| As an extension of cloud computing,edge computing has attracted the attention of academia and industry with its characteristics of low latency,high bandwidth,and low energy consumption.However,due to limited terminal resources and insufficient security design,the edge computing environment still faces many data security and privacy protection challenges.Among them,how to effectively control access to outsourcd data is one of the main issues.In most previous ciphertext-policy attribute-based encryption(CP-ABE)access control schemes,all public and private keys are generated by only one central authority in the system,which is not suitable for the distributed and multi-level architecture of edge computing.This thesis focus on lightweight data access control problem in edge computing assisted Io T and VANET to reduce the load of end users,and the main contributions in this thesis are listed as below:(1)Based on CP-ABE,we put forward a lightweight verifiable access control scheme with constant size ciphertext for edge computing assisted Io T.Our proposed scheme can ensure data confidentiality,multi-authority security and resist collusion attack.Besides,it is proved secure resisting chosen plaintext attack in random oracle model under the decision q-bilinear diffie-hellman exponent(q-BDHE)assumption.In most access control schemes based on CP-ABE,the cost of decryption and bilinear paring operations increases as thecomplexity of the access structure increases.Different from previous access control schemes,in the proposed scheme,the data users in edge computing can outsource the complicated computation operations in the decryption process to edge server.Therefore,the proposed scheme is fit for resource-constrained Io T devices in edge computing since it reduces the load of the data users.(2)Based on CP-ABE,we proposed a lightweight access control scheme with constant size ciphertext for edge computing assisted VANET.We propoesd a construction of attribute-based encryption with outsourcing decryption algorithm,that enables most of the computation cost to delegate to the nearest RSU without affecting privacy,which largely eliminates the computation overhead for the vehicle,that is constant and efficient regardless of the complexity of the access structure.In addition,it is proved secure resisting chosen plaintext attack under the multi-sequence of exponents Diffie-Hellman assumption.Through security and performance analysis,it shows that this scheme can not only achieve real-time and lightweight data distribution in vehicle applications,but also achieve efficient access control for encrypted data. |
PDF Full Text Request