一种素数阶群上构造的自适应安全的多授权机构CP-ABE方案

doi:10.3969/j.issn.0372-2112.2014.04.012

电子学报

一种素数阶群上构造的自适应安全的多授权机构CP-ABE方案

李琦^1,3, 马建峰^1,3, 熊金波^1,3, 刘西蒙^2,3, 马骏^1,3

1. 西安电子科技大学计算机学院, 陕西西安 710071;
2. 西安电子科技大学通信工程学院, 陕西西安 710071;
3. 西安电子科技大学陕西省网络与系统安全重点实验室, 陕西西安 710071

收稿日期:2013-10-18 修回日期:2013-12-25 出版日期:2014-04-25
- 通讯作者:
- 马建峰
- 作者简介:
- 李琦 男,1989年4月出生于江苏省淮安市.博士生,主要研究方向为基于属性的密码学.E-mail:qilijs@gmail.com
- 基金资助:
- 长江学者和创新团队发展计划资助 (No.IRT1078）; 国家自然基金委员会-广东联合基金重点基金资助项目 (No.U1135002）; 国家科技部重大专项 (No.2011ZX03005-002）; 中央高校基本科研业务费项目 (No.JY10000903001）; 国家自然科学基金 (No.61370078）

An Adaptively Secure Multi-Authority Ciphertext-Policy ABE Scheme on Prime Order Groups

LI Qi^1,3, MA Jian-feng^1,3, XIONG Jin-bo^1,3, LIU Xi-meng^2,3, MA Jun^1,3

1. School of Computer Science and Technology, Xidian University, Xi'an, Shaanxi 710071, China;
2. School of Telecommunication Engineering, Xidian University, Xi'an, Shaanxi 710071, China;
3. Shaanxi Key Laboratory of Network and System Security, Xidian University, Xi'an, Shaanxi 710071, China

Received:2013-10-18 Revised:2013-12-25 Online:2014-04-25 Published:2014-04-25
- Supported by:
- Supported by Program for Changjiang Scholars and Innovative Research Team in University (No.IRT1078); Program Sponsered by Key Fund of NSFC-Guangdong Province Joint Fund (No.U1135002); Major Project of Ministry of Science and Technology (No.2011ZX03005-002); Program of Fundamental Research Funds for the Central Universities (No.JY10000903001); National Natural Science Foundation of China (No.61370078)

摘要/Abstract

摘要： 目前自适应安全的多授权机构基于属性的加密（Attribute-Based Encryption,ABE）方案都是在合数阶群上构造,针对其计算开销较大的问题,利用对偶配对向量空间技术,在素数阶群上构造了一种支持单调的访问结构且自适应安全的多授权机构密文策略ABE（Multi-Authority Ciphertext Policy ABE,MA-CP-ABE）方案.在标准模型下将该方案的安全性归约到判定性线性假设.性能分析表明,该方案在达到自适应安全的同时,具有更高的计算效率.

关键词: 基于属性的加密, 多授权机构, 密文策略, 自适应安全, 素数阶, 标准模型

Abstract: Previous adaptively secure multi-authority attribute-based encryption(ABE)schemes suffered from superfluous computation overhead on composite order groups.To tackle this problem,an adaptively secure multi-authority ciphertext-policy ABE(MA-CP-ABE)scheme on prime order groups was proposed when a dual pairing vector space approach was employed.The proposed scheme supports any monotone access structure,and is proven adaptively secure from the decisional linear assumption in the standard model.Performance analysis indicates that our scheme is more efficient while achieving the adaptive security.

Key words: attribute-based encryption, multi-authority, ciphertext-policy, adaptive security, prime order, standard model

中图分类号:

TP309

李琦, 马建峰, 熊金波, 等. 一种素数阶群上构造的自适应安全的多授权机构CP-ABE方案[J]. 电子学报, DOI: 10.3969/j.issn.0372-2112.2014.04.012.

LI Qi, MA Jian-feng, XIONG Jin-bo, et al. An Adaptively Secure Multi-Authority Ciphertext-Policy ABE Scheme on Prime Order Groups[J]. Acta Electronica Sinica, DOI: 10.3969/j.issn.0372-2112.2014.04.012.

参考文献

[1] SAHAI A,WATERS B.Fuzzy identity-based encryption[A].EUROCRYPT 2005[C].Berlin:Springer,2005.457-473.

[2] GOYAL V,PANDEY O,SAHAI A,et al.Attribute-based encryption for fine-grained access control of encrypted data[A].CCS2006[C].Alexandria,Virginia:ACM,2006.89-98.

[3] OSTROVSKY R,SAHAI A,WATERS B.Attribute-based encryption with non-monotonic access structures[A].CCS2007[C].Alexandria,Virginia:ACM,2007.195-203.

[4] OKAMOTO T,TAKASHIMA K.Fully secure functional encryption with general relations from the decisional linear assumption[A].CRYPTO 2010[C].Berlin:Springer,2010.191-208.

[5] LEWKO A,OKAMOTO T,SAHAI A,et al.Fully secure functional encryption:Attribute-based encryption and(hierarchical)inner product encryption[A].EUROCRYPT 2010[C].Berlin:Springer,2010.62-91.

[6] BETHENCOURT J,SAHAI A,WATERS B.Ciphertext-policy attribute-based encryption[A].IEEE Symposium on Security and Privacy 2007[C].Berkeley,CA:IEEE,2007.321-334.

[7] CHEUNG L,NEWPORT C.Provably secure ciphertext policy ABE[A].CCS2007[C].Alexandria,Virginia:ACM,2007.456-465.

[8] GOYAL V,JAIN A,PANDEY O,et al.Bounded ciphertext policy attribute based encryption[A].ICALP 2008[C].Berlin:Springer,2008.579-591.

[9] WATERS B.Ciphertext-policy attribute-based encryption:An expressive,efficient,and provably secure realization[A].PKC 2011[C].Berlin:Springer,2011.53-70.

[10] CHASE M.Multi-authority attribute based encryption[A].TCC 2007 [C].Berlin:Springer,2007.515-534.

[11] CHASE M,CHOW S S M.Improving privacy and security in multi-authority attribute-based encryption[A].CCS2009[C].Chicago,Illinois:ACM,2009.121-130.

[12] MüLLER S,KATZENBEISSER S,ECKERT C.Distributed attribute-based encryption[A].ICISC 2008[C].Berlin:Springer,2009.20-36.

[13] MüLLER S,KATZENBEISSER S,ECKERT C.On multi-authority ciphertext-policy attribute-based encryption[J].Bulletin of the Korean Mathematical Society,2009,46(4):803-819.

[14] LEWKO A,WATERS B.Decentralizing attribute-based encryption[A].EUROCRYPT 2011[C].Berlin:Springer,2011.568-588.

[15] [JP3]LIU Z,CAO Z,HUANG Q,et al.Fully secure multi-authority ciphertext-policy attribute-based encryption without random oracles[A].ESORICS 2011[C].Berlin:Springer,2011.278-297.

[16] FREEMAN D M.Converting pairing-based cryptosystems from composite-order groups to prime-order groups[A].EUROCRYPT 2010[C].Berlin:Springer,2010.44-61.

[17] LEWKO A.Tools for simulating features of composite order bilinear groups in the prime order setting[A].EUROCRYPT 2012[C].Berlin:Springer,2012.318-335.

[18] BONEH D,FRANKLIN M.Identity-based encryption from the Weil pairing[A].CRYPTO 2001[C].Berlin:Springer,2001.213-229.

[19] BEIMEL A.Secure Schemes for Secret Sharing and Key Distribution[D].Haifa,Israel:Israel Institute of Technology,Technion,1996.

[20] WATERS B.Dual system encryption:Realizing fully secure IBE and HIBE under simple assumptions[A].CRYPTO 2009[C].Berlin:Springer,2009.619-636.

一种素数阶群上构造的自适应安全的多授权机构CP-ABE方案

An Adaptively Secure Multi-Authority Ciphertext-Policy ABE Scheme on Prime Order Groups

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	佘维, 霍丽娟, 刘炜, 张志鸿, 宋轩, 田钊. 一种可隐藏敏感文档和发送者身份的区块链隐蔽通信模型[J]. 电子学报, 2022, 50(4): 1002-1013.
[2]	戚珉, 陈明. 标准模型下基于身份的混淆乐观公平交换方案[J]. 电子学报, 2020, 48(8): 1516-1527.
[3]	杨启良, 周彦伟, 杨坤伟, 王涛. 标准模型下可公开验证的匿名IBE方案的安全性分析[J]. 电子学报, 2020, 48(2): 291-295.
[4]	丁勇, 王冰尧, 袁方, 王玉珏, 张昆, 田磊. 支持第三方仲裁的智能电网数据安全聚合方案[J]. 电子学报, 2020, 48(2): 350-358.
[5]	李航, 冯朝胜, 刘帅南, 刘彬, 赵开强. 支持离线/在线加密及可验证外包解密的CP-WABE方案[J]. 电子学报, 2020, 48(11): 2146-2153.
[6]	魏铎, 高海英. 一种支持算术张成程序的密文策略属性加密方案[J]. 电子学报, 2020, 48(10): 1993-2002.
[7]	巩林明, 李顺东, 窦家维, 王道顺. 标准模型下抗CPA与抗CCA2的RSA型加密方案[J]. 电子学报, 2018, 46(8): 1938-1946.
[8]	赵艳琦, 来齐齐, 禹勇, 杨波, 赵一. 标准模型下基于身份的环签名方案[J]. 电子学报, 2018, 46(4): 1019-1024.
[9]	莫若, 马建峰, 刘西蒙, 张涛. 一种支持树形访问结构的属性基可净化签名方案[J]. 电子学报, 2017, 45(11): 2715-2720.
[10]	陈明. 标准模型下可托管的基于身份认证密钥协商[J]. 电子学报, 2015, 43(10): 1954-1962.
[11]	熊金波, 姚志强, 马建峰, 李凤华, 刘西蒙, 李琦. 基于属性加密的组合文档安全自毁方案[J]. 电子学报, 2014, 42(2): 366-376.
[12]	马春光, 石岚, 周长利, 汪定. 属性基门限签名方案及其安全性研究[J]. 电子学报, 2013, 41(5): 1012-1015.
[13]	明洋, 王育民. 标准模型下可证安全的通配符基于身份加密方案[J]. 电子学报, 2013, 41(10): 2082-2086.
[14]	葛爱军, 马传贵, 程庆丰. 标准模型下CCA2安全且固定密文长度的模糊基于身份加密方案[J]. 电子学报, 2013, 41(10): 1948-1952.
[15]	李继国, 杨海珊, 张亦辰. 标准模型下安全的基于证书密钥封装方案[J]. 电子学报, 2012, 40(8): 1577-1583.