计算机科学
云计算
加密
外包
客户端加密
密文
明文
云存储
访问控制
服务器
计算机安全
密码学
文件系统级加密
数据库
动态加密
密码原语
云安全计算
计算机网络
操作系统
密码协议
政治学
法学
作者
Jiguo Li,Xiaonan Lin,Yichen Zhang,Jinguang Han
出处
期刊:IEEE Transactions on Services Computing
[Institute of Electrical and Electronics Engineers]
日期:2017-09-01
卷期号:10 (5): 715-725
被引量:243
标识
DOI:10.1109/tsc.2016.2542813
摘要
Cloud computing becomes increasingly popular for data owners to outsource their data to public cloud servers while allowing intended data users to retrieve these data stored in cloud. This kind of computing model brings challenges to the security and privacy of data stored in cloud. Attribute-based encryption (ABE) technology has been used to design fine-grained access control system, which provides one good method to solve the security issues in cloud setting. However, the computation cost and ciphertext size in most ABE schemes grow with the complexity of the access policy. Outsourced ABE (OABE) with fine-grained access control system can largely reduce the computation cost for users who want to access encrypted data stored in cloud by outsourcing the heavy computation to cloud service provider (CSP). However, as the amount of encrypted files stored in cloud is becoming very huge, which will hinder efficient query processing. To deal with above problem, we present a new cryptographic primitive called attribute-based encryption scheme with outsourcing key-issuing and outsourcing decryption, which can implement keyword search function (KSF-OABE). The proposed KSF-OABE scheme is proved secure against chosen-plaintext attack (CPA). CSP performs partial decryption task delegated by data user without knowing anything about the plaintext. Moreover, the CSP can perform encrypted keyword search without knowing anything about the keywords embedded in trapdoor.
科研通智能强力驱动
Strongly Powered by AbleSci AI