• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

Computer Engineering & Science

Previous Articles     Next Articles

Energy internet data protection based on
attribute based hidden access strategy

LIU Peng1,2,HE Qian1,2,LI Shuangfu1,2 ,XU Hong1,2
 
  

  1. (1.Key Laboratory of Cryptography and Information Security,Guilin University of Electronic Technology,Guilin 541004;
    2.Guangxi Collaborative Innovation Center of Cloud Computing and Big Data,
    Guilin University of Electronic Technology,Guilin 541004,China)
  • Received:2018-05-30 Revised:2018-10-12 Online:2019-04-25 Published:2019-04-25

Abstract:

The communication data of the entities in different security domains in the energy internet contains sensitive information. The ciphertext-policy attributebased encryption (CP-ABE) scheme can achieve fine-grained protection. However, the traditional CP-ABE scheme is complicated to decrypt, and the revocation of attributes requires a complete update of the entire ciphertext. Besides, its access policy is prone to leaking private information, resulting in its limited application in the energy Internet. In order to solve the above problems, based on the data sharing security of the energy internet cloud storage, we propose an energy internet data protection scheme based on a hidden access strategy. The access strategy supports arbitrary thresholds or Boolean expressions, and the attributes in the access strategy are obscured to realize policy hiding. The scheme introduce the decryption agent to outsource the main part of the high-complexity attributebased decryption process to the server, thus reducing the decryption overhead of the receiving end. The attribute revocation process only requires the attribute authority and the decryption agent to participate, so the difficulty of the process is reduced. Analysis on comparative experiments shows that the decryption performance of this scheme is greatly improved.

 

Key words: energy internet, attributebased encryption (ABE), policy hiding, revocable attribute, decryption proxy