Attribute encryption method and system supporting numerical attribute comparison access policy
A technology of access policy and attribute encryption
Active Publication Date: 2022-05-03
CHANGSHA UNIVERSITY
View PDF6 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Obviously, when the value space of the numerical attribute is very large, such conversion will bring about a rapid expansion of the strategy size, which is unrealistic in practical applications
In 2007, Bethencourt et al. discussed this issue in their ciphertext policy-based attribute encryption, and proposed a basic scheme, but did not solve this problem well.
The reason is that their method uses "AND" and "OR" thresholds to convert numerical attribute relationship comparison strategies. Since different conversion strategies need to be used for different relational operations, the complexity is very high, and the conversion methods are not uniform and inflexible.
In 2017, Xue et al. studied this problem again, and used 0-Encoding and 1-Encoding encoding to convert the relational comparison strategy into a bit string connected by the "OR" gate, but this method mainly considered ">" and "< "Two relational operations, lack of support for other comparative relational operations such as "≤", "≥", "≠"
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0048] The following will be figure 1 The application scenario shown is taken as an example to further describe in detail the attribute encryption method and system supporting the numerical attribute comparison access strategy of the present invention. see figure 1 , in order to protect the confidentiality of the data and need to implement flexible and fine-grained access control to the data, the data provider uses the attribute encryption technology to encrypt the file under the policy "(position: manager) AND (11≤level≤15)" , the encrypted data is uploaded to the cloud server for storage. On the other hand, data accessors use their own attribute information to decide whether they can access plaintext data. Obviously, only data accessor B in the figure can decrypt and access the data, because his attribute value {"manager", 12} satisfies the access policy. Since the existing attribute encryption technology system has barriers in the matching problem of the numerical attrib...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention discloses an attribute encryption method and system supporting numerical attribute comparison access strategy. The invention includes: converting the numerical attribute relationship comparison strategy in the access strategy into numerical range representation, and calculating the minimum prefix set of the numerical range; Convert the numerical attribute relationship comparison strategy to the "OR" threshold strategy connection of elements in the prefix minimum set; calculate the prefix family of the numerical attribute; convert the matching between the numerical attribute and the numerical attribute relationship comparison strategy to determine the prefix family and prefix Whether the intersection of the minimum set is empty, if not, it is determined that the numerical attribute satisfies the access control policy, and the decryption condition can be obtained; otherwise, it is determined that the decryption condition is not satisfied. The invention greatly improves the expression ability of the access strategy in the traditional attribute encryption technology by introducing the numerical attribute comparison expression strategy, and flexibly realizes the matching problem between the comparison relationship expression strategy and the numerical attribute in a unified manner.
Description
technical field [0001] The invention relates to an attribute-based encryption (Attribute-based Encryption) technology in the field of cryptography, in particular to an attribute-based encryption method and system supporting numerical attribute comparison access strategies. Background technique [0002] With the rapid development of cloud computing and big data, more and more enterprises and individuals begin to store their massive private data in the cloud center, which can not only greatly save the cost of local IT construction, but also benefit from the powerful cloud computing platform Functions store and process data. However, cloud computing data security has always been one of the key concerns. Because once data is outsourced to a remote cloud center, they will be out of the direct physical control of the data owner. Before users outsource data, encrypting data is one of the effective ways to protect data confidentiality. However, traditional cryptography can guaran...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40H04L9/32
CPCH04L63/0428H04L63/08H04L63/0861H04L63/20H04L9/3231
Inventor 尹辉邹妍胡雅婷罗彩妮
Owner CHANGSHA UNIVERSITY