Attribute-based encryption and block chain combined trusted data access control scheme

Abstract

The invention provides an attribute-based encryption and block chain combined trusted data access control scheme, which mainly comprises six participants: a data owner, a data consumer, an access control end, a block chain network, an IPFS distributed storage network and a third-party authorization server; the data owner represents a producer or owner of the data; the data consumer represents a user needing to access the data; data generated by the data owner is encrypted and stored in the IPFS; the block chain network is used for storing an address value, stored on the IPFS, of user data, a hash value of the data, an access control strategy and file identification information; the third-party authorization server is mainly used for generating and transmitting a public key, a master key and a private key of an attribute-based encryption algorithm; the access control scheme includes a data storage operation and a data access operation. According to the invention, the block chain technology and distributed storage are combined, only key information such as the data hash value, the ciphertext position hash value and the access control strategy is stored on the block chain, and the storage pressure of the block chain is relieved.

Description

technical field [0001] The present invention relates to a trusted data access control scheme, more particularly, a scheme for fine-grained data access control through the combination of attribute-based encryption and blockchain. Background technique [0002] Data storage and computing in traditional computer application systems often adopt a centralized architecture. Since these systems are independent of each other and do not interact with each other, a "data island" problem has formed. With the continuous improvement of social informatization, the value of data sharing has become increasingly prominent, and the premise of realizing data sharing is to ensure data security and credibility. Traditional centralized storage and computing architectures are vulnerable to various cyber attacks such as single point attacks, man-in-the-middle attacks, and distributed denial-of-service attacks. If these attacks happen, it will lead to data leakage and cause irreparable losses. Bloc...

AI Technical Summary

Problems solved by technology

[0004] At present, many technical literatures have proposed various blockchain-based data access control schemes, such as blockchain-based Internet of Things authentication and security schemes, attribute-based Access control schemes, etc., they can avoid single point of failure and data tampering, and to a certain extent, can achieve data access control, even fine-grained access control, but there is a blockchain storage bottleneck problem

Some technicians have also proposed blockchain storage optimization methods, such as the blockchain fragmentation storage model based on threshold secret sharing, and the blockchain storage scheme based on network coding, etc., all of which can save the storage cost of the blockchain, but They are all improvements on the basis of storing complete ledgers. The blockchain still needs to occupy a large storage space and has weak access control capabilities.

Images