信息网络安全 ›› 2017, Vol. 17 ›› Issue (9): 128-133.doi: 10.3969/j.issn.1671-1122.2017.09.030

• • 上一篇    下一篇

云环境下基于LWE的多机构属性基加密方案

闫玺玺1(), 刘媛1, 胡明星1, 黄勤龙2   

  1. 1. 河南理工大学计算机科学与技术学院,河南焦作 454003
    2. 北京邮电大学网络空间安全学院,北京 100876
  • 收稿日期:2017-08-01 出版日期:2017-09-20 发布日期:2020-05-12
  • 作者简介:

    作者简介: 闫玺玺(1985—),女,河南,讲师,博士,主要研究方向为网络与信息安全、数字版权管理、数字内容安全等;刘媛(1989—),女,河南,硕士研究生,主要研究方向为密码学、网络与信息安全;胡明星(1994—),男,河南,硕士研究生,主要研究方向为密码学、网络与信息安全;黄勤龙(1988—),男,江西,讲师,博士,主要研究方向为数字版权管理、数字内容安全、网络安全。

  • 基金资助:
    国家自然科学基金[61300216];河南省科技厅项目[132102210123];河南省教育厅科研项目[16A520013]

LWE-based Multi-authority Attribute-based Encryption Scheme in Cloud Environment

Xixi YAN1(), Yuan LIU1, Mingxing HU1, Qinlong HUANG2   

  1. 1.School of Computer Science and Technology, Henan Polytechnic University, Jiaozuo Henan 454003, China
    2. School of Cyberspace Security, Beijing University of Posts and Telecommunications, Beijing 100876, China
  • Received:2017-08-01 Online:2017-09-20 Published:2020-05-12

摘要:

为解决以双线性映射为基础的传统属性基加密方案中存储代价大且无法抵抗量子攻击的问题,本文基于格上的带误差学习问题提出一种新的属性基加密方案。首先,方案支持多个属性机构管理不同的属性集合,并利用格上的左抽样算法为其权限下的用户生成密钥,从而降低了密钥尺寸;其次,采用Shamir门限秘密共享技术,将秘密值由多个属性机构秘密保存,可以抵抗属性机构的共谋攻击;最后,经安全性证明,文中方案的安全性可在标准模型下归约到格上带误差学习的难解性。对比分析表明,文中方案系统公私钥、用户私钥和密文尺寸均有所优化,具有一定的效率优势,且属性由多个属性机构共同管理,在云环境中具有更高的实用性和安全性。

关键词: 云环境, 属性基加密, 多机构, 格, 带误差学习

Abstract:

To solve the high overhead of storage and can’t resist quantum attack problem of the traditional attribute based encryption(ABE) which based on bilinear maps, a new ABE scheme based on learning with errors problem was proposed. Firstly, the scheme supported multi-authority to manage different attribute sets, and introduced SampleLeft algorithm to extract keys for its authenticated users, and thus reduce the size of user’s private key. Secondly, with the help of the Shamir secret sharing technique, the secret valueswere safely managed by multi-authority, which can resist the collusion attack of authorities. Finally, the security proof showed that the security of the scheme can reduces to the hardness of decisional learning with errors problem in the standard model. Compared with the similar schemes, the size of public parameters, master secret key, ciphertext and user’s private key all optimized in some degree, and the attributes are managed by multi-authority, and hence our scheme has higher practicability and security in cloud environment.

Key words: cloud environment, attribute-based encryption, multi-authority, lattices, LWE

中图分类号: