Research On Access Control Mechanism In Wireless Sensor Networks Based On Attribute-Based Encryption

With the rapid development of network technology,the Internet of Things has been paid more and more attention and research.As the perceptual layer of the Internet of Things,wireless sensor networks(WSN)have been widely used in civilian and military domains.Considering the sensitivity and security of node data in WSN,it is necessary to design a security mechanism that can control access rights to protect these data,so that node data can only be accessed by authorized users and prevent unauthorized access to the data.On the one hand,due to the complexity of WSN,the traditional access control mechanisms cannot be applied effectively.On the other hand,most existing cryptosystems cannot be applied directly because of the limited resource of nodes.In recent years,domestic and foreign scholars have made extensive research on the attribute-based access control mechanism and obtained a lot of research results.However,problems such as the length of keys,the length of ciphertexts,the efficiency of encryption/decryption and the scale of attributes still need to be further studied.Therefore,based on the research of the existing attribute-based encryption schemes and the attribute-based access control model,this paper proposes two attribute-based encryption access control schemes for WSN.The main contents of this paper include:(1)Considering the problem that the secret share held by the participants in the most current multi-secret sharing schemes is linear with the number of shared secrets,we design a computational secure multi-secret sharing scheme(MSSS).The scheme is based on the Shamir secret sharing scheme,the dealer generates secret share and broadcasts parameters by using random polynomials,and the participants who satisfy the threshold number can use Lagrange interpolation to recover the secret values.The analysis shows that the participant has a constant length secret share in the proposed multi-secret sharing scheme,and the scheme is secure under the random oracle model.(2)Considering the problem that the length of ciphertexts and the efficiency of encryption/decryption in the current attribute-based encryption schemes,we design a ciphertext-policy attribute-based encryption(CP-ABE)access control scheme.In the scheme,we adopt multi-secret sharing technology to implement key generation algorithm,the sensor node encrypts the plaintext data under the corresponding threshold access structure,in the decryption phase,restores the secret corresponding to the access structure firstly and then performs the decryption operation.The security analysis,performance analysis and simulation experiments of the scheme show that the scheme is security and suitable for WSN.(3)Considering the problem that the surge of sensing data and the large-scale attributes of user in WSN,we propose a cloud-assisted CP-ABE access control scheme.The scheme adopts multiple attribute authorities to manage user attributes together,and introduces the principal disjunctive access structure to optimize the traditional access structure,which effectively improves the distribution efficiency of attribute keys,system security and the efficiency of decryption.According to the security analysis,performance analysis and experimental simulation of the scheme,the applicability of the scheme in WSN is verified.