Li Yahong, Wei Jianzhou, Wu Bin, Wang Chunli, Wang Caifen, Zhang Yulei, Yang Xiaodong
School of Electronic and Information Engineering, Lanzhou Jiaotong University, Lanzhou, Gansu, China.
School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, Sichuan, China.
PLoS One. 2021 Apr 16;16(4):e0250259. doi: 10.1371/journal.pone.0250259. eCollection 2021.
Current cloud computing causes serious restrictions to safeguarding users' data privacy. Since users' sensitive data is submitted in unencrypted forms to remote machines possessed and operated by untrusted service providers, users' sensitive data may be leaked by service providers. Program obfuscation shows the unique advantages that it can provide for cloud computing. In this paper, we construct an encrypted threshold signature functionality, which can outsource the threshold signing rights of users to cloud server securely by applying obfuscation, while revealing no more sensitive information. The obfuscator is proven to satisfy the average case virtual black box property and existentially unforgeable under the decisional linear (DLIN) assumption and computational Diffie-Hellman (CDH) assumption in the standard model. Moreover, we implement our scheme using the Java pairing-based cryptography library on a laptop.
当前的云计算对保护用户数据隐私造成了严重限制。由于用户的敏感数据以未加密的形式提交给由不可信服务提供商拥有和运营的远程机器,用户的敏感数据可能会被服务提供商泄露。程序混淆显示出它可为云计算提供的独特优势。在本文中,我们构建了一种加密阈值签名功能,通过应用混淆技术,可以将用户的阈值签名权安全地外包给云服务器,同时不会泄露更多敏感信息。在标准模型中,证明该混淆器满足平均情况虚拟黑盒属性,并且在决策线性(DLIN)假设和计算性迪菲-赫尔曼(CDH)假设下是存在不可伪造的。此外,我们在笔记本电脑上使用基于Java配对的密码库实现了我们的方案。
