研究生: 盧承忠
Cheng-Chung Lu
論文名稱: 基於密文策略屬性加密的雲存儲數據共享研究
A study on ciphertext-policy attribute-based encryption for data sharing in cloud storage
指導教授: 洪西進
Shi-Jinn Horng
口試委員: 楊竹星
學位類別: 博士
系所名稱: 電資學院 - 資訊工程系
Department of Computer Science and Information Engineering
論文出版年: 2021
畢業學年度: 109
語文別: 英文
論文頁數: 106
中文關鍵詞: 存取控制雲存儲基於密文策略屬性加密電子健康紀錄代理加解密車載行動網路
外文關鍵詞: Access Control, Cloud Storage, CP-ABE, Electronic Health Record, Proxy Encryption and Decryption, VANET
相關次數: 點閱:346下載:5
Ensuring data confidentiality in the cloud storage is an increasingly important issue. Message confidentiality, user privacy and access control are the most important problems that affect services provided by data sharing in the cloud storage. However, access control that addresses data downloads while preserving users' privacy remains an open problem. Based on a set of attributes, the ciphertext-policy attribute-based encryption (CP-ABE) algorithm proposes a party data encryption/decryption mechanism for shared data; consequently, the algorithm has become a popular solution for data-sharing access control. However, the current CP-ABE schemes are still infeasible for cloud storage because these schemes use a single authority and inefficient encryption/decryption and ignore revocation mechanisms. Here, over CP-ABE with revocation, we introduce the attribute-based schemes that achieve secure data sharing for vehicular ad hoc network (VANET) and electronic health record (EHR) system, respectively. To reduce the computation load for user’s devices, we outsource computationally intensive encryption and decryption operations to cloud compute nodes. Comprehensive experimental results and security analysis show that our scheme achieves fine-grained access control while preserving user privacy. Through implementation, performance analysis demonstrates that our scheme is suitable for data sharing in cloud storage usage.

論文摘要 Abstract 誌 謝 Contents List of Tables List of Figures Chapter 1 Introduction 1.1 Background 1.2 Motivation 1.3 Attribute-Based Encryption 1.4 Revocable ABE 1.5 Organization of the Dissertation Chapter 2 Preliminaries and Related Works 2.1 Preliminaries 2.1.1 Bilinear Map 2.1.2 Lagrange Polynomials and Shamir’s Secret Sharing 2.1.3 Access Structures 2.1.4 Access Tree 2.1.5 Linear Secret-Sharing Schemes 2.1.6 Decisional q-Parallel Bilinear Diffie-Hellman Exponent Assumption 2.2 Related Works 2.2.1 ABE in VANETs 2.2.2 Review of CP-ABE scheme in EHR system Chapter 3 The Data-sharing Scheme in VANETs 3.1 The System Model and Security Requirements 3.1.1 System Model 3.1.2 Security Assumptions and Requirements 3.2 The Proposed Data Sharing Scheme for VANET 3.3 Evaluation and Experimental Results 3.3.1 Security Discussion Compromised Attack Anonymity Collusion Resistance Forward and Backward Security 3.3.2 Security Model 3.3.3 Security Analysis 3.3.4 Performance Analysis Chapter 4 The Cloud-Based EHR Systems 4.1 The System Model and Security Requirements 4.1.1 System Model 4.1.2 Security Requirements 4.2 The Proposed Scheme for Cloud-Based EHR System 4.2.1 Algorithms 4.2.2 Implementation 4.3 Evaluation and Experimental Results 4.3.1 Security Discussion Compromised Attack Collusion Resistance Forward and Backward Security Security Analysis 4.3.2 Performance Analysis 4.3.3 Scalability Chapter 5 Conclusions and Future Work Bibliography

