离线/在线的可验证外包属性代理重加密方案

doi:10.12677/AAM.2021.104148

期刊菜单

离线/在线的可验证外包属性代理重加密方案
Offline/Online Attribute-Based Proxy Re-Encryption with Verifiable Outsourced Decryption

DOI: 10.12677/AAM.2021.104148, PDF, 国家自然科学基金支持
作者: 杨善慧, 张小玉：贵州大学数学与统计学院公共大数据国家重点实验室，贵州贵阳；贵州大学密码学与数据安全研究所，贵州贵阳；侯金秋^*：贵州大学密码学与数据安全研究所，贵州贵阳；贵州大学计算机科学与技术学院，贵州贵阳；彭长根：贵州大学数学与统计学院公共大数据国家重点实验室，贵州贵阳；贵州大学密码学与数据安全研究所，贵州贵阳；贵州大学计算机科学与技术学院，贵州贵阳
关键词: 属性代理重加密；离线/在线加密；外包可验证；可证明安全；Attribute-Based Proxy Re-Encryption； Offline/Online Encryption； Verifiable Outsourced Decryption； Provable Security

摘要: 基于密文策略的属性代理重加密方案可以同时实现灵活的访问控制和云端密文共享功能。但现有的属性代理重加密方案多以双线性映射构造而成，面临着加解密运算效率低的问题。为解决上述问题，本文提出一种新的加密方案：离线/在线的可验证外包属性代理重加密方案(offline/online attribute-based proxy re-encryption with verifiable outsourced decryption, VF-OO-ABPRE)。基于已有的外包解密属性加密方案，利用离线/在线加密技术，对加密算法进行改进，提高加密效率，结合代理重加密的思想，实现密文共享。同时将解密工作外包给云服务商，并且能够快速地验证外包解密计算结果的正确性。理论分析表明本方案在随机预言机模型中满足选择明文攻击的不可区分安全性，并且提供了外包的可验证性证明，同时能抵抗共谋攻击。

Abstract: Ciphertext policy attribute-based proxy re-encryption (CP-ABPRE) can achieve both flexible access control and ciphertext sharing in the cloud. The existing CP-ABPRE schemes are mostly constructed by bilinear mapping, and the operations of encryption and decryption have low efficiency. To solve these problems, an offline/online attribute-based proxy re-encryption with verifiable outsourced decryption (VF-OO-ABPRE) is proposed in this paper. Based on the existing outsourcing of the decryption of ABE ciphertexts scheme, and by using offline/online encryption technology to improve the encryption algorithm, the proposed scheme can improve the encryption efficiency. Combined with the proxy re-encryption, the ciphertext sharing in the cloud is realized. At the same time, the scheme outsources the decryption work to the cloud service provider, and can verify the correctness of the computing results in an efficient way. The results of theoretical analysis show that the proposed scheme satisfies the chosen plaintext attack secure under the random oracle model and is provided with verifiable outsourced decryption’s proof, it also can resist collusive attack.

文章引用：杨善慧, 侯金秋, 彭长根, 张小玉. 离线/在线的可验证外包属性代理重加密方案[J]. 应用数学进展, 2021, 10(4): 1387-1402. https://doi.org/10.12677/AAM.2021.104148

参考文献

[1]	Sahai, A. and Waters, B. (2005) Fuzzy Identity-Based Encryption. In: LNCS 3494: EUROCRYPT’05, Springer, Berlin, 457-473. [Google Scholar] [CrossRef]
[2]	Bethencourt, J., Sahai, A. and Waters, B. (2007) Ciphertext-Policy Attribute-Based Encryption. IEEE Symposium on Security and Privacy (SP’07), Berkeley, 20-23 May 2007, 321-334. [Google Scholar] [CrossRef]
[3]	Goyal, V., Pandey, O., Sahai, A. and Waters, B. (2006) Attribute-Based Encryption for Fine-Grained Access Control of Encrypted Data. In: Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS’06), Association for Computing Machinery, New York, 89-98. [Google Scholar] [CrossRef]
[4]	Waters, B. (2011) Ciphertext-Policy Attribute-Based Encryption: An Expressive, Efficient, and Provably Secure Realization. In: Public Key Cryptography PKC 2011, Springer, Berlin, Vol. 6571, 53-70. [Google Scholar] [CrossRef]
[5]	Green, M., Hohenberger, S. and Waters, B. (2011) Outsourcing the Decryption of ABE Ciphertexts. Proceedings of the 20th USENIX Conference on Security (SEC’11), San Francisco, 8-12 August 2011, 34.
[6]	Lai, J., Deng, R.H., Guan, C., et al. (2013) Attribute-Based Encryption with Verifiable Outsourced Decryption. IEEE Transactions on Information Forensics & Security, 8, 1343-1354. [Google Scholar] [CrossRef]
[7]	Li, J., Huang, X., Li, J., et al. (2014) Securely Outsourcing Attribute-Based Encryption with Checkability. IEEE Transactions on Parallel & Distributed Systems, 25, 2201-2210. [Google Scholar] [CrossRef]
[8]	Zhang, J., Wang, B., et al. (2018) Energy-Efficient Secure Outsourcing Decryption of Attribute Based Encryption for Mobile Device in Cloud Computation. Journal of Ambient Intelligence and Humanized Computing, 10, 429-438. [Google Scholar] [CrossRef]
[9]	Liao, Y., He, Y., Li, F., et al. (2018) Analysis of an ABE Scheme with Verifiable Outsourced Decryption. Sensors, 18, 176. [Google Scholar] [CrossRef] [PubMed]
[10]	Li, J., Jia, C., Li, J. and Chen, X. (2012) Outsourcing Encryption of Attribute-Based Encryption with MapReduce. In: Chim, T.W. and Yuen, T.H., Eds., Information and Communications Security. ICICS 2012, Lecture Notes in Computer Science, Vol. 7618, Springer, Berlin, 191-201. [Google Scholar] [CrossRef]
[11]	Wang, H., He, D., Shen, J., et al. (2017) Verifiable Outsourced Ciphertext-Policy Attribute-Based Encryption in Cloud Computing. Soft Computing, 21, 7325-7335. [Google Scholar] [CrossRef]
[12]	Hohenberger, S. and Waters, B. (2014) Online/Offline Attribute-Based Encryption. In: Krawczyk, H., Eds., Public-Key Cryptography—PKC 2014, Lecture Notes in Computer Science, Springer, Berlin, Vol. 8383, 293-310. [Google Scholar] [CrossRef]
[13]	Liu, Z., Jiang, Z.L., Wang, X., Huang, X., Yiu, S.M. and Sadakane, K. (2017) Offline/Online Attribute-Based Encryption with Verifiable Outsourced Decryption. Concurrency and Computation: Practice and Experience, 29, e3915. [Google Scholar] [CrossRef]
[14]	Blaze, M., Bleumer, G. and Strauss, M. (1998) Divertible Protocols and Atomic Proxy Cryptography. In: Nyberg, K., Ed., Advances in Cryptology—EUROCRYPT’98, Lecture Notes in Computer Science, Springer, Berlin, Vol. 1403, 127-144. [Google Scholar] [CrossRef]
[15]	Liang, X.H., Cao, Z.F., Lin, H. and Shao, J. (2009) Attribute Based Proxy Re-Encryption with Delegating Capabilities. In: Proceedings of the 4th International Symposium on Information, Computer, and Communications Security (ASIACCS’09), Association for Computing Machinery, New York, 276-286. [Google Scholar] [CrossRef]
[16]	Liang, K.T., Fang, L.M., Susilo, W., et al. (2013) A Ciphertext-Policy Attribute-Based Proxy Re-Encryption with Chosen-Ciphertext Security. The IEEE 5th International Conference on Intelligent Networking and Collaborative Systems, Xi’an, 9-11 September 2013, 552-559. [Google Scholar] [CrossRef]
[17]	Liang, K.T., Au, M.H., Susilo, W., et al. (2014) An Adaptively CCA-Secure Ciphertext-Policy Attribute-Based Proxy Re-Encryption for Cloud Data Sharing. In: International Conference on Information Security Practice and Experience, Springer, Cham, 448-461. [Google Scholar] [CrossRef]
[18]	Liang, K.T., Man, H.A., Liu, J., et al. (2015) A Secure and Efficient Ciphertext-Policy Attribute-Based Proxy Re-Encryption for Cloud Data Sharing. Future Generation Computer Systems, 52, 95-108. [Google Scholar] [CrossRef]
[19]	Gritti, C., Susilo, W., Plantard, T., Liang, K. and Wong, D.S. (2014) Empowering Personal Health Records with Cloud Computing: How to Encrypt with Forthcoming Fine-Grained Policies Efficiently. Journal of Wireless Mobile Networks Ubiquitous Computing & Dependable Applications, 4, 3-28.
[20]	Kawai, Y. (2015) Outsourcing the Re-Encryption Key Generation: Flexible Ciphertext-Policy Attribute-Based Proxy Re-Encryption. In: Lopez, J. and Wu, Y., Eds., Information Security Practice and Experience, ISPEC 2015, Lecture Notes in Computer Science, Springer, Cham, Vol. 9065, 301-315. [Google Scholar] [CrossRef]
[21]	Sepehri, M. and Trombetta, A. (2017) Secure and Efficient Data Sharing with Atribute-Based Proxy Re-Encryption Scheme. In: Proceedings of the 12th International Conference on Availability, Reliability and Security (ARES’17), Association for Computing Machinery, New York, Article 63, 1-6. [Google Scholar] [CrossRef]
[22]	Yin, H. and Zhang, L. (2017) Security Analysis and Improvement of an Anonymous Attribute-Based Proxy Re-Encryption. In: Security, Privacy, and Anonymity in Computation, Communication, and Storage, Spa CCS 2017, Lecture Notes in Computer Science, Springer, Cham, Vol. 10656, 344-352. [Google Scholar] [CrossRef]
[23]	Hong, H. and Sun, Z. (2018) Sharing Your Privileges Securely: A Key-Insulated Attribute Based Proxy Re-Encryption Scheme for IoT. World Wide Web, 21, 595-607. [Google Scholar] [CrossRef]

为你推荐

友情链接