摘要
当前的GlusterFS分布式存储系统中的文件共享方式由于信息机密性较低且不具备身份签名机制,因此提出利用多PKG广义签密方案生成的私钥不完全依赖于第三方,在完成GlusterFS分布式存储系统中文件加密的同时还提供有效的签名,可以有效防止私钥泄露.在解密过程中,客户端可以通过对应的私钥解密GlusterFS分布式存储系统中的对应资源,获取相应的明文信息,而非集群中全部资源,可实现有效访问.在本方案中,使用随机模型下的BDH假设证明了方案选取密文攻击的安全性,与基于身份广义签密方案在分布式系统中的应用相比,具有更高的安全性.
The file sharing method in the current GlusterFS distributed storage system has low information confidentiality and does not have the identity signature mechanism.Therefore,the private key generated by the multi-PKG generalized signcryption scheme is not completely dependent on the third party.The file encryption in the GlusterFS distributed storage system also provides an effective signature,which can effectively prevent the leakage of the private key.In the decryption process,the client can decrypt the corresponding resources in the GlusterFS distributed storage system through the corresponding private key to obtain the corresponding plaintext information,rather than all the resources in the cluster,which can achieve effective access.In this scheme,the security of the chosen ciphertext attack is proved by using the BDH assumption in the random model.Compared with the application of identity-based generalized signcryption scheme in distributed systems,it has higher security.
作者
解则翠
陈红
XIE Ze-cui;CHEN Hong(School of Network and Information Security,Jiangsu College of Safety Technology,Xuzhou 221004,Jiangsu,China)
出处
《兰州文理学院学报(自然科学版)》
2023年第4期40-45,共6页
Journal of Lanzhou University of Arts and Science(Natural Sciences)
基金
江苏省基金项目(2023SJYB1198)
徐州市基金项目(22XSZ-59)。
