The Research On The Application Of Attribute-based Encryption In Social Networks Privacy Protection

A lot of personal data is stored on social networks and the protection measures on theusers’ personal data are inadequate. Which leads to a great deal of personal privacyinformation is leaked. The purpose of social networks is to provide the information sharing,It is an interesting challenge to provide the protection of the privacy data under theconditions of information sharing. So designing a protection of the privacy for the socialnetwork is significant on the aspects of application and theory. Attribute-basedencryption(ABE) is a”many to many” encryption mechanism. A ciphertext can bedecrypted by many keys and a key can decrypt many ciphertexts, which laid a foundationfor the application of the Attribute-based encryption in the access control system andprovided a new proposal for the protection of privacy in the social network.A further study is performed on the characteristics of the social network and thetechnology of the attribute-based encryption. Two aspects of the study on the protection ofprivacy in social networks are fine-grained access control and revocation of access rights. Inthe study of the fine-grained access control, A fine-grained access control scheme basedABE for social network with transitivity is proposed. The fine-grained access can provideselectable sharing for the privacy data, which achieves the goal that the protection of thepersonal privacy information with the condition of sharing. The transitivity of the accessright ensures the safety of sharing with the condition of the protected. Meanwhile, thesecurity of the scheme is analyzed and the feasibility of the ABE algorithm used in thescheme is studied by simulation experiments.In the study of the revocation of access rights, Since the members of the socialnetwork is dynamically changing, The revocation scheme of access rights is proposed byimproving the ABE algorithm used in the previous scheme. In the improved ABE algorithm,the revocation of access rights is achieved by revoking the key or the attributes, In thescheme the new keys or new ciphertext are not needed when the revocation of access rightsis executing. At last, the security of the scheme is analyzed, and the feasibility of theimproved algorithm is comparative studied by data analyzing obtained by the simulationexperiment.