电子学报 ›› 2017, Vol. 45 ›› Issue (11): 2715-2720.DOI: 10.3969/j.issn.0372-2112.2017.11.019

• 学术论文 • 上一篇    下一篇

一种支持树形访问结构的属性基可净化签名方案

莫若1, 马建峰1,3, 刘西蒙2, 张涛3   

  1. 1. 西安电子科技大学网络与信息安全学院, 陕西西安 710071;
    2. 新加坡管理大学信息系统学院, 新加坡 178902;
    3. 西安电子科技大学计算机学院, 陕西西安 710071
  • 收稿日期:2016-07-25 修回日期:2017-01-09 出版日期:2017-11-25
    • 通讯作者:
    • 马建峰
    • 作者简介:
    • 莫若,男,1990年生于陕西渭南.西安电子科技大学网络与信息安全学院博士研究生.研究方向为数字签名.E-mail:593430655@qq.com
    • 基金资助:
    • 国家自然基金 (No.U1135002,No.U1405255); 国家863高技术研究发展计划 (No.2015AA016007,No.2015AA017203)

An Attribute-Based Sanitizable Signature Supporting Dendritic Access Structure

MO Ruo1, MA Jian-feng1,3, LIU Xi-meng2, ZHANG Tao3   

  1. 1. School of Cyber Engineering, Xidian University, Xi'an, Shaanxi 710071, China;
    2. School of Information systems, Singapore Management University, Singapore 178902, Singapore;
    3. School of Computer Science and Technology, Xidian University, Xi'an, Shaanxi 710071, China
  • Received:2016-07-25 Revised:2017-01-09 Online:2017-11-25 Published:2017-11-25
    • Supported by:
    • National Natural Science Foundation of China (No.U1135002, No.U1405255); National High-tech R&D Program of China  (863 Program) (No.2015AA016007, No.2015AA017203)

摘要: 在电子医疗档案系统中,用户会频繁更新自己的健康数据.若直接使用现有签名方案保证这些数据的可认证性,在泄露用户身份隐私的同时,也需要大量的计算开销.为了解决上述问题,我们利用属性集合来模糊用户的身份信息,并引入可授权第三方-净化者,提出了一个属性基的可净化签名方案.安全性分析证明,本方案保护了用户的匿名性,同时在标准模型下针对给定策略选择消息攻击具有不可伪造性.通过方案对比分析表明,本方案在有效降低用户签名计算开销的同时,还支持树形访问结构,能在大规模属性集下提供灵活的细粒度访问控制.

关键词: 基于属性的签名, 可净化签名, 电子医疗档案, 标准模型, 不可伪造性, 匿名性

Abstract: In the Electronic Health Record system,users update their health data frequently.If users keep the authentication of these data with the signature scheme in existence,it will lead to the leakage of their identity privacy and huge computation cost.Aiming at tackling the problems above,we propose a novel scheme called attribute-based sanitizable signature supporting dendritic access structure which obfuscates the user identity with attribute sets and introduces an authorized semi-trust third-party-sanitizer.The security analysis demonstrates that our scheme achieves the anonymity of users and is unforgeable under selective-predicate chosen-message attack in the standard model.Through comparison,our scheme not only reduces the signing computation overhead of users,but also supports the dendritic access structure which can provide flexibly fine-grained access control under large-scale attribute sets.

Key words: attribute-based signature, sanitizable signature, electronic health records, standard model, unforgeable, anonymity

中图分类号: