检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:张赛[1] 杨庚[1] 韩亚梅[1] 屠袁飞[1] ZHANG Sai;YANG Geng;HAN Yamei;TU Yuanfei(College of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing 210003, China)
出 处:《计算机工程与应用》2017年第4期51-58,共8页Computer Engineering and Applications
基 金:国家自然科学基金(No.61272084)
摘 要:在属性加密方案中,访问策略中可能包含一些敏感信息,如何在具备丰富的策略表示能力的同时实现访问策略的隐藏已成为云计算环境中亟待解决的问题之一。另外,考虑到在系统中用户的属性会有经常性的变更,属性撤销也成为近年来研究的一个热点。提出一种基于属性策略隐藏的层次化访问控制方案,融合代理重加密技术和CP-ABE方案,解决属性撤销的问题。与之前的方案相比,既保护了策略的隐私,又具有较灵活的访问控制能力,并且引入层次化授权结构,减少了单一授权的负担和风险,提高了安全性。In attribute-based encryption schemes, access policy may contain some sensitive information, how to achieve policy hidden and have abundant expressive ability of access policy at the same time is one of the urgent problems in the cloud computing environment. Users’attributes often change in the system, so attribute revocation has become a hot spot of research in recent years. In this paper, a hierarchical access control scheme with hidden policy is proposed. To solve the problem of attribute revocation, the technique of proxy re-encryption is integrated into CP-ABE scheme. Compared with the previous schemes, the scheme both protect the policy and has flexible access control capability. Furthermore, the hierarchical authorization structure which reduces the burden and risk in the case of one single authority making the scheme secure.
关 键 词:云计算 CP-ABE 访问控制 隐藏策略 属性撤销
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.28