摘要
摘要
随着云计算技术的日渐成熟,计算机的云服务也在多样化,云服务利用云服务器的计算能力和存储能力,为中小企业和个人应用提供了广泛市场。服务提供商希望能够保护服务软件的产权和内部信息,而用户则希望尽可能的保证个人信息的安全。而不可区分混淆技术作为当前的研究热点之一,在这两个方面起着非常重要的作用。
跋扈的意思本文针对目前云服务体系和不可区分混淆的特点,提出一种新型的基于不可区分混淆技术的云服务外包方案,同时提出了一种利用不可区分混淆技术构造的多方密钥协商机制,并对提出的方案进行了安全性证明。
本文的主要创新点和贡献在于:
1,提出一种基于不可区分混淆的可监管的云服务外包体系。通过改进现有的云服务外包方案,在降低云服务提供商的可信度的同时,加入了半可信第三方密钥生成中心作为监管机构,由密钥生成中心和云服务提供商分别对云服务进行不可区分混淆处理,访问用户需要向密钥生成中心和云服务提供商分别进行身份认证。访问用户的对称密钥需要由密钥生成中心和云服务提供商合作才能够得到,这样就可以保证
as什么意思
访问用户的数据不会被任何单独一方窃取,同时也保证了监管方对访问用户的监管,这种监管是有效且可控的。
2,提出一种基于不可区分混淆的密钥协商方案。利用不可区分混淆技术,可以将某个参与方Alice的密钥协商过程作为一个公钥进行公开,这样其他参与方就可以在Alice处于离线状态时与Alice进行安全通信;另外,在该方案中,参与方还可以灵活的选择参与方为两方还是三方,而不需要额外的计算和通信代价。针对智能医疗服务体系的特点,我们还展示了利用该密钥协商方案解决智能医疗服务中出现的问题。另外,我们对基于不可区分混淆的密钥协商方案进行可证明安全分析,证明其是选择明文安全的。
关键词:不可区分混淆,云服务外包,智能医疗,密钥协商
ABSTRACT
With the mature of cloud computing technology, the computer cloud rvices are diversified. Cloud rvices using the cloud computing power and storage capacity will provide a broad market for small and medium-sized enterpris and individuals. Service providers hope to protect property rights and internal information of rvice software, and urs also want to ensure the confidentiality of personal information as much as possible, especially related to medical information and other important infor
mation that may be related to urs' personal safety. And indistinguishability obfuscation technology as one of the hot rearch areas, plays a very important role in the two aspects.
This article aimed at the characteristics of prent cloud rvice system and indistinguishability obfuscation propos a new type of cloud rvice outsourcing scheme bad on indistinguishability obfuscation technology, at the same time puts forward a way to u indistinguishability obfuscation to distinguish the multi-party key agreement mechanism. Also, the curity of the new schemes are analyzed and proved.
In this paper, the main innovation points and contributions are:
1. We propo a cloud rvice outsourcing scheme with controlled regulation bad on indistinguishability obfuscation. Bad on previous cloud rvice outsourcing scheme, we reduce the credibility of cloud rvice providers and joined the half-trusted key generation center to be a regulator. The key generation center and providers need to obfuscate programs and authenticate the identities of access urs respectively. Then the generation of the ssion key that urs encrypt messages need the KGC and providers to get cooperation, which ensures urs' message will not be stolen by any other participants, also ensures the effective and controllable regulation.昆明同德广场
2.We put forward a new kind of key agreement mechanism from indistinguishability obfuscation. Using the indistinguishability obfuscation, We can make the key agreement process of a ur to be a public key, then any other party will communicate with this ur at any time safely. At the same time , there can be two or three party to be involved in without extra computing and communication cost. In the light of the characteristics of intelligent medical rvice system, we show how to solve the problem faced in intelligent medical rvice system. Finally, we prove the safety analysis of the scheme.
插图索引
图2.1 不可区分混淆器构造过程 (16)
图3.1 系统流程图 (23)
符号对照表
中国十大避暑胜地
符号符号名称
*群乘法
∈属于
⨯群映射
O计算复杂度
∧与
∨或
mod取余牛肉片怎么做好吃又嫩
∀对于任意
整数环q
熏鲅鱼的家常做法⊥终止毛姆刀锋
会场布置图片h哈希函数
sig数字签名
i不可区分混淆器||x字符串x的长度
缩略语对照表
缩略语英文全称中文对照DES Data Encryption Standard 数据加密标准CA Center of Authority 权威中心CT Cipher Text 密文
CS Cloud Server 云服务器SP Service Provider 服务提供商AU Access Ur 访问用户
