当前位置: X-MOL 学术Wirel. Commun. Mob. Comput. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
BSSPD: A Blockchain-Based Security Sharing Scheme for Personal Data with Fine-Grained Access Control
Wireless Communications and Mobile Computing Pub Date : 2021-02-20 , DOI: 10.1155/2021/6658920
Hongmin Gao 1 , Zhaofeng Ma 1 , Shoushan Luo 1 , Yanping Xu 2 , Zheng Wu 3
Affiliation  

Privacy protection and open sharing are the core of data governance in the AI-driven era. A common data-sharing management platform is indispensable in the existing data-sharing solutions, and users upload their data to the cloud server for storage and dissemination. However, from the moment users upload the data to the server, they will lose absolute ownership of their data, and security and privacy will become a critical issue. Although data encryption and access control are considered up-and-coming technologies in protecting personal data security on the cloud server, they alleviate this problem to a certain extent. However, it still depends too much on a third-party organization’s credibility, the Cloud Service Provider (CSP). In this paper, we combined blockchain, ciphertext-policy attribute-based encryption (CP-ABE), and InterPlanetary File System (IPFS) to address this problem to propose a blockchain-based security sharing scheme for personal data named BSSPD. In this user-centric scheme, the data owner encrypts the sharing data and stores it on IPFS, which maximizes the scheme’s decentralization. The address and the decryption key of the shared data will be encrypted with CP-ABE according to the specific access policy, and the data owner uses blockchain to publish his data-related information and distribute keys for data users. Only the data user whose attributes meet the access policy can download and decrypt the data. The data owner has fine-grained access control over his data, and BSSPD supports an attribute-level revocation of a specific data user without affecting others. To further protect the data user’s privacy, the ciphertext keyword search is used when retrieving data. We analyzed the security of the BBSPD and simulated our scheme on the EOS blockchain, which proved that our scheme is feasible. Meanwhile, we provided a thorough analysis of the storage and computing overhead, which proved that BSSPD has a good performance.

中文翻译:

BSSPD:具有细粒度访问控制的基于区块链的个人数据安全共享方案

隐私保护和开放共享是AI驱动时代的数据治理的核心。在现有的数据共享解决方案中,通用的数据共享管理平台是必不可少的,并且用户将其数据上传到云服务器以进行存储和分发。但是,从用户将数据上传到服务器的那一刻起,他们将失去对数据的绝对所有权,安全性和隐私性将成为关键问题。尽管数据加密和访问控制在保护云服务器上的个人数据安全性方面被认为是新兴技术,但它们在一定程度上缓解了此问题。但是,它仍然在很大程度上取决于第三方组织的信誉,即云服务提供商(CSP)。在本文中,我们结合了区块链,基于密文策略的基于属性的加密(CP-ABE),为了解决这个问题,行星际文件系统(IPFS)提出了一种基于区块链的个人数据安全共享方案,称为BSSPD。在这种以用户为中心的方案中,数据所有者对共享数据进行加密并将其存储在IPFS上,从而最大程度地提高了方案的分散性。共享数据的地址和解密密钥将根据特定的访问策略使用CP-ABE进行加密,数据所有者使用区块链发布其与数据有关的信息并为数据用户分发密钥。只有属性符合访问策略的数据用户才能下载和解密数据。数据所有者对其数据具有细粒度的访问控制,并且BSSPD支持特定数据用户的属性级撤销,而不会影响其他用户。为了进一步保护数据用户的隐私,检索数据时使用密文关键字搜索。我们分析了BBSPD的安全性,并在EOS区块链上模拟了我们的方案,证明了该方案是可行的。同时,我们对存储和计算开销进行了透彻的分析,证明BSSPD具有良好的性能。
更新日期:2021-02-21
down
wechat
bug