Affiliation:
1. School of Artificial Intelligence and Big Data, Hefei University, Hefei 230601, China
Abstract
The data hierarchical Ciphertext-Policy Attribute-Based Encryption (CP-ABE) scheme implements multiple hierarchical data encryption of a single access policy, which reduces the computation and storage overhead. However, existing data hierarchical CP-ABE schemes have some problems, such as the leakage of personal privacy information through access policies or user attributes in plaintext form, and these schemes grant enough privileges to a single authorization center. If the authorization center is untrusted or attacked, keys can be used to illegally access data, which is the key escrow problem. To solve these problems, we propose an Attribute Hiding and Multiple Authorization Centers-based Data Hierarchical Encryption Scheme (AH-MAC-DHE). Firstly, we propose an Attribute Convergence Hiding Mechanism (ACHM). This mechanism solves the problem of personal privacy information leakage by hiding access policies and user attributes. Secondly, we design Privilege-Dispersed Multiple Authorization Centers (PD-MAC). PD-MAC solves the problem of key escrow by dispersing the privileges of the single authorization center to the user authorization center and attribute authorization center. Finally, we prove that AH-MAC-DHE is secure under the decisional q-parallel Bilinear Diffie-Hellman Exponent (BDHE) assumption, which also satisfies anti-collusion and privacy security. The experimental results indicate that compared with existing schemes, AH-MAC-DHE performs well.
Funder
Key Research Plan of Anhui
Subject
Electrical and Electronic Engineering,Computer Networks and Communications,Hardware and Architecture,Signal Processing,Control and Systems Engineering