Aiming at the security and privacy issues of smart grid,an access control model is proposed,which is based on CP-ABE. In order to solve the bottleneck problem between a control center and multiple semi-trusted data service managers,ciphertext data is dispersive stored in different region,and is managed by the respective service manager. Dual encryption mechanism of the attribute-based encryption and selective group key distribution protects the confidentiality of data. The research results show that ciphertext data is distributed storage, and improves data access efficiency and scalability. The data service managers carry out re-encrypted, and remote terminal unit does not participate in the distribution attributes and user revoked,thus can reduce the computational cost,communication cost and right management costs of the remote terminal unit. The model also has a flexible authorization function.%针对智能电网的安全性和隐私问题,提出一种基于CP-ABE的访问控制模型。为解决单个可信控制中心和多个半可信数据服务管理者之间的瓶颈问题,将数据存储在地域上分散的数据中心,分别由各自的数据服务管理器进行数据的访问控制管理,采用ABE和选择群钥分配的双重加密机制,保护数据机密性。研究结果表明,该模型采用不同地域分散存储密文数据,提高了数据的访问效率和可伸缩性,将重加密的任务交由数据服务管理者完成,远程终端单元不参与属性分配和用户权限撤销,减轻了远程终端单元的计算量、通信量和权限管理代价,且具有授权功能灵活的特点。
展开▼
