撤销
计算机科学
加密
密文
云计算
基于属性的加密
架空(工程)
钥匙(锁)
计算机安全
明文
计算机网络
吊销列表
分布式计算
公钥密码术
公钥基础设施
操作系统
作者
Dilxat Ghopur,Jianfeng Ma,Xindi Ma,Jialu Hao,Tao Jiang,Xiangyu Wang
出处
期刊:IEEE Transactions on Services Computing
[Institute of Electrical and Electronics Engineers]
日期:2023-11-01
卷期号:16 (6): 3999-4011
被引量:3
标识
DOI:10.1109/tsc.2023.3303368
摘要
Cloud computing, which provides a brand-new service model, has become an important infrastructure in the information age, and has been widely used in numerous fields. The Key-Policy Attribute-Based Encryption (KP-ABE) scheme allows the encrypted data with fine-grained access control in the cloud environment. However, achieving large-scale user revocation in the application scenario of KP-ABE becomes one of the thorny problems. Furthermore, the computation and communication costs of the previous user revocation schemes were generally high, especially when a large number of users were revoked. To address these problems, an enhanced high-performance user-revocable KP-ABE scheme combined with the puncture method was proposed. In this article, the user could be revoked by the fine-grained restriction policy. When revoking the user, the cloud would run the puncture algorithm to embed the restriction policy defined by the data owner into the ciphertext. This method could effectively omit the re-encryption and key updating processes, by which the computation and communication overhead of the user revocation are efficiently reduced, and the user revocation becomes more flexible and efficient. Moreover, the Chosen-Plaintext Attack (CPA) security proof and extensive simulation results demonstrate the reliability and efficiency of the proposed scheme for user revocation in a cloud environment.
科研通智能强力驱动
Strongly Powered by AbleSci AI