可撤销和可追踪的密钥策略属性基加密方案  被引量:7

Revocable and traceable key-policy attribute-based encryption scheme

在线阅读下载全文

作  者:齐芳[1] 李艳梅 汤哲[1] QI Fang;LI Yanmei;TANG Zhe(School of Information Science and Engineering,Central South University,Changsha 410083,China)

机构地区:[1]中南大学信息科学与工程学院,湖南长沙410083

出  处:《通信学报》2018年第11期63-69,共7页Journal on Communications

基  金:国家自然科学基金重点项目(No.61632009);长沙市科技计划基金资助项目(No.kq1701089);国家重点研发计划基金资助项目(No.2018YFD0700500)~~

摘  要:针对基于密钥策略属性基加密(KP-ABE, key-policy attribute-based encryption)方案不能兼顾属性撤销和用户身份追踪的问题,提出一种支持可撤销和可追踪的KP-ABE方案。首先,该方案能够在不更新系统公钥和用户私钥的情况下实现对用户属性的撤销,更新代价比较小,同时可以根据解密密钥追踪到用户身份,从而有效地防止匿名用户的密钥泄露问题。其次,该方案基于线性访问结构(LSSS, linear secret sharing scheme),与树形访问结构相比,执行效率更高。最后,该方案基于判定性q-BDHE假设,给出了在标准模式下的安全性证明。通过与已有的KP-ABE方案进行对比分析得出,该方案的公钥长度更短、加解密的计算开销更低,且在实现属性可撤销的基础上实现了用户身份的可追踪功能,具有较为明显的优势。The existing key-policy attribute-based encryption (KP-ABE) scheme can not balance the problem of attribute revocation and user identity tracking. Hence, a KP-ABE scheme which supported revocable and traceable was proposed. The scheme could revoke the user attributes without updating the system public key and user private key with a less update cost. Meanwhile, it could trace the user identity based on decryption key which could effectively prevent anonymous user key leakage problem. The proposed scheme was based on linear secret sharing scheme (LSSS), which was more ef-ficient than tree-based access structure. Based on the deterministic q-BDHE hypothesis, the proposed scheme gave secu-rity proof until standard mode. Finally, compared with the existing KP-ABE scheme, the scheme has a shorter public key length, lower computational overhead and realizes the traceability function of user identity based on the revocable attribute, which has obvious advantages.

关 键 词:基于密钥策略属性基加密 可撤销 可追踪 线性访问结构 

分 类 号:TN918.1[电子电信—通信与信息系统]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象