基于区块链的多用户环境中公钥可搜索加密方案  被引量：13

作　　者：郑东[1] 朱天泽 郭瑞 ZHENG Dong;ZHU Tianze;GUO Rui(College of Cyberspace Security,Xi’an University of Posts and Telecommunications,Xi’an 710121,China)

机构地区：[1]西安邮电大学网络空间安全学院,陕西西安710121

出　　处：《通信学报》2021年第10期140-152,共13页Journal on Communications

基　　金：国家重点研发计划基金资助项目(No.2017YFB0802000);国家自然科学基金资助项目(No.62072369,No.62072371,No.61802303,No.61772418);陕西省重点研发计划基金资助项目(No.2020ZDLGY08-04,No.2019KW-053);陕西省创新能力支持计划基金资助项目(No.2020KJXX-052,No.2017KJXX-47);陕西省自然科学基金资助项目(No.2019JQ-866,No.2018JZ6001);陕西省教育厅科研基金资助项目(No.19JK0803);青海省基础研究计划基金资助项目(No.2020-ZJ-701)。

摘　　要：为了满足多用户环境中数据安全共享的需求,提出了一种支持一对多模式的公钥可搜索加密方案。具体地,数据拥有者执行一次加密算法可以指定多位用户对密文进行检索,实现更加灵活的密文数据共享。此外,还设计了具体的文件加密密钥传递算法,确保用户在检索到密文后能够正确解密并获取明文。结合区块链技术,利用智能合约执行检测算法保证了检索结果的正确性。在安全性方面,基于判定性双线性Diffie-Hellman假设和修改的判定性双线性Diffie-Hellman假设,证明了在随机谕言机模型下所提方案满足密文关键词不可区分性和陷门信息不可区分性的安全要求,并且可以抵御内部关键词猜测攻击。最后,使用j PBC密码库对所提方案与现有相关方案进行仿真模拟,测试结果表明所提方案具有较高的计算效率。In order to meet the needs of data security sharing in multi-user environment,a public key searchable encryption scheme supporting one-to-many mode was proposed.Specifically,the data owner could specify multiple users to retrieve the ciphertext by executing the encryption algorithm once,so as to achieve more flexible sharing of ciphertext data.In addition,the specific file encryption key transfer algorithm was designed to ensure that the user could decrypt and obtain the plaintext correctly after retrieving the ciphertext.Combined with the blockchain technology,the smart contract execution detection algorithm was used to ensure the correctness of the retrieval results.In terms of security,based on the decisional bilinear Diffie-Hellman hypothesis and the modified bilinear Diffie-Hellman hypothesis,it was proved that the proposed scheme satisfies the security requirements of keyword indistinguishability and trapdoor information indistinguishability under the random oracle model,and could resist the internal keyword guessing attack.Finally,the proposed scheme and the existing related schemes were simulated by using jPBC cryptolibrary,and the test results show that the proposed scheme has high computational efficiency.

关 键 词：可搜索加密 多用户环境 密文安全共享 区块链 智能合约 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]