面向移动终端的隐私数据安全存储及自毁方案

doi:10.11772/j.issn.1001-9081.2015.01.0077

计算机应用 ›› 2015, Vol. 35 ›› Issue (1): 77-82.DOI: 10.11772/j.issn.1001-9081.2015.01.0077

面向移动终端的隐私数据安全存储及自毁方案

沈薇薇¹, 姚志强¹, 熊金波¹, 刘西蒙²

1. 福建师范大学软件学院, 福州350108;
2. 南洋理工大学电气与电子工程学院, 新加坡南洋639798

收稿日期:2014-07-23 修回日期:2014-09-11 出版日期:2015-01-01 发布日期:2015-01-26
通讯作者: 熊金波
作者简介:沈薇薇(1991-),女,福建漳州人,硕士研究生,主要研究方向:移动数据安全、网络信息系统与安全;姚志强(1967-),男,福建莆田人,教授,博士,CCF高级会员,主要研究方向:信息安全;熊金波(1981-),男,湖南益阳人,讲师,博士,CCF会员,主要研究方向:移动数据安全、云数据安全与隐私保护;刘西蒙(1988-),男,陕西西安人,博士研究生,主要研究方向:大数据安全、隐私保护.
基金资助:
国家自然科学基金资助项目(61370078, 61402109);福建省教育厅基金资助项目(JB14034, JB12021).

Secure storage and self-destruction scheme for privacy data in mobile devices

SHEN Weiwei¹, YAO Zhiqiang¹, XIONG Jinbo¹, LIU Ximeng²

1. Faculty of Software, Fujian Normal University, Fuzhou Fujian 350108, China;
2. School of Electrical and Electronic Engineering, Nanyang Technological University, Nanyang 639798, Singapore

Received:2014-07-23 Revised:2014-09-11 Online:2015-01-01 Published:2015-01-26

摘要/Abstract

摘要：

针对移动终端隐私数据的安全问题,结合数据压缩、门限秘密共享和移动社交网络,提出一种面向移动终端的隐私数据安全存储及自毁方案.首先,对移动隐私数据进行无损压缩获得压缩数据.然后,使用对称密钥对压缩数据进行对称加密获得原始密文.接着,将原始密文分解成两部分密文块:其中一部分密文块与时间属性结合并封装成移动数据自毁对象(MDSO)后保存到云服务器中;另一部分密文块与对称密钥和时间属性结合,再经过拉格朗日多项式处理后获得密文分量.最后,将这些密文分量分别嵌入图片并共享到移动社交网络.当超过授权期后,任何用户都无法获取密文块重组出原始密文,从而无法恢复隐私数据,最终实现移动隐私数据的安全自毁.实验结果表明:当文件为10 KB时,压缩和加密时间之和仅为22 ms,说明所提方案性能开销较低.综合分析亦表明该方案具备较高安全性,能有效抵抗安全攻击,保护移动隐私数据的隐私安全.

关键词: 移动终端, 安全自毁, 隐私保护, 文件压缩, 移动社交网络

Abstract:

To protect the privacy data stored in mobile devices, a secure storage and self-destruction scheme for mobile devices was proposed, which was based on data compression, threshold secret sharing and mobile social networks. In this security scheme, the private data was first compressed with a lossless compression technique, and then the compressed data was encrypted symmetrically by a symmetric key to obtain primitive ciphertext, which was divided into two parts of ciphertext. With time attribute, one part of ciphertext was encapsulated into the Mobile Data Self-destructing Object (MDSO), which was stored in cloud servers. Furthermore, with the symmetric key and time attribute, the other part of ciphertext was processed by the Lagrange polynomial, and the mixture ciphertext shares were generated. At last, these mixture ciphertext shares were embedded into the pictures sharing to social networks. When the authorization was expired, no one could obtain ciphertext block to recombine the original ciphertext, so the security of the privacy data could be protected. The experimental results show that, the sum of the compression and encryption time is only 22 ms when the size of file is 10 KB, which explains the proposed scheme has low performance overhead; furthermore, the results of the comprehensive analysis indicate that the proposed scheme has high security, and it can resist against attacks effectively and protect the mobile privacy data.

Key words: mobile device, self-destruction, privacy protection, file compression, mobile social network

中图分类号:

TP309.2

沈薇薇, 姚志强, 熊金波, 刘西蒙. 面向移动终端的隐私数据安全存储及自毁方案[J]. 计算机应用, 2015, 35(1): 77-82.

SHEN Weiwei, YAO Zhiqiang, XIONG Jinbo, LIU Ximeng. Secure storage and self-destruction scheme for privacy data in mobile devices[J]. Journal of Computer Applications, 2015, 35(1): 77-82.

参考文献

[1] CBNweekly. Report: looking for the value-added of the mobile world [EB/OL]. [2013-01-18]. http://www.yicai.com/news/2013/01/2428793.html.(第一财经周刊.报告:寻找移动互联世界的附加值[EB/OL]. [2013-01-18]. http://www.yicai.com/news/2013/01/2428793.html.)
[2] ENCK W, GILBERT P, CHUN B-G, et al. TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones [C]// OSDI'10: Proceedings of the 9th USENIX Conference on Operating Systems Design and Implementation. Berkeley: USENIX Association, 2010: 255-270.
[3] CHENG Y, YING L, JIAO S, et al. Research on user privacy leakage in mobile social messaging applications [J]. Chinese Journal of Computers, 2014, 37(1): 87-100.(程瑶,应凌云,焦四辈,等.移动社交应用的用户隐私泄漏问题研究[J].计算机学报,2014,37(1):87-100.)
[4] Wikipedia. PRISM [EB/OL]. [2014-03-04]. http://en.wikip-edia.org/wiki/PRISM.
[5] Sohu IT. Users' information were sold by MySpace, and their privacy rights will be threatened [EB/OL]. [2014-03-18]. http://it.sohu.com/20100318/n270924241.shtml.(搜狐IT. MySpace出售用户信息,威胁用户隐私权益[EB/OL]. [2014-03-18]. http://it.sohu.com/20100318/n270924241.shtml.)
[6] InfoWorld. Deleted cloud files can be recovered from smartphones, researchers find [EB/OL]. [2013-03-19]. http://www.infoworld.com/t/mobile-security/deleted-cloud-files-can-be-recovered-smart-phones-researchers-find-214779.
[7] GEAMBASU R, KOHNO T, LEVY A, et al. Vanish: increasing data privacy with self-destructing data [C]// SSYM'09: Proceedings of the 18th USENIX Security Symposium. Berkeley: USENIX Association, 2009: 299-315.
[8] WANG G, YUE F, LIU Q. A secure self-destructing scheme for electronic data [J]. Journal of Computer and System Sciences, 2013, 79(2): 279-290.
[9] XIONG J, YAO Z, MA J, et al. A secure self-destruction scheme with IBE for the Internet content privacy [J]. Chinese Journal of Computers, 2014, 37(1): 139-150.(熊金波,姚志强,马建峰,等.面向网络内容隐私的基于身份加密的安全自毁方案[J].计算机学报,2014,37(1):139-150.)
[10] TANG Y, AMES P, BHAMIDIPATI S, et al. CleanOS: limiting mobile data exposure with idle eviction [C]// OSDI'12: Proceedings of the 10th USENIX Conference on Operating Systems Design and Implementation. Berkeley: USENIX Association: 2012: 77-91.
[11] DAI J, ZHANG C, LI Z. A cryptographic and time-constraint access control scheme for mobile terminals [M]// Network Computing and Information Security. Berlin: Springer, 2012: 352-357.
[12] TUNG T, LIN L, LEE D. Pandora messaging: an enhanced self-message-destructing secure instant messaging architecture for mobile devices [C]// WAINA 2012: Proceedings of the 26th International Conference on Advanced Information Networking and Applications Workshops. Piscataway: IEEE, 2012: 720-725.
[13] SHAMIR A. How to share a secret [J]. Communications of the ACM, 1979, 22(11): 612-613.
[14] WELCH T A. A technique for high-performance data compression [J]. IEEE Computer, 1984, 17(6):8-18.
[15] WANG L, REN Z, YU R, et al. A data assured deletion approach adapted for cloud storage [J]. Acta Electronica Sinica, 2012, 40(2): 266-272.(王丽娜,任正伟,余荣威,等.一种适于云存储的数据确定性删除方法[J].电子学报,2012,40(2):266-272.)
[16] LIU J, LI W, SUN Y. Security issues and solutions on social networks [J]. Journal of University of Science and Technology of China, 2011, 41(7): 565-575.(刘建伟,李为宇,孙钰.社交网络安全问题及其解决方案[J].中国科学技术大学学报,2011,41(7):565-575.)
[17] BWACH A, GARTRELL M, HAN R. Social-K: real-time K-anonymity guarantees for social network applications [C]// PerCom 2010: Proceedings of the 8th Annual IEEE International Conference on Pervasive Computing and Communications. Piscataway: IEEE, 2010: 600-606.
[18] BWACH A, GARTRELL M, HAN R. Solutions to security and privacy issues in mobile social networking [C]// CSE'09: Proceedings of the 2009 International Conference on Computational Science and Engineering. Piscataway: IEEE, 2009: 1036-1042.
[19] ZHANG T, CHEN T. An energy-efficient cloud-based offloading decision algorithm for mobile devices [J]. SCIENTIA SINICA: Informationis, 2012, 42(3): 333-342.(章铁飞,陈天洲.基于移动设备云迁移的节能决策算法[J].中国科学:信息科学,2012,42(3):333-342.)
[20] XIONG J, YAO Z, MA J, et al. A secure self-destruction scheme for composite documents with attribute based encryption [J]. Acta Electronica Sinica, 2014, 42(2): 366-376.(熊金波,姚志强,马建峰,等.基于属性加密的组合文档安全自毁方案[J].电子学报,2014,42(2):366-376.)

面向移动终端的隐私数据安全存储及自毁方案

Secure storage and self-destruction scheme for privacy data in mobile devices

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	李卓, 宋子晖, 沈鑫, 陈昕. 边缘计算支持下的移动群智感知本地差分隐私保护机制[J]. 计算机应用, 2021, 41(9): 2678-2686.
[2]	秦静, 安雯, 季长清, 汪祖民. 无线体域网隐私保护机制研究综述[J]. 计算机应用, 2021, 41(4): 970-975.
[3]	刘向宇, 夏国平, 夏秀峰, 宗传玉, 朱睿, 李佳佳. 个性化时空数据隐私保护[J]. 计算机应用, 2021, 41(3): 643-650.
[4]	张恩, 李会敏, 常键. 可验证的隐私保护k-means聚类方案[J]. 计算机应用, 2021, 41(2): 413-421.
[5]	陈锦宇, 刘兆伟. 基于改进投票证明共识协议的车联网系统[J]. 计算机应用, 2021, 41(1): 170-176.
[6]	马敏耀, 刘卓, 徐艺, 吴恋. 隐私保护整数区间位置关系判定问题[J]. 计算机应用, 2020, 40(9): 2657-2664.
[7]	吕佳玉, 竺智荣, 姚志强. 云计算环境下的双通道数据动态加密策略[J]. 计算机应用, 2020, 40(8): 2268-2273.
[8]	马敏耀, 吴恋, 刘卓, 徐艺. 隐私保护整数点和区间关系判定问题[J]. 计算机应用, 2020, 40(7): 1983-1988.
[9]	龙洋洋, 陈玉玲, 辛阳, 豆慧. 基于联盟区块链的安全能源交易方案[J]. 计算机应用, 2020, 40(6): 1668-1673.
[10]	杨洋, 王汝传. 增强现实中基于位置安全性的LBS位置隐私保护方法[J]. 计算机应用, 2020, 40(5): 1364-1368.
[11]	拜亚萌, 满君丰, 张宏. 基于区块链的电子健康记录安全存储模型[J]. 计算机应用, 2020, 40(4): 961-965.
[12]	罗惠雯, 龙士工. 基于用户感兴趣区域的地理不可区分性的位置扰动算法[J]. 计算机应用, 2020, 40(3): 760-764.
[13]	刘向宇, 陈金梅, 夏秀峰, Manish Singh, 宗传玉, 朱睿. 防止暴露位置攻击的轨迹隐私保护[J]. 计算机应用, 2020, 40(2): 479-485.
[14]	张梅舒, 徐雅斌. 多维数值型敏感属性数据的个性化隐私保护方法[J]. 计算机应用, 2020, 40(2): 491-496.
[15]	金鑫, 王涛春, 吕成梅, 王成田, 陈付龙, 赵传信. 移动群智感知中原始数据隐私保护算法[J]. 计算机应用, 2020, 40(11): 3249-3254.