支持策略隐藏可撤销的无配对cp-凯发网

ecc-ph-maabe: ecc-based supporting policy hiding and attribute revocation cp-abe scheme

• 1、school of electronic engineering, beijing university of posts and telecommunications, beijing 100876

abstract：when deploying the ciphertext-policy attribute-based encryption (cp-abe) framework in internet of things (iot) environments, the system architecture faces the risk of leaking participants\' sensitive information due to the explicit storage of access policies. on the one hand, the existing policy hiding schemes have technical bottlenecks such as excessive encryption and decryption computation overheads and limited user attribute expression capabilities; on the other hand, when a user or an attribute has expired, it needs to be revoked in time to save storage space. in this paper, we propose an elliptic curve cryptography-based cp-abe data sharing scheme that supports policy hiding and revocable cp-abe data sharing, which achieves the revocation of the corresponding attributes through the attribute list, partially hides the access policy with the help of linear secret sharing scheme (lsss) matrix, and designs an online privacy testing algorithm, which can effectively share the extra costs of the users in the process of data storing and attribute matching testing through the distributed characteristics of edge nodes, so as to make the scheme more suitable for the users\' needs. the distributed nature of the edge nodes effectively shares the additional user overhead in the process of data storage and attribute matching test, which makes the scheme more suitable for iot terminals. the security analysis and experimental evaluation show that the proposed scheme can achieve indistinguishability under selective plaintext attack under the decisional diffie-hellman assumption (ddh) .under the same security level, the offline computation cost is only one scalar multiplication operation, which improves the ciphertext space utilisation by 50%~70% compared with similar algorithms.

keywords：