云环境下基于LWE的多机构属性基加密方案

doi:10.3969/j.issn.1671-1122.2017.09.030

信息网络安全 ›› 2017, Vol. 17 ›› Issue (9): 128-133.doi: 10.3969/j.issn.1671-1122.2017.09.030

云环境下基于LWE的多机构属性基加密方案

闫玺玺¹(), 刘媛¹, 胡明星¹, 黄勤龙²

1. 河南理工大学计算机科学与技术学院,河南焦作 454003
2. 北京邮电大学网络空间安全学院,北京 100876

收稿日期:2017-08-01 出版日期:2017-09-20 发布日期:2020-05-12
作者简介:
作者简介：闫玺玺（1985—）,女,河南,讲师,博士,主要研究方向为网络与信息安全、数字版权管理、数字内容安全等;刘媛（1989—）,女,河南,硕士研究生,主要研究方向为密码学、网络与信息安全;胡明星（1994—）,男,河南,硕士研究生,主要研究方向为密码学、网络与信息安全;黄勤龙（1988—）,男,江西,讲师,博士,主要研究方向为数字版权管理、数字内容安全、网络安全。
基金资助:
国家自然科学基金[61300216];河南省科技厅项目[132102210123];河南省教育厅科研项目[16A520013]

LWE-based Multi-authority Attribute-based Encryption Scheme in Cloud Environment

Xixi YAN¹(), Yuan LIU¹, Mingxing HU¹, Qinlong HUANG²

1.School of Computer Science and Technology, Henan Polytechnic University, Jiaozuo Henan 454003, China
2. School of Cyberspace Security, Beijing University of Posts and Telecommunications, Beijing 100876, China

Received:2017-08-01 Online:2017-09-20 Published:2020-05-12

摘要/Abstract

摘要：

为解决以双线性映射为基础的传统属性基加密方案中存储代价大且无法抵抗量子攻击的问题,本文基于格上的带误差学习问题提出一种新的属性基加密方案。首先,方案支持多个属性机构管理不同的属性集合,并利用格上的左抽样算法为其权限下的用户生成密钥,从而降低了密钥尺寸;其次,采用Shamir门限秘密共享技术,将秘密值由多个属性机构秘密保存,可以抵抗属性机构的共谋攻击;最后,经安全性证明,文中方案的安全性可在标准模型下归约到格上带误差学习的难解性。对比分析表明,文中方案系统公私钥、用户私钥和密文尺寸均有所优化,具有一定的效率优势,且属性由多个属性机构共同管理,在云环境中具有更高的实用性和安全性。

关键词: 云环境, 属性基加密, 多机构, 格, 带误差学习

Abstract:

To solve the high overhead of storage and can’t resist quantum attack problem of the traditional attribute based encryption(ABE) which based on bilinear maps, a new ABE scheme based on learning with errors problem was proposed. Firstly, the scheme supported multi-authority to manage different attribute sets, and introduced SampleLeft algorithm to extract keys for its authenticated users, and thus reduce the size of user’s private key. Secondly, with the help of the Shamir secret sharing technique, the secret valueswere safely managed by multi-authority, which can resist the collusion attack of authorities. Finally, the security proof showed that the security of the scheme can reduces to the hardness of decisional learning with errors problem in the standard model. Compared with the similar schemes, the size of public parameters, master secret key, ciphertext and user’s private key all optimized in some degree, and the attributes are managed by multi-authority, and hence our scheme has higher practicability and security in cloud environment.

Key words: cloud environment, attribute-based encryption, multi-authority, lattices, LWE

中图分类号:

TP309.1

闫玺玺, 刘媛, 胡明星, 黄勤龙. 云环境下基于LWE的多机构属性基加密方案[J]. 信息网络安全, 2017, 17(9): 128-133.

Xixi YAN, Yuan LIU, Mingxing HU, Qinlong HUANG. LWE-based Multi-authority Attribute-based Encryption Scheme in Cloud Environment[J]. Netinfo Security, 2017, 17(9): 128-133.

图/表 2

参考文献 21

[1]	AJTAI M, DWORK C.A Public-key Cryptosystem with Worst-case/Average-case Equivalence[C]//ACM. 29th Annual ACM Symposium on Theory of Computing Symposium on Theory of Computing, May 4-6, 1997, El Paso, Texas, USA. New York: ACM, 1997: 284-293.
[2]	REGEV O. On Lattices, Learning with Errors, Random Linear Codes, and Cryptography[C]//ACM. 37th Annual ACM Symposium on Theory of Computing, May 22-24, 2005, Baltimore, MD, USA. New York: ACM, 2005: 84-93.
[3]	SAHAI A, WATERS B.Fuzzy Identity-based Encryption[C]//IACR. 24th Annual International Conference on the Theory and Applications of Cryptographic Techniques, May 22-26, 2005, Aarhus, Denmark. Heidelberg: Springer, 2005: 457-473.
[4]	计海萍,徐磊,蔚晓玲,等. 云计算环境下基于身份的分层加密管理系统研究[J]. 信息网络安全,2016(5):30-36.
[5]	AGRAWAL S, BOYEN X, VAIKUNTANATHAN V, et al.Functional Encryption for Threshold Functions (or Fuzzy IBE) from Lattices[C]//Springer. 15th International Conference on Practice and Theory in Public Key Cryptography, May 21-23, 2012, Darmstadt, Germany. Heidelberg: Springer, 2012: 280-297.
[6]	BOYEN X.Attribute-based Functional Encryption on Lattices[C]//Springer. 10th Theory of Cryptography Conference on Theory of Cryptography, March 3-6, 2013, Tokyo, Japan. Heidelberg: Springer, 2013: 122-142.
[7]	LIU Ximeng, MA Jianfeng, XIONG Jinbo, et al.Threshold Attribute-based Encryption with Attribute Hierarchy for Lattices in the Standard Model[J]. IET Information Security, 2014, 8(4): 217-223.
[8]	ZHAO Jian, GAO Haiying, ZHANG Junqi.Attribute-based Encryption for Circuitson Lattices[J]. Tsinghua Science and Technology, 2014, 45(5): 463-469.
[9]	WANG Yongtao.Lattice Ciphertext Policy Attribute-based Encryption in the Standard Model[J]. International Journal of Network Security, 2014, 16(6): 444-451.
[10]	CASH D, HOFHEINZ D, KILTZ E, et al.Bonsai Trees, or How to Delegate a Lattice Basis[C]//IACR. 29th Annual International Conference on the Theory and Applications of Cryptographic Techniques, May 30-June 3, 2010, French Riviera. Heidelberg, Springer, 2010: 523-552.
[11]	ZHU Weiling, YU Jinping, WANG Ting, et al.Efficient Attribute-Based Encryption from R-LWE[J]. Chinese Journal of Electronics, 2014, 23(4): 778-782.
[12]	吴立强,杨晓元,韩益亮. 基于理想格的高效模糊身份加密方案[J]. 计算机学报,2015,38(4):775-782.
[13]	TAN S F, SAMSUDIN A.Lattice Ciphertext-policy Attribute-based Encryption from Ring-LWE[C]//IEEE. 2015 International Symposium on Technology Management and Emerging Technologies, August, 25-27, 2015, Langkawai Island, Malaysia. New Jersey: IEEE, 2015: 258-262.
[14]	孙泽栋,祝跃飞,顾纯祥,等. 基于RLWE的密钥策略属性加密体制[J]. 通信学报,2016,37(Z1):125-131.
[15]	杨海滨. 一种新的格上基于身份的分层加密方案[J]. 武汉大学学报理学版,2016,62(2):155-160.
[16]	CHASE M.Multi-authority Attribute Based Encryption[C]//Springer. 4th Conference on Theory of Cryptography, February 21-24, 2007, Amsterdam, Netherlands. Heidelberg: Springer, 2007: 515-534.
[17]	韩清德,谢慧,袁志民,等. 一种支持访问结构隐藏的MA-CP-ABE方案[J]. 信息网络安全,2017(1):48-56.
[18]	ZHANG Guoyan, QIN Jing, QAZI S.Multi-authority Attribute-based Encryption Scheme from Lattices[J]. Journal of Universal Computerence, 2015, 21(3): 483-501.
[19]	GENTRY C, PEIKERT C, VAIKUNTANATHAN V.Trapdoors for Hard Lattice and New Cryptographic Constructions[C]//ACM. 40th Annual ACM Symposium on Theory of Computing, May 17-20, 2008, Victoria, Canada. New York: 2008: 197-206.
[20]	AGRAWAL S, BONEH D, BOYEN X. Efficient Lattice (H)IBE in the Standard Model[C]//IACR. 29th Annual International Conference on the Theory and Applications of Cryptographic Techniques, May 30-June 3, 2010, French Riviera. Heidelberg, Springer, 2010: 553-572.
[21]	闫玺玺,叶青,刘宇. 云环境下支持隐私保护和用户撤销的属性基加密方案[J]. 信息网络安全,2017(6):14-21.

云环境下基于LWE的多机构属性基加密方案

LWE-based Multi-authority Attribute-based Encryption Scheme in Cloud Environment

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 2

参考文献 21

相关文章 15

编辑推荐

Metrics

本文评价

[1]	刘鹏, 何倩, 刘汪洋, 程序. 支持撤销属性和外包解密的CP-ABE方案[J]. 信息网络安全, 2020, 20(3): 90-97.
[2]	郎为民, 张汉, 赵毅丰, 姚晋芳. 一种基于区块链的物联网行为监控和活动管理方案[J]. 信息网络安全, 2020, 20(2): 22-29.
[3]	张建航, 曹泽阳, 宋晓峰, 徐庆征. 抗量子本原格上高效的身份基消息恢复签名方案[J]. 信息网络安全, 2020, 20(1): 26-32.
[4]	许盛伟, 王飞杰. 多机构授权下可追踪可隐藏的属性基加密方案[J]. 信息网络安全, 2020, 20(1): 33-39.
[5]	秦中元, 韩尹, 张群芳, 朱雪金. 一种改进的多私钥生成中心云存储访问控制方案[J]. 信息网络安全, 2019, 19(6): 11-18.
[6]	闫玺玺, 张棋超, 汤永利, 黄勤龙. 支持叛逆者追踪的密文策略属性基加密方案[J]. 信息网络安全, 2019, 19(5): 47-53.
[7]	李明祥, 王洪涛. 基于格的身份基矩阵加密方案[J]. 信息网络安全, 2019, 19(1): 34-41.
[8]	江明明, 赵利军, 王艳, 王保仓. 面向云数据共享的量子安全的无证书双向代理重加密[J]. 信息网络安全, 2018, 18(8): 17-24.
[9]	董庆贺, 何倩, 江炳城, 刘鹏. 面向云数据库的多租户属性基安全隔离与数据保护方案[J]. 信息网络安全, 2018, 18(7): 60-68.
[10]	叶青, 周锦, 汤永利, 王峻峰. 格上基于身份的抗量子攻击的部分盲签名方案[J]. 信息网络安全, 2018, 18(3): 46-53.
[11]	陈亚楠, 梅倩, 熊虎, 徐维祥. 适用于工业物联网的无证书并行密钥隔离签名[J]. 信息网络安全, 2018, 18(10): 1-9.
[12]	闫玺玺, 刘媛, 李子臣, 黄勤龙. 云环境下理想格上的多机构属性基加密隐私保护方案[J]. 信息网络安全, 2017, 17(8): 19-25.
[13]	闫玺玺, 叶青, 刘宇. 云环境下支持隐私保护和用户撤销的属性基加密方案[J]. 信息网络安全, 2017, 17(6): 14-21.
[14]	李增鹏, 马春光, 张磊, 张雯雯. 两类基于容错学习的多比特格公钥加密方案[J]. 信息网络安全, 2017, 17(10): 1-7.
[15]	陈莉, 顾纯祥, 尚明君. 抗量子攻击的高效盲签名方案[J]. 信息网络安全, 2017, 17(10): 36-41.