| The development of the information era increases the amount of data in the Internet,it has become the focus of attention that how to publish and subscribe data more effectively in the world of tremendous amount of information.A publish-subscribe system can provide users with convenient and efficient data sharing and subscription service.However,due to the decaying infrastructure and the backward middleware service,the traditional publish-subscribe system has become increasingly unable to meet the user's growing demand for system functions as well as cannot provide quality-of-service assurance which matching its function.The emergence of cloud computing technology fundamentally alters the way people share and interact with information.Relying on its strong storage capability,data publishers can upload and share large amounts of data to the cloud platform without worrying about the shortage of storage space.Cloud computing also have a huge amount of computational resources that can provide efficient and accurate data retrieval service for data subscribers.Therefore,how to design the efficient data publish-subscribe service in the cloud computing environment has become one of the research hot spots in academia.However,the rapid development of publish-subscribe services in cloud computing environment has not only bring people surprise but also avoidable bring challenges to data security and user privacy.On one hand,the cloud server which storing data is not entirely trustworthy,it may record data,tamper with data,or leak data to the malicious third party.Therefore,the publisher needs to encrypt the data which is uploaded to the cloud server.On the other hand,the cloud server may collect and dig subscribers' subscription interest which may lead to the privacy leakage of subscribers'.Therefore,users need to encrypt their subscriptions before they were sent to the cloud server.In addition,when the cloud server received the ciphertext and the subscription interest sent by the user,it needs to match the ciphertext's access policy and the constraints of the subscription,and finally return the matching result to the corresponding subscriber.Therefore,it's particularly important to study how to design the publish-subscribe scheme which can support privacy preserving in the state of ciphertext.This thesis focuses on the security problems and efficiency problems of the data publish-subscribe service in cloud computing.The main contributions are summarized as follows:1.We propose an efficient privacy-preserving data publish-subscribe scheme based on the semi-honest cloud server model.We utilize convergent encryption technique so that the leakage of single data key does not affect the security of the remaining data in the system and this technique is suitable for encrypting large-scale data.By inserting the subscription keywords and data tags into the bloom filter,our scheme achieve a fast matching of data and subscription interests in the ciphertext state,preserve the data confidentiality and the subscriber's privacy.We also apply bloom filter tree to reduce the false-positive rate of matching results on server-side.The corresponding achievement have been accepted by the International Journal of Embedded System(EI source journal).2.We utilize the Pairing-Based Cryptography library to simulate and implement the proposed privacy-preserving data publish-subscribe scheme under the Linux operating system.We also analyze security and performance in detail of the proposed scheme.By contrast with Yang et al.scheme,we mainly analyze the computational overhead on the publisher side and the subscriber side.The simulation result shows that our scheme is more efficient than Yang et al.scheme and more applicable for resource-constrained user scenarios. |
PDF Full Text Request