支持树形访问结构的多权威基于属性的签名方案

莫若; 马建峰; 刘西蒙; 李琦

doi:10.11959/j.issn.1000-436x.2017150

您当前的位置：

首页 >

文章列表页 >

支持树形访问结构的多权威基于属性的签名方案

学术论文 | 更新时间：2024-06-05

- 支持树形访问结构的多权威基于属性的签名方案
- Multi-authority ABS supporting dendritic access structure
- 通信学报 2017年38卷第7期页码：96-104
- 作者机构：
  
  1. 西安电子科技大学网络与信息安全学院，陕西西安 710071
  2. 新加坡管理大学信息系统学院，新加坡 178902
  3. 南京邮电大学计算机学院、软件学院，江苏南京 210046
- 作者简介：
  
  [ "莫若（1990-），男，陕西渭南人，西安电子科技大学博士生，主要研究方向为密码学、信息安全等。" ]
  [ "马建峰（1963-），男，陕西西安人，博士，西安电子科技大学教授、博士生导师，主要研究方向为网络与信息安全等。" ]
  [ "刘西蒙（1989-），男，陕西西安人，博士，新加坡管理大学助理研究员，主要研究方向为密码学、网络安全等。" ]
  [ "李琦（1989-），男，江苏淮安人，博士，南京邮电大学讲师，主要研究方向为密码学、信息安全等。" ]
- 基金信息：
  
  国家自然基金委员会——广东联合基金重点基金资助项目(U1135002);国家自然科学基金资助项目(U1405255)
- DOI：10.11959/j.issn.1000-436x.2017150
  中图分类号： TP309
- 网络出版日期：2017-07，
  
  纸质出版日期：2017-07-25
- 稿件说明：
移动端阅览
莫若, 马建峰, 刘西蒙, 等. 支持树形访问结构的多权威基于属性的签名方案[J]. 通信学报, 2017,38(7):96-104.

Ruo MO, Jian-feng MA, Xi-meng LIU, et al. Multi-authority ABS supporting dendritic access structure[J]. Journal on communications, 2017, 38(7): 96-104.
莫若, 马建峰, 刘西蒙, 等. 支持树形访问结构的多权威基于属性的签名方案[J]. 通信学报, 2017,38(7):96-104. DOI： 10.11959/j.issn.1000-436x.2017150.

Ruo MO, Jian-feng MA, Xi-meng LIU, et al. Multi-authority ABS supporting dendritic access structure[J]. Journal on communications, 2017, 38(7): 96-104. DOI： 10.11959/j.issn.1000-436x.2017150.

摘要

基于属性的签名能够实现细粒度的访问控制，被认为是云计算环境中一种重要的匿名认证手段。但常见的属性基签名只能通过门限结构提供简单的访问控制，无法应对云环境中的大规模用户属性集。同时，用户属性集由唯一的属性权威管理，增加了属性权威的计算和存储开销，一旦属性权威被攻破，整个系统就会面临崩溃的风险。针对以上问题，提出了一种支持树形访问结构的多权威属性签名方案，可以支持任意形式的与、或和门限结构，提供了更灵活的访问控制。将用户属性集由不同属性权威分类管理，减少开销的同时也降低了系统的风险。此外，在随机预言机模型下证明了方案是给定策略选择消息攻击(SP-CMA)安全的。

Abstract

Attribute-based signature (ABS)

which could realize fine-grained access control

was considered to be an important method for anonymous authentication in cloud computing.However

normal ABS only provided simple access control through threshold structure and thus could not cope with the large-scale attribute sets of users in the cloud.Moreover

the attribute sets were supervised by only one attribute authority

which increased the cost of computation and storage.The whole system was in danger of collapsing once the attribute authority was breached.Aiming at tackling the problems above

a novel scheme

was proposed called multi-authority ABS supporting dendritic access structure which supported any AND

OR and threshold gates and affords more flexible access control.Meanwhile

the attribute sets of users were classified by diverse attribute authorities which reduced the overhead and the risk of systems.Besides

the scheme is proved to be selective predicate chosen message attack secure in the random oracle model.

关键词

Keywords

references

SAHAI A , WATERS B . Fuzzy identity-based encryption [M ] . Advances in Cryptology–EUROCRYPT 2005 . Springer Berlin Heidelberg , 2005 : 457 - 473 .

BONEH D , FRANKLIN M . Identity-based encryption from the Weil pairing [C ] // Annual International Cryptology Conference . Springer Berlin Heidelberg , 2001 : 213 - 229 .

GOYAL V , PANDEY O , SAHAI A , et al . Attribute-based encryption for fine-grained access control of encrypted data [C ] // The 13th ACM Conference on Computer and Communications Security . ACM , 2006 : 89 - 98 .

BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption [C ] // IEEE Symposium on Security and Privacy . Computer Society , 2007 : 321 - 334 .

CHASE M . Multi-authority attribute based encryption [M ] . Theory of Cryptography . Springer Berlin Heidelberg , 2007 : 515 - 534 .

WATERS B , . Efficient identity-based encryption without random oracles [C ] // Annual International Conference on the Theory and Applications of Cryptographic Techniques.Springer Berlin Heidelberg . 2005 : 114 - 127 .

YANG P , CAO Z , DONG X . Fuzzy identity based signature [J ] . IACR Cryptology ePrint Archive , 2008 : 2 .

MAJI H K , PRABHAKARAN M , ROSULEK M . Attribute-based signatures [C ] // Cryptographers’ Track at the RSA Conference . Springer Berlin Heidelberg , 2011 : 376 - 392 .

LI J , AU M H , SUSILO W , et al . Attribute-based signature and its applications [C ] // The 5th ACM Symposium on Information,Computer and Communications Security . ACM , 2010 : 60 - 69 .

SU J , CAO D , ZHAO B , et al . ePASS:An expressive attribute-based signature scheme with privacy and an unforgeability guarantee for the Internet of Things [J ] . Future Generation Computer Systems , 2014 , 33 : 11 - 18 .

LI J , CHEN X , HUANG X . New attribute–based authentication and its application in anonymous cloud access service [J ] . International Journal of Web and Grid Services , 2015 , 11 ( 1 ): 125 - 141 .

CHASE M , CHOW S S M . Improving privacy and security in multi-authority attribute-based encryption [C ] // The 16th ACM Conference on Computer and Communications Security . ACM , 2009 : 121 - 130 .

浏览量

894

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

改进的无证书有序多重签名方案

可证明安全的智能移动终端私钥保护方案