| In the era of big data,cloud computing-based industrial applications can provide usable and convenient data access for resource-constrained smart devices.Attribute-based encryption is an indispensable technology in ensuring information security.These smart devices are expected to have more accurate and efficient searches,less decryption costs,and higher level of security.The existing attribute-based encryption scheme rarely considers the high decryption overhead caused by the huge search results or the privacy data leakage caused by the unlimited access rights of authorized users.In order to solve these problems,this paper introduces the specified time as the restriction condition in the attribute-based encryption technology,aiming at reducing the decryption cost by limiting search range or limiting the duration of secret key to prevent the leakage of private information,and focuses on the time-specified and keyword searched attribute-based encryption technology.The main results are as follows:A time-specified attribute-keyword based data publish-subscribe systems with cloud assisted is proposed.Firstly,fine-grained access policies and subscription policies are defined to implement data access control and expressive keyword search.Secondly,a specified time interval is introduced to define the decrypted data range to achieve accurate search and reduce subscriber’s decryption costs.After that,the cloud server performs the matching test algorithms and the outsourced decryption algorithm,returns the partial decryption result to reduce the subscriber decryption overhead.Finally,based on the deterministic assumption,the semantic security of the systems under the chosen keyword attacks and selectively chosen plaintext attacks are proved,In addition,estimation of the performance and experimental test manifest its efficiency.A time and attribute based dual access control with data integrity verification scheme in cloud computing applications is constructed.Firstly,the hierarchical identity based encryption technology is used to construct hierarchical time tree,which sets the valid time period and the decryptable time period for the user private key and the encrypted data respectively,and the time and attribute are used to dual control the access data to solve the privacy data leakage problem caused by the private key leakage;after that,inverted index and markel hash tree are used to design data verification tree to verify data integrity without decryption,which solves the problem of cloud server may delete or modify data while improves data retrieval efficiency.Finally,based on the deterministic assumption,it is proved that the scheme is secure in selectively chosen plaintext attacks,and the efficiency analysis shows its practicability. |
