Journal of Computer Applications ›› 2017, Vol. 37 ›› Issue (8): 2287-2291.DOI: 10.11772/j.issn.1001-9081.2017.08.2287

Previous Articles     Next Articles

BGN type outsourcing the decryption of attribute-based encryption ciphertexts

LI Zhenlin1,2, ZHANG Wei1,2, BAI Ping2, WANG Xu'an2   

  1. 1. Electronic Technique Department, Engineering College of the Chinese Armed Police Force, Xi'an Shaanxi 710086, China;
    2. Key Laboratory of Information Security, Engineering College of the Chinese Armed Police Force, Xi'an Shaanxi 710086, China
  • Received:2017-03-03 Revised:2017-05-02 Online:2017-08-10 Published:2017-08-12
  • Supported by:
    This work is partially supported by the Natural Science Foundation of Shaanxi Province (2016JQ6037).

基于属性的BGN型密文解密外包方案

李镇林1,2, 张薇1,2, 白平2, 王绪安2   

  1. 1. 武警工程大学 电子技术系, 西安 710086;
    2. 武警工程大学 信息安全保密重点实验室, 西安 710086
  • 通讯作者: 李镇林
  • 作者简介:李镇林(1992-),男,四川巴中人,硕士研究生,主要研究方向:密码学;张薇(1976-),女,陕西西安人,教授,博士,主要研究方向:密码学、信息安全;白平(1990-),男,内蒙古乌兰察布人,硕士研究生,主要研究方向:密码学;王绪安(1981-),男,湖北公安人,副教授,博士,主要研究方向:密码学、信息安全。
  • 基金资助:
    陕西省自然科学基金资助项目(2016JQ6037)。

Abstract: Cloud computing security is the key bottleneck that restricts its development, and access control on the result of cloud computing is a hot spot of current research. Based on the classical homomorphic encryption BGN (Boneh-Goh-Nissim) scheme, and combined with outsourcing the decryption of Ciphertext-Policy Attribute-Based Encryption (CP-ABE) ciphertexts, a BGN type outsourcing the decryption of ABE ciphertexts was constructed. In the scheme, partial decryption of ciphertexts was outsourced to the cloud, and only the users whose attributes meet the access policy could get the correct decryption result, thus reducing the storage and computation overhead of users. Compared with the existing outsourcing schemes of ABE, the proposed scheme can operate on ciphertexts for arbitrary additions and one multiplication. Finally, the security of the scheme was analyzed. The proposed scheme is semantically secure under the subgroup decision assumption, and its attribute security is proved under random oracle model.

Key words: attribute-based encryption, cloud computation, outsourcing computing, homomorphic encryption, subgroup decisional problem

摘要: 云计算的安全问题是制约其发展的关键瓶颈,其中对云计算结果的访问控制是当前研究的一个热点。在经典的类同态BGN方案基础上,结合CP-ABE(Ciphertext-Policy Attribute-Based Encryption)型密文解密外包设计,构造了基于属性的BGN型密文解密外包方案,部分密文的解密被外包到云上进行,减小了用户的存储开销与计算开销,并且只有用户属性满足访问策略时,才会得到正确的解密结果。与现有的基于属性的外包方案相比,新方案能对密文进行任意次加法同态和一次乘法同态操作。最后,分析了方案的安全性。所提方案在子群判定问题假设下达到语义安全,在随机预言机模型下满足属性安全。

关键词: 基于属性的加密, 云计算, 外包计算, 同态加密, 子群判定问题

CLC Number: