摘要
在传统密文属性基加密方案中,单个解密私钥与用户往往处于一对多的从属关系,导致恶意用户或半可信属性授权机构可能为了攫取利益而向非授权第三方泄露解密私钥。此外,用户解密阶段中需要进行大量的配对计算,为资源受限的终端用户带来了巨大的计算开销负担。为此,文中提出了一种支持追责和可验证外包解密的属性基加密方案,利用可验证外包解密技术,将大部分加密开销转移至解密代理,以节省终端用户计算开销。同时,通过在用户私钥中嵌入用户身份信息以及对属性授权机构不可见的秘密信息,实现了对用户和属性授权机构的公开追责。安全性分析证明了本方案在标准模型下具有选择性安全、可追责性和外包解密的可验证性;性能分析结果也表明本方案的解密开销主要在解密代理一方,适用于资源受限的移动设备用户。
A single decryption private key is subordinate to multiple users in traditional ciphertext attribute-based encryption schemes,which makes it possible for malicious users or semi-trusted attribute authorities to reveal the decryption private key to third unauthorized parties in order to gain benefits.Moreover,the decryption stage requires numerous pairing calculations,resulting to a huge burden to the end users with limited computing power.To address these issues,this paper proposes an accountable and verifiable outsourced decryption for ciphertextpolicy attribute-based encryption.By deploying verifiable outsourcing decryption technology,the majority of the encryption overhead is shifted to the decryption agents,such that the computational load on end users can be reduced.By embedding user identity information and secret information that remains invisible to attribute authority into the user's private key,public accountability of both users and attribute authority is achieved.Security analysis demonstrates that our proposed scheme provides selective security,accountability,and verifiability of outsourcing decryption under the standard model.Performance analysis also indicates that the decryption cost of this scheme mainly lies on the decryption agent side,making it applicable for mobile device users with limited resources.
作者
李彦锋
张桂鹏
林禄滨
杨振国
刘文印
Li Yan-feng;Zhang Gui-peng;Lin Lu-bin;Yang Zhen-guo;Liu Wen-yin(School of Computer Science and Technology,Guangdong University of Technology,Guangzhou 510006,China;Department of Computer Science and Technology,Tsinghua University,Beijing 100084,China)
出处
《广东工业大学学报》
CAS
2024年第4期106-113,共8页
Journal of Guangdong University of Technology
基金
广东省基础与应用基础研究基金资助项目(2021B1515120010)。
关键词
属性基加密
可追责
外包解密
可验证
attribute-based encryption
accountable
outsourced decryption
verifiable
