CN111181719B - 云环境下基于属性加密的分层访问控制方法及系统 - Google Patents
云环境下基于属性加密的分层访问控制方法及系统 Download PDFInfo
- Publication number
- CN111181719B CN111181719B CN201911400493.7A CN201911400493A CN111181719B CN 111181719 B CN111181719 B CN 111181719B CN 201911400493 A CN201911400493 A CN 201911400493A CN 111181719 B CN111181719 B CN 111181719B
- Authority
- CN
- China
- Prior art keywords
- key
- user
- data
- owner
- ciphertext
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 31
- 238000004891 communication Methods 0.000 claims description 5
- 238000005516 engineering process Methods 0.000 description 13
- 238000009795 derivation Methods 0.000 description 10
- 230000006870 function Effects 0.000 description 8
- 230000007246 mechanism Effects 0.000 description 8
- 238000003860 storage Methods 0.000 description 7
- 238000011161 development Methods 0.000 description 6
- 238000007726 management method Methods 0.000 description 4
- 230000004048 modification Effects 0.000 description 4
- 238000012986 modification Methods 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 238000013475 authorization Methods 0.000 description 2
- 238000013500 data storage Methods 0.000 description 2
- 239000011159 matrix material Substances 0.000 description 2
- 238000004088 simulation Methods 0.000 description 2
- 230000002411 adverse Effects 0.000 description 1
- 238000004458 analytical method Methods 0.000 description 1
- 238000013473 artificial intelligence Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000000052 comparative effect Effects 0.000 description 1
- 238000011217 control strategy Methods 0.000 description 1
- 239000013256 coordination polymer Substances 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000009826 distribution Methods 0.000 description 1
- 238000002474 experimental method Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000002826 magnetic-activated cell sorting Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000012946 outsourcing Methods 0.000 description 1
- 229920000642 polymer Polymers 0.000 description 1
- 230000001737 promoting effect Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/604—Tools and structures for managing or administering access control systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0442—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computing Systems (AREA)
- Automation & Control Theory (AREA)
- Databases & Information Systems (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (6)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201911400493.7A CN111181719B (zh) | 2019-12-30 | 2019-12-30 | 云环境下基于属性加密的分层访问控制方法及系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201911400493.7A CN111181719B (zh) | 2019-12-30 | 2019-12-30 | 云环境下基于属性加密的分层访问控制方法及系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN111181719A CN111181719A (zh) | 2020-05-19 |
CN111181719B true CN111181719B (zh) | 2022-05-27 |
Family
ID=70658473
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201911400493.7A Active CN111181719B (zh) | 2019-12-30 | 2019-12-30 | 云环境下基于属性加密的分层访问控制方法及系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN111181719B (zh) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112152778B (zh) * | 2020-09-22 | 2022-03-15 | 腾讯科技(深圳)有限公司 | 一种节点管理方法、装置、及电子设备 |
CN112751672B (zh) * | 2020-12-30 | 2022-11-11 | 上海微波技术研究所(中国电子科技集团公司第五十研究所) | 一种基于多参数的自适应数据加密保护方法及系统 |
CN114513533B (zh) * | 2021-12-24 | 2023-06-27 | 北京理工大学 | 一种分类分级健身健康大数据共享系统及方法 |
CN116781266A (zh) * | 2022-01-06 | 2023-09-19 | 西安链科信息技术有限公司 | 数据安全私有云控制系统、控制方法、介质、设备及终端 |
Family Cites Families (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2879323A1 (en) * | 2013-12-02 | 2015-06-03 | ETH Zurich | Method and distributed data processing system for managing access to data |
CN108390876B (zh) * | 2018-02-13 | 2021-12-14 | 西安电子科技大学 | 支持撤销外包可验证多授权中心访问控制方法、云服务器 |
CN108810004B (zh) * | 2018-06-22 | 2020-08-04 | 西安电子科技大学 | 基于代理的可撤销多授权中心访问控制方法、云存储系统 |
CN109040045B (zh) * | 2018-07-25 | 2021-04-06 | 广东工业大学 | 一种基于密文策略属性基加密的云存储访问控制方法 |
CN109819323B (zh) * | 2019-01-24 | 2020-12-29 | 中国电影科学技术研究所 | 一种混合云系统中的视频内容访问方法 |
-
2019
- 2019-12-30 CN CN201911400493.7A patent/CN111181719B/zh active Active
Also Published As
Publication number | Publication date |
---|---|
CN111181719A (zh) | 2020-05-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN111181719B (zh) | 云环境下基于属性加密的分层访问控制方法及系统 | |
CN111090622B (zh) | 基于动态加密rbac模型的云存储信息处理系统及方法 | |
US8255690B2 (en) | Apparatus and method for group session key and establishment using a certified migration key | |
CN110602063A (zh) | 一种多授权中心访问控制方法、系统及云存储系统 | |
CN111163036B (zh) | 一种数据共享方法、装置、客户端、存储介质及系统 | |
CN107465681B (zh) | 云计算大数据隐私保护方法 | |
CN101442404B (zh) | 一种许可证多级管理系统及方法 | |
CN111079191A (zh) | 一种基于区块链的cp-abe访问控制方案 | |
WO2023078055A1 (zh) | 在第一区域和第二区域间数据安全共享的方法和系统 | |
CN112202713B (zh) | 一种Kubernetes环境下用户数据安全保护方法 | |
CN109587115B (zh) | 一种数据文件安全分发使用方法 | |
Ma et al. | A secure and efficient data deduplication scheme with dynamic ownership management in cloud computing | |
CN114218584A (zh) | 系统级可撤销属性加密的电力数据隐私保护模型及方法 | |
CN111541731B (zh) | 一种基于区块链和知悉范围加密的电子文件访问控制方法 | |
CN113055164A (zh) | 一种基于国密的密文策略属性加密算法 | |
CN115865461B (zh) | 一种高性能计算集群中分发数据的方法和系统 | |
CN112187456B (zh) | 一种密钥分层管理与协同恢复系统及方法 | |
Tian et al. | Fine‐grained assured insertion and deletion scheme based on onion encryption in cloud storage | |
CN117828568B (zh) | 一种基于细粒度访问控制的数据库审计方法、系统、设备及可读存储介质 | |
EP2299379A1 (en) | Digital rights management system with diversified content protection process | |
KR100850929B1 (ko) | 도메인 drm 라이선스의 암호화/복호화 시스템 및 그암호화/복호화 방법 | |
KUMAR et al. | Efficient data access control for multi-authority cloud storage using CP-ABE | |
CN118157944A (zh) | 工业互联网下云-边-端协同的属性基加密系统与方法 | |
CN113098893A (zh) | 基于密码学构造的不可信云端动态访问控制机制实现方法 | |
CN117749351A (zh) | 一种汽车供应链业务数据安全存储与共享系统及方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20230802 Address after: Room 801, 85 Kefeng Road, Huangpu District, Guangzhou City, Guangdong Province Patentee after: Yami Technology (Guangzhou) Co.,Ltd. Address before: No.1 Daxue Road, University Science Park, Changqing District, Jinan City, Shandong Province Patentee before: SHANDONG NORMAL University |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20231013 Address after: Room 820, 8th floor, No. 390-408 Beijing East Road, Huangpu District, Shanghai, 200001 Patentee after: Guangyulaite Digital Technology (Shanghai) Co.,Ltd. Address before: Room 801, 85 Kefeng Road, Huangpu District, Guangzhou City, Guangdong Province Patentee before: Yami Technology (Guangzhou) Co.,Ltd. |