基于同态加密的秘密共享outsourcing方案研究

196 浏览量更新于2024-08-28 收藏 1.17MB PDF 举报

Outsourcing Secret Sharing Scheme Based on Homomorphism Encryption 在密码学协议中，秘密共享（Secret Sharing）是一个重要的组件，并且有广泛的实践应用。然而，现有的秘密共享方案不能应用于计算能力弱的设备，並且无法确保公平性。为了解决这个问题，本研究提出了一个基于同态加密（Homomorphism Encryption）的外包秘密共享方案。在传统的秘密共享方案中，客户端需要执行大量的解密和验证操作，这对计算能力弱的设备来说是一个巨大的挑战。为了解决这个问题，我们提出了一个外包秘密共享方案，在这个方案中，客户端只需要执行少量的解密和验证操作，而复杂的重构计算和可验证计算可以外包给云服务提供商（Cloud Service Providers，CSP）。我们的方案基于同态加密技术，可以确保秘密共享的安全性和公平性。同态加密是一种特殊的加密技术，可以在加密数据上进行计算操作，而不需要解密原始数据。这种技术可以保护秘密共享方案中的秘密数据，并确保数据的安全性。在我们的方案中，客户端可以将秘密数据加密后上传到云服务提供商的服务器上，然后云服务提供商可以对加密数据进行计算操作，并将计算结果返回给客户端。客户端可以使用少量的解密和验证操作来验证计算结果的正确性，从而确保秘密共享的公平性。我们的方案具有以下优点： 1. 安全性：我们的方案基于同态加密技术，可以保护秘密共享中的秘密数据，并确保数据的安全性。 2. 公平性：我们的方案可以确保秘密共享的公平性，客户端可以验证计算结果的正确性，从而确保公平性。 3. 高效性：我们的方案可以将复杂的计算操作外包给云服务提供商，从而减少客户端的计算负担，提高系统的整体性能。我们的方案提供了一个基于同态加密的外包秘密共享方案，可以满足计算能力弱的设备的需求，并且确保秘密共_share的安全性和公平性。

IET Information Security

Research Article

Outsourcing secret sharing scheme based on

homomorphism encryption

ISSN 1751-8709

Received on 20th February 2017

Revised 2nd August 2017

Accepted on 13th September 2017

doi: 10.1049/iet-ifs.2017.0026

www.ietdl.org

En Zhang

1,2

, Jie Peng

, Ming Li

College of Computer and Information Engineering, Henan Normal University, Xinxiang 453007, People's Republic of China

Engineering Lab of Intelligence Business & Internet of Things of Henan Province, Xinxiang 453007, People's Republic of China

E-mail: zhangenzdrj@163.com

Abstract: Secret sharing is an important component of cryptography protocols and has a wide range of practical applications.

However, the existing secret sharing schemes cannot apply to computationally weak devices and cannot efficiently guarantee

fairness. In this study, a novel outsourcing secret sharing scheme is proposed. In the setting of outsourcing secret sharing,

clients only need a small amount of decryption and verification operations, while the expensive reconstruction computation and

verifiable computation can be outsourced to cloud service providers (CSP). The scheme does not require complex interactive

argument or zero-knowledge proof. The malicious behaviour of clients and CSP can be detected in time. Moreover, the CSP

cannot get any useful information about the secret, and it is fair for every client to obtain the secret. At the end of this study, the

authors prove the security of the proposed scheme and compare it with other secret sharing schemes.

1 Introduction

Secret sharing is an important cornerstone in modern cryptography

which has a wide range of applications, such as access control,

secure data storage, electronic auctions with private bids and so on.

In 1979, Shamir [1] and Blakley [2], respectively, proposed the (t,

n) threshold secret sharing schemes. In their schemes, a secret S is

divided into n pieces called shares, which are then distributed

among participants by the dealer. Only t or more participants can

reconstruct the secret, and any t − 1 participants cannot get any

useful information about the secret. Unfortunately, the schemes

cannot prevent the dealer and participants from cheating, and only

one secret is able to be shared at one time. In order to solve the

problem of cheating from participants and dealer, the concept of

verifiable secret sharing (VSS) was proposed by Chor et al. [3]. In

the scheme, participants can verify the consistency of shares.

Feldman [4] and Pedersen [5], respectively, proposed a non-

interactive VSS scheme. Later, in order to make multiple secrets be

shared at one time, a series of works [6–11] have been carried out

on multi-secret sharing scheme. In these schemes, multiple secrets

are able to be recovered at the same time, without changing the

shares of every participant. In the phase of secret reconstruction,

each authorised participant only needs to provide pseudo-shares.

Recently, Cramer and Damgard [12] proposed a linear secret

sharing scheme based on linear error correcting codes and linear

universal hash functions. With the application of randomised

component which binds share of every participant with all

participants’ public information, Miao et al. [13] proposed a (t, m,

n)-group oriented secret sharing scheme. Mohammad et al. [14]

proposed a dynamic and verifiable multi-secret sharing scheme

based on hermite interpolation and bilinear maps.

In the classical secret sharing scheme, every participant is either

honest or malicious. The honest participants are willing to

cooperate in the reconstruction phase. However, the malicious

participants may deviate from protocols. In 2004, combining

traditional cryptography with game theory, Halpern and Teague

[15] first proposed rational secret sharing and secure multi-party

computation (SMC). They showed that the protocols must be

multiple rounds, and the participants did not know the real secret

reconstruction round. In the scheme, participants are neither honest

nor malicious, but being rational. Subsequently, Maleka et al. [16]

proposed a rational secret sharing scheme based on repeated

games. Tian et al. [17] proposed a game-theoretic analysis for the

secret sharing scheme. Zhang and Liu [18] leveraged imperfect

information of the extensive game theory to design a rational secret

sharing scheme. Tian et al. [19] proposed a secret sharing scheme

based on Bayesian game. Zhang and Cai [20] proposed a rational

multi-secret sharing scheme under point-to-point communication

networks.

However, all the above schemes, both classic and rational secret

sharing, are not fully satisfied. On the one hand, the schemes suffer

from computational efficiency problem in reconstruction and

verification phases. Therefore, the schemes cannot apply to devices

with weak capacity of computation, such as, smart phone, tablet

PC, PDA and so on. On the other hand, the schemes cannot

efficiently achieve fairness, which guarantees that if one participant

learns the secret, the other participants do too. In traditional secret

sharing schemes, participants have no incentive to broadcast their

shares. In contrast, the rational secret sharing schemes require

running multi-round to guarantee fairness, which are rather

inefficient, especially for computationally weak devices. Recently,

smart phones are becoming popular in our daily life and more and

more people use them to store private data and pay bills. In

addition, with the rapid development of cloud computing, cloud is

not only beneficial to data storage but also to computation.

Specifically, the large number of complex computations of clients

can be outsourced to cloud service provider (CSP), so clients with

weak computing ability can enjoy unlimited computing resources.

In the recent years, many concerns have been raised regarding

security issues of the cloud computing. The authors in [21–23]

introduced the full homomorphic encryption, but the proposed

schemes usually assume a single public/private key pair. Lopez et

al. [24] introduced the concept of on-the-fly SMC under multiple

keys. However, its efficiency is far from practical, and it also needs

to run interactions among participants during the decryption phase.

Peter et al. [25] proposed an efficient outsourcing multiparty

computation scheme under multiple keys. Combining property

encryption and proxy oblivious transfer, Gordon et al. [26]

proposed a multi-client verifiable outsourcing computation with

strong security assurance. Later, Chenyutao et al. [27] proposed

cross-group secret sharing for secure cloud storage service. Atsushi

et al. [28] proposed performance evaluation on data management

approach for multiple clouds based on secret sharing. Zhang et al.

[29] proposed server-aided private set intersection based on

reputation. Unfortunately, all the existing schemes are still far from

practical for secret sharing scheme.

Nowadays, due to the rapid development of cloud computing

and the proliferation of mobile devices, outsourcing data storage

IET Inf. Secur.

下载后可阅读完整内容，剩余5页未读，立即下载

weixin_38592455

粉丝: 7
资源: 896

基于同态加密的秘密共享outsourcing方案研究

Outsourcing Hierarchical Threshold Secret Sharing Scheme Based on Reputation

Cheater-identifiable homomorphic secret sharing for outsourcing computations

A Ciphertext-Policy Attribute-Based Encryption Scheme Supporting Keyword Search Function

POSTER: Ciphertext-policy attribute-based encryption method with secure decryption key generationand outsourcing decryption of ABE ciphertexts

Accountable Outsourcing Location-Based Services With Privacy Preservation

Achieving Flexibility for ABE with Outsourcing via Proxy Re-Encryption

A Low-latency Secure Data Outsourcing Scheme for Cloud-WSN

Multi-input Functional Encryption and Its Application in Outsourcing Computation

Verifiable outsourced ciphertext-policy attribute-based encryption in cloud computing

ISO37500 Guidelines on Outsourcing

最新资源