Author Login Editor-in-Chief Peer Review Editor Work Office Work

Computer Engineering ›› 2018, Vol. 44 ›› Issue (8): 24-29. doi: 10.19678/j.issn.1000-3428.0047251

Special Issue:

Previous Articles     Next Articles

Design of Homomorphic Cloud Platform Based on Onion Encryption Model

LI Zichen 1,2,3,YANG Wei 2,YANG Yatao 2,3,SUN Yafei 2,3,LIANG Lan 2,3   

  1. 1.College of Information Engineering,Beijing Institute of Graphic Communication,Beijing 102600,China; 2.Department of Graduate Students,Beijing Electronic Science and Technology Institute,Beijing 100070,China; 3.College of Communication Engineering,Xidian University,Xi’an 710071,China
  • Received:2017-05-18 Online:2018-08-15 Published:2018-08-15

基于洋葱加密模型的同态云平台设计

李子臣 1,2,3,杨薇 2,杨亚涛 2,3,孙亚飞 2,3,梁斓 2,3   

  1. 1.北京印刷学院 信息工程学院,北京 102600; 2.北京电子科技学院 研究生系,北京 100070; 3.西安电子科技大学 通信工程学院,西安 710071
  • 作者简介:李子臣(1965—),男,教授、博士,主研方向为云计算、密码学;杨薇(通信作者),硕士研究生;杨亚涛,副教授、博士;孙亚飞、梁斓,硕士研究生。
  • 基金资助:

    国家自然科学基金(61370188);“十三五”国家密码发展基金(MMJJ20170110)。

Abstract:

In data decryption process of cloud platform server,it is easy to cause problems of information disclosure,the database administrators spy on users’ privacy information and heavy processing tasks of client.To solve above problems,a design scheme of security private cloud platform based on homomorphic cryptography is proposed.In the private cloud platform scene meeting the demand of bank business processing,by adopting with adjustable onion encryption strategy,ciphertexts can be evaluated directly by additive homomorphism of Paillier and multiplicative homomorphism of ElGamal.Then,frequent interactions between client and server,as well as data encryption and decryption operations can be avoided.Simulation experiment and efficiency analysis results show that the proposed scheme can effectively resist the chosen plaintext attack while ensuring the operation efficiency.

Key words: homomorphic operation, onion encryption model, ciphertext database, homomorphic encryption, private cloud

摘要:

在云平台服务端数据解密过程中,容易出现信息泄露、数据库管理员窥探用户隐私信息以及客户端处理任务过重等问题。为此,提出一种基于同态密码的安全云平台设计方案。在满足银行业务处理需求的私有云平台应用场景下,采用可调整洋葱加密策略,利用Paillier加法 同态特性和ElGamal乘法同态特性直接操作密文,避免客户端与服务端频繁的交互及加解密处理。仿真实验与效率分析结果表明,该方案在保证运算效率的同时,可有效抵御选择明文攻击。

关键词: 同态运算, 洋葱加密模型, 密文数据库, 同态加密, 私有云

CLC Number: