Research On Novel Secure Data Sharing Technology Based On ACE And ABE

With the rapid development of Internet of Things technology and the deepening of its applications,data security and access control issues have emerged with new features.First,in order to resist collusion attacks,the group communication system for the Internet of Things not only needs to ensure secure communication between honest users,but also to prevent illegal communication between dishonest users in the system.Second,with the continuous expansion of the Internet of Things,the Internet of Things will generally adopt the cloud + edge + terminal architecture(collaborative cloud-edge-terminal architecture)to carry large-scale deployment of IoT applications.However,there is not much research on data security protection under this collaborative cloud-edge-terminal architecture.Third,the Internet of Things combined with distributed artificial intelligence technology to provide intelligent services will be a significant development trend.Therefore,how to realize the secure sharing and access control of users' data in such a distributed intelligent environment will be a research hotspot.This paper studies three novel secure data sharing technologies with different security semantics,and constructs secure and efficient application schemes according to specific application scenarios.The specific work is as follows:(1)For the first time,a hierarchical access control encryption(HACE)scheme based on arbitrary partially ordered set is constructed.In the cloud environment,the HACE solution ensures that legitimate users communicate and share data with each other under established access control policies,while preventing communication between dishonest users.(2)We study secure data sharing mechanism in collaborative cloud-edge-terminal environment.Taking e-health system as an example,firstly,a secure data sharing architecture based on cloud-edge-terminal collaboration is designed for e-health system.And then,combined with ciphertext-policy attribute-based encryption(CP-ABE)and Shamir's secret sharing strategy,we construct an outsourced ciphertext-policy attribute-based encryption scheme(O-CP-ABE)and apply it to the designed e-health system over cloud-edge-terminal collaboration,enabling secure,efficient and flexible data sharing.(3)The federated deep learning system is a typical architecture of the Internet of Things combined with distributed artificial intelligence technology.A secure data sharing scheme is constructed for federated deep learning by exploiting Paillier's homomorphic encryption and Shamir's secret sharing.The scheme enables multiple data owners in a federated deep learning environment to jointly train a global deep neural network without disclosing their private data.For any data owner in the system,its data can be indirectly shared with other users,and its local model can indirectly benefit from the data of other users.