ISSN 1000-1239 CN 11-1777/TP

计算机研究与发展 ›› 2017, Vol. 54 ›› Issue (10): 2369-2377.doi: 10.7544/issn1000-1239.2017.20170431

• 信息安全 • 上一篇    下一篇

适合移动云存储的基于属性的关键词搜索加密方案

苏航,朱智强,孙磊   

  1. (解放军信息工程大学 郑州 450000) (Suhang_039@163.com)
  • 出版日期: 2017-10-01
  • 基金资助: 
    国家重点研发计划项目(2016YFB0501900)

Attribute-Based Encryption with Keyword Search in Mobile Cloud Storage

Su Hang, Zhu Zhiqiang, Sun Lei   

  1. (PLA Information Engineering University, Zhengzhou 450000)
  • Online: 2017-10-01

摘要: 近年来,随着移动设备性能的不断提升和移动互联网的迅猛发展,越来越多的移动终端参与云端数据存储与共享.为了更好地解决资源受限的移动设备参与云端数据共享的安全和效率问题,基于支持通配符的与门访问结构,提出了一种高效的基于属性的关键词搜索加密方案,并证明了其在标准模型下满足选择关键词明文攻击的不可区分安全性和关键词安全性.该方案采用韦达定理使得每个属性仅需用一个元素表示,方案中索引长度固定,陷门和密钥的长度及陷门算法和搜索算法的计算复杂度与访问结构中可使用的通配符数量上限成正比,同时,移除了索引和陷门传输过程中的安全信道,进一步降低了开销.效率分析表明:与其他方案相比,该方案的计算开销和通信开销较小,更加适用于移动云存储环境.

关键词: 移动云存储, 可搜索加密, 属性基加密, 移除安全信道, 韦达定理

Abstract: In recent years, with the further improvement of mobile devices’ performance and the rapid development of mobile Internet, more and more mobile terminals participate in cloud data storage and data sharing. In order to support mobile devices with constrained resource effectively in terms of sharing data safely and efficiently in the cloud, a secure and efficient attribute-based encryption scheme with keyword search (ABKS) is proposed in this paper. The proposed scheme is based on the AND gate access structure with wildcards, which is proven to be IND-CKA (indistinguishable against chosen keyword attack) secure and achieves keyword security under the standard model. The scheme adopts the Viète’s formulas to make each attribute only be represented by one element, and the length of index is constant, the length of trapdoor and secret key and the computation complexity of trapdoor algorithm and search algorithm grow linearly with the maximum number of wildcards that can be used in the access structure, in addition, the scheme removes the secure channel, which reduces the communication overhead further during the transmission process of index and trapdoor. Efficiency analysis shows that compared with other schemes, the proposed scheme has less computation overhead and communication overhead, which is more suitable for mobile cloud storage environment.

Key words: mobile cloud storage, searchable encryption, attribute-based encryption (ABE), secure-channel free, Viète’s formulas

中图分类号: