面向云数据共享的量子安全的无证书双向代理重加密

doi:10.3969/j.issn.1671-1122.2018.08.003

信息网络安全 ›› 2018, Vol. 18 ›› Issue (8): 17-24.doi: 10.3969/j.issn.1671-1122.2018.08.003

面向云数据共享的量子安全的无证书双向代理重加密

江明明^1,⁴, 赵利军², 王艳³, 王保仓⁴

1.淮北师范大学计算机科学与技术学院,安徽淮北 235000
2. 陕西省渭南市公安局网安支队,陕西渭南 714000
3.淮北师范大学数学科学学院,安徽淮北 235000
4.西安电子科技大学综合业务网理论及关键技术国家重点实验室,陕西西安 710071

收稿日期:2018-06-10 出版日期:2018-08-20 发布日期:2020-05-11
作者简介:
作者简介：江明明（1984—）,男,安徽,讲师,博士,主要研究方向为密码学、信息安全等;赵利军（1973—）,男,陕西,工程师,本科,主要研究方向为网络安全管理;王艳（1983—）,女,安徽,助教,硕士,主要研究方向为信息安全;王保仓（1979—）,男,陕西,教授,博士,主要研究方向为公钥密码学、无线网络安全、信息安全。
基金资助:
国家自然科学基金[61572390];安徽省自然科学基金[1708085QF154];安徽省高校自然科学基金重点项目[KJ2016A627,KJ2018A0398];安徽省高校自然科学基金重大项目[KJ2017ZD32]

Quantum-security Certificateless Bidirectional Proxy Re-encryption for Cloud Data Sharing

Mingming JIANG^1,⁴, Lijun ZHAO², Yan WANG³, Baocang WANG⁴

1. School of Computer Science and Technology, Huaibei Normal University, Huaibei Anhui 235000, China
2.Weinan Municipal Public Security Bureau, Weinan Shaanxi 714000, China
3. School of Mathematical Science, Huaibei Normal University, Huaibei Anhui 235000, China
4. State Key Lab of Integrated Service Networks, Xidian University, Xi’an Shaanxi 710071, China;

Received:2018-06-10 Online:2018-08-20 Published:2020-05-11

摘要/Abstract

摘要：

针对开放式云计算环境下的云数据共享的安全性与隐私问题,文章基于带差错的学习问题（LWE）困难性假设,利用高斯抽样技术,提出一个无证书代理重加密方案。在该方案中,云服务器可以利用两个用户授权的代理重加密密钥将两个用户的密文进行相互转换,不但实现了云存储中的数据共享问题,还解决了用户数据的隐私保护问题。该方案不仅实现了代理重加密功能,而且解决了公钥基础设施中的证书管理问题与基于身份密码体制中的密钥托管问题,且证明了在标准模型下基于LWE问题是选择明文攻击（CPA）安全的。更重要的是,该方案在量子环境下也是安全的。

关键词: 代理重加密, 格密码, 高斯抽样, 无证书密码体制

Abstract:

For the security and private of cloud data sharing in the open cloud computing, this paper uses the Gauss sample technology to construct a certificateless proxy re-encryption scheme based on learning with errors (LWE) problem. In this scheme, the cloud server can use the proxy re-encryption keys by two users authorized to convert ciphertexts of one user to each other, which not only realizes the data sharing problem in cloud storage, but also solves the privacy protection problem of user data. The scheme not only realizes the function of proxy re-encryption, but also solves the certificate management problem in public key infrastructure and the key escrow problem in identity-based cryptosystem. The proposed scheme is proved semantic secure against adaptive chosen plaintext attack in the standard mode based on learning with errors(LWE) problem. More importantly, the scheme is also safe in the quantum environment.

Key words: proxy re-encryption, lattice cryptography, Gaussian sampling, certificateless cryptography

中图分类号:

TP309

江明明, 赵利军, 王艳, 王保仓. 面向云数据共享的量子安全的无证书双向代理重加密[J]. 信息网络安全, 2018, 18(8): 17-24.

Mingming JIANG, Lijun ZHAO, Yan WANG, Baocang WANG. Quantum-security Certificateless Bidirectional Proxy Re-encryption for Cloud Data Sharing[J]. Netinfo Security, 2018, 18(8): 17-24.

参考文献 18

[1]	JIANG Jianchun, WEN Weiping.The Information Security Problems of Cloud Computing Environment[J]. Netinfo Security, 2010,10(2):61-63.
	蒋建春, 文伟平. "云"计算环境的信息安全问题[J]. 信息网络安全, 2010,10(2):61-63.
[2]	FANG Jing,WU Hao,BAI Songlin.Review of Cloud Computing Security[J], Telecommunications Science, 2011, 27(4):37-42.
	房晶, 吴昊, 白松林. 云计算安全研究综述[J]. 电信科学, 2011, 27(4):37-42.
[3]	BO Mingxia.CHEN Jun.WANGWeiqing.Study of the System Architecture of Cloud Security[J]. Netinfo Security, 2011,11(8):79-81.
	薄明霞, 陈军, 王渭清. 云计算安全体系架构研究[J]. 信息网络安全, 2011,11(8):79-81.
[4]	BLAZE M, BLEUMER G, STRAUSS M.Divertible Protocols and Atomic Proxy Cryptography[J]. Lecture Notes in Computer Science, 1998(1403):127-144.
[5]	GREEN M, ATENIESE G.Identity-based Proxy Re-encryption[C]//ACM. The 5th International Conference on Applied Cryptography and Network Security, June 5 - 8, 2007, Zhuhai, China. New York:ACM,2007: 288-306.
[6]	AL-RIYAMI S, PATERSON K G.Certificateless Public Key Cryptography[J]. Asiacrypt, 2003, 2894(2):452-473.
[7]	WU Xiaoxin, XU Lei, ZHANG Xinwen.Poster: a Certificateless Proxy Re-encryption Scheme for Cloud-based Data Sharing[C]//ACM. The 18th ACM Conference on Computer and Communications Security, October 17 - 21, 2011, Chicago, Illinois, USA. New York: ACM, 2011:869-872.
[8]	XU Lei, WU Xiaoxin, ZHANG Xinwen.CL-PRE: a Certificateless Proxy Re-encryption Scheme for Secure Data Sharing with Public Cloud[C]// ACM. The 7th ACM Symposium on Information, Computer and Communications Security, May 2 - 4, 2012, Seoul, Korea. NewYork: ACM, 2012:87-88.
[9]	ZHAO Lili.Application of Proxy Re-encryption in Cloud Computing[J]. Information Security and Communications Privacy, 2012(11):135-137.
	赵丽丽. 代理重加密技术在云计算中的应用[J].信息安全与通信保密, 2012(11):135-137.
[10]	WANG Liangliang, CHEN Kefei, MAO Xianping, et al.Efficient and Provably-Secure Certificateless Proxy Re-encryption Scheme for Secure Cloud Data Sharing[J]. Journal of Shanghai Jiaotong University(Science), 2014, 19(4):398-405.
[11]	QIN Zhiguang, WU Shikun, XIONG Hu.Strongly Secure and Cost-Effective Certificateless Proxy Re-encryption Scheme for Data Sharing in Cloud Computing[M]//Springer. Big Data Computing and Communications. Cham :Springer, Cham, 2015:205-216.
[12]	ZHU Jun, CHEN Linlin, ZHU Xian, et al.Certificateless Proxy Re-encryption for Cloud Computing Security[J]. Computer Engineering, 2017, 43(8):8-14.
	朱俊, 陈琳琳, 朱娴,等. 面向云计算安全的无证书代理重加密方案[J]. 计算机工程, 2017, 43(8):8-14.
[13]	XAGAWA K. Cryptography with Lattices[EB/OL]. .
[14]	JIANG Mingming, HU Yupu, WANG Baocang et al. Lattice-based Unidirectional Proxy Re-encryption[J]. Security and Commutation Networks, 2016, 18(8):3796-3803.
[15]	ALWEN J, PEIKER C.Generating Shorter Bases for Hard Random Lattices[J]. Theory of Computing Systems,2011,48(3): 535-553.
[16]	GENTRY C, PEIKERT C, VAIKUNTANATHAN V. How to Use a Short Basis:Trapdoors for Hard Lattices and New Cryptographic Constructions[EB/OL]. ,2018-5-10.
[17]	BONEH D, FREEMAN D M.Linearly Homomorphic Signatures over Binary Fields and New Tools for Lattice-based Signatures[C]//ACM. The 14th International Conference on Practice and Theory in Public Key Cryptography, March 6 - 9, 2011, Taormina, Italy. New York: ACM, 2011:1-16.
[18]	BOYEN X.Lattice Mixing and Vanishing Trapdoors: a Framework for Fully Secure Short Signatures and More[C]//ACM. The 13th International Conference on Practice and Theory in Public Key Cryptography, May 26 - 28, 2010, Paris, France. New York: ACM, 2010: 499-517.

面向云数据共享的量子安全的无证书双向代理重加密

Quantum-security Certificateless Bidirectional Proxy Re-encryption for Cloud Data Sharing

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

参考文献 18

相关文章 2

编辑推荐

Metrics

本文评价

[1]	张艺, 刘红燕, 咸鹤群, 田呈亮. 基于授权记录的云存储加密数据去重方法[J]. 信息网络安全, 2020, 20(3): 75-82.
[2]	陈莉, 顾纯祥, 尚明君. 抗量子攻击的高效盲签名方案[J]. 信息网络安全, 2017, 17(10): 36-41.