论文部分内容阅读
针对云存储环境下特有的信任依赖、用户串谋以及数据后向安全性问题,结合属性密钥分发方法、混合加密算法及ALKH算法,提出了一种适用于云存储的数据安全共享模型。数据安全共享模型混合使用CP-ABE和对称加密算法完成了数据的机密性保护,并使用多个密钥管理中心和云存储服务商分别完成用户属性和属性密钥的管理,在降低信任依赖的同时解决了用户串谋攻击问题。此外,安全共享模型提出了属性密钥更新和数据的重加密算法,增强了共享模型对数据后向安全性的保护能力。安全和可行性分析表明,数据安全共享模型降低了云存储环境下信任依赖、用户串谋攻击以及数据动态安全性问题,适用于实际的云存储环境。
Aiming at the problem of trust dependence, user collusion and data backward security in cloud storage environment, a data security sharing model suitable for cloud storage is proposed based on attribute key distribution method, hybrid encryption algorithm and ALKH algorithm. The data security sharing model uses CP-ABE and symmetric encryption algorithms to protect the confidentiality of data and uses multiple key management centers and cloud storage service providers to manage the user attributes and attribute keys separately. In reducing the trust-dependent At the same time to solve the user collusion attack. In addition, the security sharing model proposes attribute key updating and data re-encryption algorithm, which enhances the shared model’s ability to protect the data’s backward security. Security and feasibility analysis shows that the data security sharing model reduces the trust dependency, user collusion attacks and data dynamic security in cloud storage environment, which is suitable for the actual cloud storage environment.