https://scholars.lib.ntu.edu.tw/handle/123456789/119024
標題: | CP-ABE中的動態金鑰更新與委託機制 Dynamic Key Update & Delegation In CP-ABE |
作者: | 何慧忠 Ho, Hui-Chung |
關鍵字: | 權限控管;金鑰更新;使用者權限註銷;動態授權;密文策略?性加密;Access Control;Key update;User revocation;Dynamically authorize;Forward secrecy;CP-ABE | 公開日期: | 2015 | 摘要: | Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is a useful asymmetric encryption algorithm compared to traditional asymmetric cipher key systems. It enables encrypted data to be stored on cloud server with every of them retaining their own access permissions without the need of additionally define access control permission on the cloud server. In highly dynamic and heterogeneous cloud environment it is a challenging task to maintain data protections by just utilizing fine-grained access policy of CP-ABE. User rights management is made harder to implement on such systems without user interventions. Currently there is no solution from the cryptosystem that supports efficient and direct key update and user revocations. Besides, backward secrecy and forward secrecy are not supported in the CP-ABE cryptosystem. Existing revocation methods are not encouraged to deploy in large cloud environment due to their high key processing overhead upon new user joining, revoked or being assigned with a new group key. In this paper, we proposed a method to dynamically authorize the users. The key feature of our model is the users do not have to involve in key revocation process. Our model utilizes different user authentication sessions to restrict their keys to a particular session and this approach could achieve direct user revocations within a group. The operation does not require re-encryption of existing ciphertext. Our method supports backward and (perfect) forward secrecy and is escrow-free. Lastly, we present that our method is efficient in the situation where users are changing groups frequently and our method is secured under chosen identity key attack. |
URI: | http://ntur.lib.ntu.edu.tw//handle/246246/275393 | Rights: | 論文公開時間: 2016/2/16 論文使用權限: 同意有償授權(權利金給回饋學校) |
顯示於: | 資訊工程學系 |
檔案 | 描述 | 大小 | 格式 | |
---|---|---|---|---|
ntu-104-R02922138-1.pdf | 23.32 kB | Adobe PDF | 檢視/開啟 |
在 IR 系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。