A multi-keyword search over encrypted data was proposecl with file-level access authorization and data user revocation scheme through employing ciphertext-policy attribute-based encryption (CP-ABE).The scheme supports file-level access authorization in the multi-owner multi-user settings,which means that data users could only gain the authorized files encrypted by different data owners with different keys.Moreover,the scheme could achieve data user revocation.Formal security analysis shows that the proposed scheme could resist the chosen keyword attack in random oracle.Moreover,the experimental study over real-world dataset demonstrates its efficiency and feasibility in practice.%在密文策略的属性加密技术上提出一种支持文件级别的访问授权和数据用户撤销的多关键字密文查询方案.该方案在多数据拥有者多数据用户的场景下不仅支持文件级别的访问授权,即数据用户能够获取不同数据拥有者用不同密钥加密的密文,而且该方案能实现数据用户撤销.该方案在随机预言模型下是抗选择关键字攻击的,且基于实际数据集的实验结果表明方案在实际应用中是可行的、高效的.
展开▼
