支持密码逆向防火墙的基于SM9的属性基可搜索加密方案  

SM9-based attribute-based searchable encryption scheme with cryptographic reverse firewall

在线阅读下载全文

作  者:高改梅[1] 段明博 荀亚玲[1] 刘春霞[1] 党伟超[1] GAO Gaimei;DUAN Mingbo;XUN Yaling;LIU Chunxia;DANG Weichao(College of Computer Science and Technology,Taiyuan University of Science and Technology,Taiyuan Shanxi 030024,China)

机构地区:[1]太原科技大学计算机科学与技术学院,太原030024

出  处:《计算机应用》2024年第11期3495-3502,共8页journal of Computer Applications

基  金:国家自然科学基金资助项目(62272336)。

摘  要:针对属性基可搜索加密(ABSE)方案大都基于非国密算法设计,且无法抵抗内部算法替换攻击(ASA)的问题,提出一种支持密码逆向防火墙的基于SM9的属性基可搜索加密方案(SM9ABSE-CRF)。该方案将国密算法SM9扩展至ABSE领域,实现了细粒度数据访问控制,并引入密码逆向防火墙(CRF)技术有效抵御ASA。分析了SM9ABSE-CRF在判定性Diffie-Hellman(DBDH)假设下满足了选择关键词下的不可区分性,并形式化证明了CRF的部署满足维持功能性、保留安全性以及抵抗泄漏性。理论分析和仿真实验结果表明,与提供CRF的ABSE方案cABKSCRF(consistent Attribute-Based Keyword Search system with CRF)相比,SM9ABSE-CRF具有更高的安全性,并且在索引与陷门生成阶段也表现出显著的性能优势。In response to the facts that most of Attribute-Based Searchable Encryption(ABSE)schemes are designed on the basis of non-national encryption algorithms and are unable to resist internal Algorithm Substitution Attack(ASA),an SM9-based Attribute-Based Searchable Encryption with Cryptographic Reverse Firewall(SM9ABSE-CRF)was proposed.This scheme extends the SM9 algorithm to the ABSE field,realizes fine-grained data access control,and introduces Cryptographic Reverse Firewall(CRF)technology to effectively resist ASA.SM9ABSE-CRF was analyzed under the Decisional Bilinear Diffie-Hellman(DBDH)assumption,and the deployment of CRF was formally proved to maintain functionality,preserving security,and resisting exfiltration.Theoretical analysis and simulation results show that compared to the ABSE scheme providing CRF—cABKS-CRF(consistent Attribute-Based Keyword Search system with CRF),SM9ABSE-CRF has higher security and demonstrates notable performance advantages during index and trapdoor generation phases.

关 键 词:密码逆向防火墙 可搜索加密 属性基加密 SM9算法 算法替换攻击 

分 类 号:TP309.7[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象