基于CP-ABE的多云存储系统零信任匿名访问算法

IF 5 3区计算机科学 Q1 COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE

Egyptian Informatics Journal Pub Date : 2025-04-20 DOI:10.1016/j.eij.2025.100681

Jun Tian

{"title":"基于CP-ABE的多云存储系统零信任匿名访问算法","authors":"Jun Tian","doi":"10.1016/j.eij.2025.100681","DOIUrl":null,"url":null,"abstract":"<div><div>This paper proposes a zero-trust anonymous access algorithm for multi-cloud storage systems based on CP-ABE (Ciphertext-Policy Attribute-Based Encryption). To address the challenges of inefficient data encryption/decryption and high communication overhead in existing systems, we design a novel access control model that integrates hierarchical identity-based encryption with enhanced CP-ABE. The model features: (1) a hierarchical identity management module for standardized authentication, (2) server-side data encryption enabling fine-grained access control, and (3) an improved CP-ABE scheme with key versioning for efficient revocation. Experimental results demonstrate that the proposed algorithm significantly improves encryption/decryption efficiency while reducing storage overhead and enhancing data-sharing security compared to conventional approaches.</div></div>","PeriodicalId":56010,"journal":{"name":"Egyptian Informatics Journal","volume":"30 ","pages":"Article 100681"},"PeriodicalIF":5.0000,"publicationDate":"2025-04-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Zero trust anonymous access algorithm for multi cloud storage system based on CP-ABE\",\"authors\":\"Jun Tian\",\"doi\":\"10.1016/j.eij.2025.100681\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>This paper proposes a zero-trust anonymous access algorithm for multi-cloud storage systems based on CP-ABE (Ciphertext-Policy Attribute-Based Encryption). To address the challenges of inefficient data encryption/decryption and high communication overhead in existing systems, we design a novel access control model that integrates hierarchical identity-based encryption with enhanced CP-ABE. The model features: (1) a hierarchical identity management module for standardized authentication, (2) server-side data encryption enabling fine-grained access control, and (3) an improved CP-ABE scheme with key versioning for efficient revocation. Experimental results demonstrate that the proposed algorithm significantly improves encryption/decryption efficiency while reducing storage overhead and enhancing data-sharing security compared to conventional approaches.</div></div>\",\"PeriodicalId\":56010,\"journal\":{\"name\":\"Egyptian Informatics Journal\",\"volume\":\"30 \",\"pages\":\"Article 100681\"},\"PeriodicalIF\":5.0000,\"publicationDate\":\"2025-04-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Egyptian Informatics Journal\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S111086652500074X\",\"RegionNum\":3,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Egyptian Informatics Journal","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S111086652500074X","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE","Score":null,"Total":0}

引用次数: 0

摘要

本文提出了一种基于 CP-ABE（密文-策略-属性加密）的多云存储系统零信任匿名访问算法。为了解决现有系统中数据加密/解密效率低和通信开销大的难题，我们设计了一种新型访问控制模型，将基于身份的分层加密与增强型 CP-ABE 集成在一起。该模型的特点是(1) 用于标准化身份验证的分层身份管理模块；(2) 服务器端数据加密，实现细粒度访问控制；(3) 改进的 CP-ABE 方案，具有密钥版本管理功能，可实现高效撤销。实验结果表明，与传统方法相比，拟议算法显著提高了加密/解密效率，同时降低了存储开销，增强了数据共享安全性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Zero trust anonymous access algorithm for multi cloud storage system based on CP-ABE

This paper proposes a zero-trust anonymous access algorithm for multi-cloud storage systems based on CP-ABE (Ciphertext-Policy Attribute-Based Encryption). To address the challenges of inefficient data encryption/decryption and high communication overhead in existing systems, we design a novel access control model that integrates hierarchical identity-based encryption with enhanced CP-ABE. The model features: (1) a hierarchical identity management module for standardized authentication, (2) server-side data encryption enabling fine-grained access control, and (3) an improved CP-ABE scheme with key versioning for efficient revocation. Experimental results demonstrate that the proposed algorithm significantly improves encryption/decryption efficiency while reducing storage overhead and enhancing data-sharing security compared to conventional approaches.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Egyptian Informatics Journal Decision Sciences-Management Science and Operations Research

CiteScore

11.10

自引率

1.90%

发文量

审稿时长

110 days

期刊介绍： The Egyptian Informatics Journal is published by the Faculty of Computers and Artificial Intelligence, Cairo University. This Journal provides a forum for the state-of-the-art research and development in the fields of computing, including computer sciences, information technologies, information systems, operations research and decision support. Innovative and not-previously-published work in subjects covered by the Journal is encouraged to be submitted, whether from academic, research or commercial sources.