基于代理重加密的财务数据安全共享技术  被引量：2

作　　者：崔嵬 杨同军 苗凯 CUI Wei;YANG Tongjun;MIAO Kai(Hebei Special Equipment Supervision and Inspection Institute,Shijiazhuang 050000,China)

机构地区：[1]河北省特种设备监督检验研究院,河北石家庄050000

出　　处：《现代电子技术》2023年第1期74-78,共5页Modern Electronics Technique

摘　　要：为保证财务数据的机密性,提出基于代理重加密的财务数据安全共享技术。建立用户私钥,分别利用对称加密与属性加密混合方法获得密钥密文与数据密文,生成新的访问结构并获取重加密密文;分析云储存结构,将云储存结构分为接入、接口、管理和储存四个层次,定义云端储存设备、信息属主与请求用户三个角色的基本职责,设置领导与群众节点构建数据储存模型,通过Raft协议集群内部实现节点的储存与传输;创新性地设计共享合约机制,确认签名信息,发布储存与共享交易信息,经过权限校对与安全检测,实现信息安全共享。实验结果表明,所提技术加密和解密时间均低于100 s,数据被破解数量仅为8个,能够降低数据特征显著度,减少被破解次数,为信息共享提供可靠保障。A financial data security sharing technology based on proxy re-encryption is proposed to ensure the confidentiality of financial data.The user private key is established.The key ciphertext and data ciphertext are obtained respectively by the hybrid method of symmetric encryption and attribute encryption to generate a new access structure and obtain the re-encrypted ciphertext.The cloud storage structure is analyzed and divided into four hierarchies of access,interface,management and storage.The basic responsibilities of cloud storage equipment,information owner and requesting user are defined.Leaders and mass nodes are set up.The data storage model is built.The storage and transmission of nodes is realized within the raft protocol cluster.The sharing contract mechanism is designed innovatively,the signature information is confirmed,the store transaction information and share transaction information are issued,and the authority proofreading and security detection are carried out,so as to realize the information security sharing.The experimental results show that the encryption and decryption time of the proposed technology is shorter 100 s,and its cracked data quantity is only 8,so it can reduce the prominence of data features and the number of cracked times,and provide a reliable guarantee for information sharing.

关 键 词：代理重加密 财务数据 数据共享 用户私钥 云储存结构 共享权限 安全共享 

分 类 号：TN918.91-34[电子电信—通信与信息系统] TH16[电子电信—信息与通信工程]