基于CP-ABE访问控制系统的设计与实现-《计算机技术与发展》

文章信息/Info

Keywords:: CP-ABE; attribute-based encryption; ciphertext-policy; access control

摘要:: 在访问控制中，传统公钥加密由于其需要对接收群体的每个成员用其公钥加密，再分发，因此需要获取接收群体中每个成员的身份。但是，在分布式应用中，却难以一次获取接收群体的规模与成员身份。如果列举用户身份，则会损害用户隐私。基于密文策略的属性加密体制(CP-ABE)，由于其广播式的、授权人通过满足某些条件就能确定的特点，避免了由于必须获取这些信息而引出的数据安全问题。于是，文中给出了一种基于CP-ABE的混合加密访问控制系统的设计与实现方案。通过实际项目的成功应用，证明了该方案的可行性与优越性。

Abstract:: In access control,due to the need to encrypt with the public key for every member of group in traditional public encryption, then to distribute,so you need to get each member identity of the group. But it is difficult to get all information of receiving group. If list the users' identity,will damage the users' privacy. The CP-ABE,because of the characteristics of broadcasting,the authorized person by satisfying certain conditions to determine,avoids the problems of data security caused by having to get the information. So present a scheme of design and implementation of hybrid encryption access control system based on CP-ABE. Through the successful application of actual project,prove the feasibility and superiority of the scheme.