發(fā)布時間：2018-09-17 16:07

【摘要】：隨著移動終端多媒體技術(shù)的發(fā)展,用戶逐漸將本地數(shù)據(jù)通過各種網(wǎng)絡(luò)備份到云存儲服務(wù)器上.云平臺在提供廉價便捷的數(shù)據(jù)存儲服務(wù)的同時也存在數(shù)據(jù)安全防護問題,尤其是密文數(shù)據(jù)訪問控制完全依賴于云服務(wù)商.為了防止數(shù)據(jù)被非授權(quán)用戶和半可信云存儲提供商的非法訪問,提出一種基于節(jié)點映射關(guān)系的CP-ABE屬性加密算法,即通過屬性管理降低權(quán)限管理的復雜度.在密文訪問控制機制中引入密鑰授權(quán)中心和安全代理實現(xiàn)存儲服務(wù)與安全服務(wù)異地存儲,保證在開放環(huán)境下云存儲系統(tǒng)中數(shù)據(jù)的安全性.實驗結(jié)果表明,這種屬性管理機制在少量的系統(tǒng)開銷下實現(xiàn)了數(shù)據(jù)存儲與密鑰存儲的分離,具有較高的應(yīng)用價值.
[Abstract]:With the development of multimedia technology of mobile terminal, users backup local data to cloud storage server through various networks. The cloud platform not only provides cheap and convenient data storage service, but also has the problem of data security protection, especially the ciphertext data access control completely depends on the cloud service provider. In order to prevent unauthorized access to data by unauthorized users and semi-trusted cloud storage providers, a CP-ABE attribute encryption algorithm based on node mapping relationship is proposed, which reduces the complexity of privilege management through attribute management. In the ciphertext access control mechanism, key authorization center and security agent are introduced to realize storage service and security service storage in different places, so as to ensure the security of data in cloud storage system in open environment. The experimental results show that this property management mechanism can separate the data storage from the key storage under a small system overhead and has high application value.
【作者單位】： 南京郵電大學計算機學院軟件學院;江蘇省大數(shù)據(jù)安全與智能處理重點實驗室;
【基金】：國家自然科學基金(61502247,11501302,61502243,91646116) 國家博士后科學基金(2016M600434) 江蘇省自然科學基金(BK20140895,BK20150862) 江蘇省博士后科研資助計劃(1601128B)資助
【分類號】：TP309;TP333
，

本文編號：2246437