具有适应性安全的基于属性加密算法研究

项目名称： 具有适应性安全的基于属性加密算法研究

项目编号： No.61502529

项目类型： 青年科学基金项目

立项/批准年度： 2016

项目学科： 自动化技术、计算机技术

项目作者： 葛爱军

作者单位： 中国人民解放军战略支援部队信息工程大学

项目金额： 21万元

中文摘要： 基于属性加密体制在对数据加密的同时，还可以基于用户属性对其解密权限进行细粒度的控制，是基于密码学方法实现对数据对象访问控制的关键技术，在云计算、访问控制等相关领域有着重要的应用。本课题以具有适应性安全的基于属性加密算法为基础，拟对基于属性密码系统在实际应用中的几个关键问题展开系统研究。主要研究内容如下：首先，研究支持门限访问结构的密文策略基于属性加密以及支持任意单调访问结构的密钥策略基于属性加密，分别构造出密文长度为固定值并且具有适应性安全的基于属性加密算法；其次，设计密文长度为固定值的多机构基于属性加密系统，并探索多机构环境下实现隐私保护的新方法；最后，利用对偶系统加密技术，建立适应性安全基于属性加密算法的通用框架，实现由选择性安全到适应性安全的高效转化。课题的开展，可以丰富和发展可证明安全的基于属性加密算法的研究成果，从而为该技术在云计算等网络环境下的安全应用提供理论支撑和技术支持。

中文关键词： 基于属性加密；适应性安全；访问控制；对偶系统加密；隐私保护

英文摘要： Attribute-based encryption, which allows for fine-grained control for users’ attributes on encrypted data, is a key technology for the data object access control using the cryptography method, and has important applications in cloud computing, access control and other related areas. Focus on the research of attribute-based encryption with adaptive security, this project intends to investigate several aspects of attribute-based cryptosystems that are crucial to its applicability in practice. Regarding above issues, this project mainly focus on the following topics. Firstly, for the ciphertext-policy attribute-based encryption scheme with threshold access structure and the key-policy attribute-based encryption scheme that can support any monotonic access structures, this project will try to present concrete schemes with constant size ciphertexts while achieving adaptive security; Secondly, a multi-authorities attribute-based encryption with constant size ciphertexts will be given out, and this project will further study new ways to protect users’ privacy under the multi-authority environment; Finally, by extracting the design ideas of adaptively secure attribute-based encryption, this project will build up a generic framework which can efficiently convert attribute-based encryption scheme from selective security to adaptive security, using the dual system encryption technology. Through the research of this project, it is expected to enrich and develop the work of attribute-based encryption schemes with provable security, which can provide theoretical and technical supports for enhancing the reliability and practicality of attribute-based encryption in the cloud computing and other network environments.

英文关键词： Attribute-based Encryption;Adaptive Security;Access Control;Dual System Encryption;Privacy Preserving