点基金资助项目,工业和信息化重大专项基金资助项目 |
| |
| 摘 要: | 针对传统的访问控制方案无法在云计算环境下保护用户的属性隐私,提出了具有隐私保护的云存储访问控制方案。采用混合加密体制实现了数据的机密性,即利用对称密钥加密明文数据,再利用公钥密码体制对对称密钥进行加密。在新的访问控制方案中,公钥加密采用了匿名的密文策略下基于属性的加密技术。安全性分析表明,新方案在保护用户属性隐私的同时,达到了选择明文安全性,可抵抗恶意用户及云存储服务器的合谋攻击。
|
| 关 键 词: | 云存储 访问控制 隐私保护 基于属性的加密 |
Privacy-aware Access Control Scheme for Cloud Storage |
| |
| ZHANG Yinghui,ZHENG Dong,MA Hua.Privacy-aware Access Control Scheme for Cloud Storage[J].Electronic Science and Technology,2015,28(6):61. |
| |
| Authors: | ZHANG Yinghui ZHENG Dong MA Hua |
| |
| Affiliation: | (1.National Engineering Laboratory for Wireless Security,Xi'an University of Posts and Telecommunications,Xi'an 710121,China;
2.State Key Laboratory of Information Security,Institute of Information Engineering,Chinese Academy of Sciences,Beijing 100093,China;
3.School of Mathematics and Statistics,Xidian University,Xi'an 710071,China) |
| |
| Abstract: | A privacy-aware access control scheme suitable for cloud storage is proposed in view of the inability of traditional access control methods to protect users' attribute privacy in cloud computing,.A hybrid encryption mechanism is adopted to realize data confidentiality,that is,encrypting plaintexts based on a symmetric encryption key which is encrypted by a public key encryption scheme.In the proposed access control scheme,a ciphertext-policy attribute-based encryption technique is used for public key encryption.The security analysis indicates that the proposed scheme achieves chosen-plaintext security and resists collusion attacks from malicious users and cloud storage servers while protecting users' attribute privacy. |
| |
| Keywords: | |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《电子科技》浏览原始摘要信息 |
|
点击此处可从《电子科技》下载全文 |
|
