基于属性加密的数据共享管理研究  被引量:2

Research on Data Sharing Management Based on Attributebased Encryption

在线阅读下载全文

作  者:王森 许涛[1] 李金贵 Wang Sen;Xu Tao;Li Jingui(Department of Information and Network Security,State Information Center,Beijing 100045;Department of Public Technical Service,State Information Center,Beijing 100045)

机构地区:[1]国家信息中心信息与网络安全部,北京100045 [2]国家信息中心公共技术服务部,北京100045

出  处:《信息安全研究》2023年第11期1061-1066,共6页Journal of Information Security Research

摘  要:数据在共享和使用中面临着恶意攻击、供应链漏洞、安全产品缺陷、技术人员窃取等安全威胁.采用认证网关和密码机对用户身份进行认证,并对数据进行机密性完整性保护,能够增加安全性.但还存在内部威胁,如管理员被收买或内部终端被黑客控制,绕过安全防护机制.针对这些威胁,提出了基于SM9属性加密封装密钥,实现数据共享应用中不出现明文数据、有效应对系统管理员窃密等内部威胁.Data sharing and applications are faced with malicious attacks,supply chain vulnerabilities,security product defects,technical personnel theft and other security threats.It can improve security by deploying a security authentication gateway and cryptographic server to authenticate user identity and protect data confidentiality and integrity.However,there are also internal threats.For example,the administrator being bought or the internal terminal is controlled by hackers,which will bypass these security protection mechanisms.In view of these threats,this paper proposes an attributebased encryption strategy to encapsulate the key based on SM9,so as to avoid the plaintext data in data sharing applications and effectively deal with internal threats such as theft by system administrators.

关 键 词:数据安全 商用密码 身份认证 访问控制 数据加密 属性加密 SM9 

分 类 号:TP309[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象