面向移动云环境的委托式数据安全共享关键技术研究

项目名称： 面向移动云环境的委托式数据安全共享关键技术研究

项目编号： No.61502134

项目类型： 青年科学基金项目

立项/批准年度： 2016

项目学科： 自动化技术、计算机技术

项目作者： 刘雪娇

作者单位： 杭州师范大学

项目金额： 20万元

中文摘要： 移动云计算将移动互联网、云计算、移动终端紧密结合在一起，呈现蓬勃发展的趋势，正在深刻影响和改变着人们的生活。移动云环境下，资源受限的移动终端将存储服务和计算服务外包给云服务器，使其面临着更多的数据安全与隐私泄露问题，传统的数据安全管控方式不再适合于移动云计算。本项目围绕着移动终端共享云数据的安全和效率问题，研究密文访问控制的委托模型，实现移动终端安全、高效存取云数据，且访问控制灵活、权限粒度细、系统扩展性强；研究面向密文共享的轻量级的正确性验证方案，保证委托解密结果的可验证性；研究访问策略动态更新的隐私保护机制，降低重加密代价，防止用户信息泄露。本项目对移动云环境下数据安全保护、共享访问权限控制、用户隐私保护方面具有重要的研究价值，对促进移动云计算的发展和应用具有重要的现实意义。

中文关键词： 移动云计算；数据安全共享；密文访问控制技术；委托

英文摘要： Mobile cloud computing, which combines mobile Internet, cloud computing and mobile terminal together, shows vigorous development trend, and brings profound impact and change in every aspect of people's lives. In mobile cloud computing, it is a natural solution to outsource data storage services and computing services to cloud computing server, especially for resource constrained mobile terminals, which results in more and more problems in data security and privacy protection, traditional data security methods are not suitable in mobile cloud computing. In this project, we focus our attention on the security and efficiency problems in the aspect of data sharing by mobile terminals in mobile cloud computing. Firstly, we study a delegation model of ciphertext access control to realize secure and efficient in storage and access of cloud data by mobile terminals. The model can support flexible and fine-grained access control, and it is quite scalable. Also, we design a lightweight correctness verification scheme in ciphertexts sharing, to ensure that the decryption results returned by the proxy can be verified. Finally we study data privacy protection mechanism towards policies updating, to reduce the cost of re-encryption and implement data leakage prevention. The project has important research value in data security protection, data sharing and access control, and user privacy protection in mobile cloud environment, and it has strong application worthiness to promote the development and application of mobile cloud computing.

英文关键词： mobile cloud computing;data security sharing;ciphertext access control technology;delegation