Page 257 - 《软件学报》2020年第12期
P. 257
软件学报 ISSN 1000-9825, CODEN RUXUEW E-mail: jos@iscas.ac.cn
Journal of Software,2020,31(12):3923−3936 [doi: 10.13328/j.cnki.jos.005856] http://www.jos.org.cn
©中国科学院软件研究所版权所有. Tel: +86-10-62562563
∗
一种支持快速加密的基于属性加密方案
1
1,2
1
1
1
1
罗王平 , 冯朝胜 , 邹莉萍 , 袁 丁 , 吴唐美 , 李 敏 , 王广杰 3
1
(四川师范大学 计算机科学学院,四川 成都 610101)
2 (可视化计算与虚拟现实四川省重点实验室(四川师范大学),四川 成都 610101)
3 (四川师大科技园发展有限公司,四川 成都 610066)
通讯作者: 冯朝胜, E-mail: csfenggy@126.com
摘 要: 基于属性加密算法因含有大量耗时的指数运算和双线性对运算,一些方案提出将加密外包给云服务器.
然而这些方案并没有给出外包加密在云服务器中的并行计算方法,而且还存在用户保管私钥过多、授权中心生成用
户私钥成本过大的问题.针对这些问题,提出一种基于 Spark 大数据平台的快速加密与共享方案.在该方案中,根据共
享访问树的特点设计加密并行化算法,该算法将共享访问树的秘密值分发和叶子节点加密并行化之后交给 Spark
集群处理,而用户客户端对每个叶子节点仅需要一次指数运算;此外,用户私钥的属性计算也外包给 Spark 集群,授权
中心生成一个用户私钥仅需要 4 次指数运算,并且用户仅需要保存一个占用空间很小的密钥子项.
关键词: 基于属性加密;加密外包;快速加密;Spark 平台
中图法分类号: TP309
中文引用格式: 罗王平,冯朝胜,邹莉萍,袁丁,吴唐美,李敏,王广杰.一种支持快速加密的基于属性加密方案.软件学报,2020,
31(12):3923−3936. http://www.jos.org.cn/1000-9825/5856.htm
英文引用格式: Luo WP, Feng CS, Zou LP, Yuan D, Wu TM, Li M, Wang GJ. Attribute-based encryption scheme with fast
encryption. Ruan Jian Xue Bao/Journal of Software, 2020,31(12):3923−3936 (in Chinese). http://www.jos.org.cn/1000-9825/
5856.htm
Attribute-based Encryption Scheme with Fast Encryption
1
1,2
1
1
1
1
LUO Wang-Ping , FENG Chao-Sheng , ZOU Li-Ping , YUAN Ding , WU Tang-Mei , LI Min , WANG Guang-Jie 3
1 (School of Computer Science, Sichuan Normal University, Chengdu 610101, China)
2 (Visual Computing & Virtual Reality Key Laboratory of Sichuan Province (Sichuan Normal University), Chengdu 610101, China)
3 (Sichuan Normal University Technology Park Development Co., Ltd, Chengdu 610066, China)
Abstract: Attribute-based encryption algorithm contains a large number of time-consuming exponential operations and bilinear pairing
operations, therefore, some schemes propose to outsource encryption to the cloud server. However, these schemes do not provide the
parallel computing method of outsourcing encryption on cloud servers. Besides, in these schemes, user manages too many private keys
and the authorization center generates a private key for the user with excessive cost. To solve these problems, a fast encryption and
sharing scheme based on the Spark big data platform is proposed. In this scheme, an encryption parallelization algorithm is designed
according to the characteristics of the sharing access tree, with which, distribution of secret value of the sharing access tree and encryption
at leaf node are parallelized. Then, the parallelization tasks are handed over to the Spark cluster. As a result, user client needs only one
∗ 基金项目: 国家自然科学基金(61373163); 国家科技支撑计划(2014BAH11F02); 四川省科技支撑计划(2015GZ079); 四川师范
大学研究生优秀论文培育基金(川师研[2018]3 号-38); 国防科技重点实验室项目(6142103010709)
Foundation item: National Natural Science Foundation of China (61373163); National Key Technology Research and Development
Program of theMinistry of Science and Technology of China (2014BAH11F02); Science and Technology Support Program of Sichuan
Province (2015GZ079); Postgraduate Excellent Paper Cultivation Fund of Sichuan Normal University (Chuan Shi Yan [2018] No.3-38);
Project of Key Laboratory of National Defense Science and Technology (6142103010709)
收稿时间: 2018-04-02; 修改时间: 2018-08-30; 采用时间: 2019-04-25
