Wang Shangping, Zhang Xiaoxue, Zhang Yaling
School of Science, Xi'an University of Technology, Xi'an, Shaanxi, China.
School of Computer Science and Engineering, Xi'an University of Technology, Xi'an, Shaanxi, China.
PLoS One. 2016 Nov 29;11(11):e0167157. doi: 10.1371/journal.pone.0167157. eCollection 2016.
Cipher-policy attribute-based encryption (CP-ABE) focus on the problem of access control, and keyword-based searchable encryption scheme focus on the problem of finding the files that the user interested in the cloud storage quickly. To design a searchable and attribute-based encryption scheme is a new challenge. In this paper, we propose an efficiently multi-user searchable attribute-based encryption scheme with attribute revocation and grant for cloud storage. In the new scheme the attribute revocation and grant processes of users are delegated to proxy server. Our scheme supports multi attribute are revoked and granted simultaneously. Moreover, the keyword searchable function is achieved in our proposed scheme. The security of our proposed scheme is reduced to the bilinear Diffie-Hellman (BDH) assumption. Furthermore, the scheme is proven to be secure under the security model of indistinguishability against selective ciphertext-policy and chosen plaintext attack (IND-sCP-CPA). And our scheme is also of semantic security under indistinguishability against chosen keyword attack (IND-CKA) in the random oracle model.
基于密文策略属性的加密(CP-ABE)关注访问控制问题,而基于关键字的可搜索加密方案则关注在云存储中快速找到用户感兴趣的文件的问题。设计一种可搜索且基于属性的加密方案是一项新挑战。在本文中,我们提出了一种用于云存储的高效多用户可搜索属性加密方案,该方案具有属性撤销和授予功能。在新方案中,用户的属性撤销和授予过程委托给代理服务器。我们的方案支持同时撤销和授予多个属性。此外,在我们提出的方案中实现了关键字搜索功能。我们提出的方案的安全性归结为双线性Diffie-Hellman(BDH)假设。此外,该方案在针对选择性密文策略和选择明文攻击(IND-sCP-CPA)的不可区分性安全模型下被证明是安全的。并且在随机预言模型中,我们的方案在针对选择关键字攻击(IND-CKA)的不可区分性下也具有语义安全性。