论文部分内容阅读
为了减少基于密文策略的属性加密(ciphertext-policy attribute-based encryption,CP-ABE)方案中用户和数据拥有者(data owner,DO)的计算量,该文提出一种方法,将解密密钥分为2部分,其中一部分存放在用户端,另一部分存储于代理者(例如云服务提供商CSP),使得属性撤销操作不会对用户产生影响,并且由于CSP进行了部分解密工作,使得用户的解密计算量降低。分析证明该方案可以减小用户和DO的计算量和通信量,并且可抵抗选择明文攻击。
In order to reduce the computation load of users and data owners (DO) in the ciphertext-policy attribute-based encryption (CP-ABE) scheme, a method is proposed to decrypt the key It is divided into two parts, one part of which is stored on the client side and the other part is stored on the agent (for example, the cloud service provider CSP) so that the attribute withdrawing operation will not affect the user. Moreover, due to the partial decryption work carried out by the CSP, The amount of decryption computation is reduced. The analysis proves that this scheme can reduce the computation and traffic of users and DOs and resist the choice of plaintext attacks.