基于区块链的多授权密文策略属性基等值测试加密方案

杨小东; 陈艾佳; 汪志松; 廖泽帆; 王彩芬

doi:10.12263/DZXB.20220950

您当前的位置：

首页 >

文章列表页 >

基于区块链的多授权密文策略属性基等值测试加密方案

学术论文 | 更新时间：2025-12-11

- 基于区块链的多授权密文策略属性基等值测试加密方案
- Blockchain-Based Multi-Authority Ciphertext-Policy Attribute-Based Encryption Scheme with Equality Test
- 电子学报 2024年52卷第3期页码：898-908
- 作者机构：
  
  1.西北师范大学计算机科学与工程学院，甘肃兰州 730070
  2.深圳技术大学大数据与互联网学院，广东深圳 518118
- 作者简介：
  
  [ "杨小东男，1981年出生于甘肃甘谷.现为西北师范大学教授、硕士生导师.主要研究方向为现代密码学和云计算安全. E-mail: y200888@163.com" ]
  [ "陈艾佳女，1995年出生于甘肃兰州.现为西北师范大学计算机科学与工程学院硕士研究生.主要研究方向为属性基加密. E-mail: papchen217@163.com" ]
  [ "汪志松男，1998年出生于江苏盐城.现为西北师范大学计算机科学与工程学院硕士研究生.主要研究方向为代理重签名. E-mail: 1216053764@qq.com" ]
  [ "廖泽帆男，1997年出生于甘肃兰州.现为西北师范大学计算机科学与工程学院硕士研究生.主要研究方向为电力数据安全. E-mail: lzf0097@163.com" ]
  [ "王彩芬女，1963年出生于河北安国.现为深圳技术大学大数据与互联网学院教授、博士生导师.主要研究方向为大数据安全.E-mail: wangcaifen@sztu.edu.cn" ]
- 基金信息：
  
  国家自然科学基金(62172337)
- DOI：10.12263/DZXB.20220950
  中图分类号： TP309.7
- 收稿：2022-08-10，
  
  修回：2023-06-06，
  
  纸质出版：2024-03-25
- 稿件说明：
移动端阅览
杨小东,陈艾佳,汪志松,等.基于区块链的多授权密文策略属性基等值测试加密方案[J].电子学报,2024,52(03):898-908.

YANG Xiao-dong, CHEN Ai-jia, WANG Zhi-song, et al.Blockchain-Based Multi-Authority Ciphertext-Policy Attribute-Based Encryption Scheme with Equality Test[J].Acta Electronica Sinica, 2024, 52(03): 898-908.
杨小东,陈艾佳,汪志松,等.基于区块链的多授权密文策略属性基等值测试加密方案[J].电子学报,2024,52(03):898-908. DOI：10.12263/DZXB.20220950

YANG Xiao-dong, CHEN Ai-jia, WANG Zhi-song, et al.Blockchain-Based Multi-Authority Ciphertext-Policy Attribute-Based Encryption Scheme with Equality Test[J].Acta Electronica Sinica, 2024, 52(03): 898-908. DOI：10.12263/DZXB.20220950

摘要

针对云环境下密文策略属性基加密方案中存在的密文检索分类困难与依赖可信第三方等问题，本文提出了一种基于区块链的多授权密文策略属性基等值测试加密方案．利用基于属性的等值测试技术，实现了支持属性级灵活授权的云端数据检索和分类机制，降低了数据用户对重复数据解密的计算开销．结合多授权属性基加密机制和区块链技术，实现了去中心化用户密钥生成．采用多属性授权机构联合分发密钥，有效抵抗用户和属性授权机构的合谋攻击．引入区块链和智能合约技术，消除了现有密文策略属性基密文等值测试方案中等值测试、数据存储与外包解密操作对可信云服务器的依赖．利用外包服务器执行部分解密计算，降低了用户本地的计算开销．将原始数据哈希和验证参数上传至区块链，保障外包服务器解密结果正确性和云端数据完整性．在随机预言模型下，基于判定性

https://html.publish.founderss.cn/rc-pub/api/common/picture?pictureId=59856544&type=

2.87866688

https://html.publish.founderss.cn/rc-pub/api/common/picture?pictureId=59856545&type=

1.60866666

-parallel Bilinear Diffie-Hellman Exponent困难问题证明了本文方案在选择密文攻击下的单向性．与同类方案相比较，本文方案支持更多的安全属性，并具有较低的计算开销．

Abstract

Aiming at the problems of ciphertext retrieval classification difficulty and dependence on trusted third party in the ciphertext-policy attribute-based encryption schemes within cloud environment

a blockchain-based multi-authority ciphertext-policy attribute-based encryption scheme with equality test is proposed. The attribute-based encryption with equality test technology is used to retrieve and classify ciphertexts that supports attribute-level flexible authorization

which reduces the computational cost of data users to decrypt duplicate data. Combined with multi-authority attribute-based encryption and blockchain technology to achieve decentralized user key generation. Meanwhile

the key is jointly distributed by different authorized institutions can effectively resist collusive attacks by users and attribute authorization agencies. Blockchain and smart contract technology are introduced to eliminate the dependence of trusted cloud servers in the outsourcing decryption

data storage and equivalence test operation in the existing ciphertext-policy attribute-based encryption with equality testing schemes. Outsourced server is used to perform part of the decryption computation

which reduces the user's local calculation overhead. The original data hash and verification parameters are uploaded to the blockchain

which ensures the correctness of the outsourcing server's decryption results and the integrity of cloud data. Under the random oracle model

the one-way property of the proposed scheme under chosen-ciphertext attack is proved based on the decision

https://html.publish.founderss.cn/rc-pub/api/common/picture?pictureId=59856560&type=

2.87866688

https://html.publish.founderss.cn/rc-pub/api/common/picture?pictureId=59856563&type=

1.60866666

-parallel BDHE hard problem. Compared with similar schemes

the proposed scheme supports more security properties and has lower computational overhead.

关键词

Keywords

references

冯朝胜 , 秦志光 , 袁丁 , 等 . 云计算环境下访问控制关键技术 [J ] . 电子学报 , 2015 , 43 ( 2 ): 312 - 319 .

FENG C S , QIN Z G , YUAN D , et al . Key techniques of access control for cloud computing [J ] . Acta Electronica Sinica , 2015 , 43 ( 2 ): 312 - 319 . (in Chinese)

BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption [C ] // 2007 IEEE Symposium on Security and Privacy (SP'07) . Piscataway : IEEE , 2007 : 321 - 334 .

LI J , ZHANG Y H , CHEN X F , et al . Secure attribute-based data sharing for resource-limited users in cloud computing [J ] . Computers & Security , 2018 , 72 : 1 - 12 .

赵志远 , 王建华 , 朱智强 , 等 . 面向物联网数据安全共享的属性基加密方案 [J ] . 计算机研究与发展 , 2019 , 56 ( 6 ): 1290 - 1301 .

ZHAO Z Y , WANG J H , ZHU Z Q , et al . Attribute-based encryption for data security sharing of Internet of Things [J ] . Journal of Computer Research and Development , 2019 , 56 ( 6 ): 1290 - 1301 . (in Chinese)

CHEN N Y , LI J G , ZHANG Y C , et al . Efficient CP-ABE scheme with shared decryption in cloud storage [J ] . IEEE Transactions on Computers , 2022 , 71 ( 1 ): 175 - 184 .

ZHANG L Y , CUI Y L , MU Y . Improving security and privacy attribute based data sharing in cloud computing [J ] . IEEE Systems Journal , 2020 , 14 ( 1 ): 387 - 397 .

关志涛 , 杨亭亭 , 徐茹枝 , 等 . 面向云存储的基于属性加密的多授权中心访问控制方案 [J ] . 通信学报 , 2015 , 36 ( 6 ): 120 - 130 .

GUAN Z T , YANG T T , XU R Z , et al . Multi-authority attribute-based encryption access control model for cloud storage [J ] . Journal on Communications , 2015 , 36 ( 6 ): 120 - 130 . (in Chinese)

CHASE M . Multi-authority attribute based encryption [M ] // Theory of Cryptography . Berlin : Springer , 2007 : 515 - 534 .

LEWKO A , WATERS B . Decentralizing attribute-based encryption [C ] // Advances in Cryptology—EUROCRYPT 2011 . Berlin : Springer , 2011 : 568 - 588 .

GAO S , PIAO G R , ZHU J M , et al . TrustAccess: A trustworthy secure ciphertext-policy and attribute hiding access control scheme based on blockchain [J ] . IEEE Transactions on Vehicular Technology , 2020 , 69 ( 6 ): 5784 - 5798 .

BONEH D , DI CRESCENZO G , OSTROVSKY R , et al . Public key encryption with keyword search [C ] // Advances in Cryptology—EUROCRYPT 2004 . Berlin : Springer , 2004 : 506 - 522 .

YANG G M , TAN C H , HUANG Q , et al . Probabilistic public key encryption with equality test [C ] // Topics in Cryptology—CT-RSA 2010 . Berlin : Springer , 2010 : 119 - 131 .

TANG Q . Towards public key encryption scheme supporting equality test with fine-grained authorization [C ] // Information Security and Privacy . Berlin : Springer , 2011 : 389 - 406 .

TANG Q . Public key encryption schemes supporting equality test with authorisation of different granularity [J ] . International Journal of Applied Cryptography , 2012 , 2 ( 4 ): 304 - 321 .

MA S , ZHANG M W , HUANG Q , et al . Public key encryption with delegated equality test in a multi-user setting [J ] . The Computer Journal , 2015 , 58 ( 4 ): 986 - 1002 .

HUANG K B , TSO R , CHEN Y C , et al . PKE-AET: Public key encryption with authorized equality test [J ] . The Computer Journal , 2015 , 58 ( 10 ): 2686 - 2697 .

LIN X J , SUN L , QU H P . Generic construction of public key encryption, identity-based encryption and signcryption with equality test [J ] . Information Sciences , 2018 , 453 : 111 - 126 .

MA S . Identity-based encryption with outsourced equality test in cloud computing [J ] . Information Sciences , 2016 , 328 : 389 - 402 .

MING Y , WANG E X . Identity-based encryption with filtered equality test for smart city applications [J ] . Sensors , 2019 , 19 ( 14 ): 3046 .

QU H P , YAN Z , LIN X J , et al . Certificateless public key encryption with equality test [J ] . Information Sciences , 2018 , 462 : 76 - 92 .

WANG Q , PENG L , XIONG H , et al . Ciphertext-policy attribute-based encryption with delegated equality test in cloud computing [J ] . IEEE Access , 2018 , 6 : 760 - 771 .

CUI Y Z , HUANG Q , HUANG J Y , et al . Ciphertext-policy attribute-based encrypted data equality test and classification [J ] . The Computer Journal , 2019 , 62 ( 8 ): 1166 - 1177 .

CUI Y Z , HUANG Q , HUANG J Y , et al . Outsourced ciphertext-policy attribute-based encryption with equality test [C ] // Information Security and Cryptology . Cham : Springer International Publishing , 2019 : 448 - 467 .

WATERS B . Ciphertext-policy attribute-based encryption: an expressive, efficient, and provably secure realization [C ] // Public Key Cryptography—PKC 2011 . Berlin : Springer , 2011 : 53 - 70 .

NAKAMOTO S . Bitcoin: A peer-to-peer electronic cash system [EB/OL ] . ( 2008-08-21 )[ 2022-08-10 ] . http://bitcoin.org/bitcoin.pdf http://bitcoin.org/bitcoin.pdf , 2009 .

朱健 , 胡凯 , 张伯钧 . 智能合约的形式化验证方法研究综述 [J ] . 电子学报 , 2021 , 49 ( 4 ): 792 - 804 .

ZHU J , HU K , ZHANG B J . Review on formal verification of smart contract [J ] . Acta Electronica Sinica , 2021 , 49 ( 4 ): 792 - 804 . (in Chinese)

CHEN B W , HE D B , KUMAR N , et al . A blockchain-based proxy re-encryption with equality test for vehicular communication systems [J ] . IEEE Transactions on Network Science and Engineering , 2020 , 8 ( 3 ): 2048 - 2059 .

浏览量

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

基于区块链的无线体域网无证书密文等值测试签密方案

面向LLM开放域问答中多方私有表格筛选：一种MPC可公开聚合审计与动态信誉的增强方法

基于区块链的分层联邦学习系统