A Zero-trust Access Control Scheme Based on CPABE

Abstract

Abstract The introduction of new power terminals has improved the efficiency of the new power system, but it has also brought new risks. It is important to research ways to prevent cloud resources from unauthorized access by these terminals. To address this issue, an access control scheme was proposed based on Ciphertext-Policy Attribute-Based Encryption (CPABE) technology, which can encrypt cloud resource information and make access control fine-grained. We also combine the SM9 algorithm to reduce the key management burden of traditional CPABE technology and introduce a zero-trust mechanism to provide a higher level of security protection for the subsequent access control process of the terminal. Additionally, we prove the correctness and analysis of the attack, which can be resisted by the proposed scheme, demonstrating its feasibility and security. Finally, a comparison was made between our scheme and other CPABE schemes. Our scheme is proven to perform better in performance.