CN107342900A

CN107342900A - A kind of allocation of computer device of signal communication bag

Info

Publication number: CN107342900A
Application number: CN201710562999.2A
Authority: CN
Inventors: 陈焕英; 王宛平; 崔冬; 孙沛硕; 王红雷; 王京
Original assignee: Individual
Current assignee: Xue Geli
Priority date: 2017-07-11
Filing date: 2017-07-11
Publication date: 2017-11-10

Abstract

The invention belongs to computer realm, disclose a kind of allocation of computer device of signal communication bag, including transmitting terminal, computer, communication domain path control deivce, encryption chip, router, receiving terminal, wireless receiving module, deciphering chip, processing module, wireless sending module.It is connected to by computer between source terminal and purpose terminal, computer leads the mapping value into packet with communication port by the communication domain path control deivce inside manipulating, when communication domain route executor relies on packet to carry out configuration network node, data transfer is controlled in diversification；It can also implement to encrypt, ensure the security of data.

Description

A kind of allocation of computer device of signal communication bag

Technical field

The invention belongs to computer realm, more particularly to a kind of allocation of computer device of signal communication bag.

Background technology

The transmission of signal communication bag often simply by source terminal and purpose terminal, at most comes plus router or interchanger Carry out, such transmission is single in allotment and the unusual mechanization of scheduling aspect, the function of transmission.

In summary, the problem of prior art is present be：Transmit in allotment and the unusual mechanization of scheduling aspect, transmission Function is single.

The content of the invention

The problem of existing for prior art, the invention provides a kind of allocation of computer device of signal communication bag,

The present invention is achieved in that a kind of allocation of computer device of signal communication bag, the calculating of the signal communication bag Machine configurator includes：Transmitting terminal, computer, router, receiving terminal；

Transmitting terminal is connected by wireless network with computer, and computer is connected by netting twine with router, and router passes through Wireless network and the connection received；

The wireless network user attribute private key generation：

Attribute authority (aa) mechanism unit using system public key PK and main private key MK as input, the user terminal decrypted as needed Attribute list L=(L₁, L₂..., L_n), wherein, n is the number of attribute in system, generates attribute private key SK_LAnd it is sent to user Terminal；Specifically include：

The first step, attribute authority (aa) mechanism unit is in Z_pIn randomly select r, r '₁, r '₂..., r '_nWith r "₁, r "₂..., r "_n, Calculate

Second step, ifAttribute authority (aa) mechanism unit calculatesOtherwise Attribute authority (aa) mechanism unit calculatesWhereinIth attribute w in expression system_iN_iIn individual value k_iIndividual value,Represent attribute w_iNegative value；

3rd step, attribute authority (aa) mechanism unit calculateMake D_i=(D_{I, 1}, D_{I, 2}）；

4th step, attribute authority (aa) mechanism unit calculateMake F_i=(F_{I, 1}, F_{I, 2})；

5th step, attribute authority (aa) mechanism unit make SK_L=(L, D₀, { D_i, F_i}_1≤i≤n)；

The computer includes communication domain path control deivce, encryption chip；

The router includes：Wireless sending module；Specific side of the router for the verification operation of encryption data Method is：

Step 1: the existence of search key：When data user only receives the A of Cloud Server return, use first The public key of data owner is verified to A；IfThen pass through checking；Operation is decrypted to C to obtain Take symmetric key sk₁, decryption A obtains Bloom filter BF, if BFverify (w)=0, it is meant that is not present and uses on Cloud Server The keyword that family is searched for, conversely, rejecting returning result；

Step 2: the correctness of search key：When data user receives { W, F, A, B, C }, W/f is calculated₁WithSuch as FruitIllustrate correctly, conversely, explanation is error result；

Step 3: the integrality of the data file address comprising keyword w：When data user demonstrates the correct of keyword After property, then B is verified, ifThen sk is obtained by decrypting C₁, and then obtain number of targets According to file；

The encryption method of the router includes：

Trusted authority center operation RSA Algorithm is that Cloud Server and data owner generate public private key pair：{(n₁,e₁),d₁} { (n₂,e₂),d₂}；Data owner ensures the integrality of data file by digital signature；With the public key pair of Cloud Server Ciphertext keyword is re-encrypted to prevent the offline guessing attack of external attacker, when data owner uses SYM_Enc() encrypts Algorithm returns to the address of encryption file, is designated as ID { F to being contracted out to Cloud Server, server after data file encryption_i, so wrap The data file of the w containing keyword is represented by ID_w=ID { F₁}||ID{F₂}…||ID{F_i}；Specifically include：

Step 1: initialization (1^l)：Trusted authority center selects Bilinear map：e:G×G→G_T, G and G_TIt is that rank is following for p Ring group, p are the primitive element of l bit longs, select the hash function under random oracle

H₁:{0,1}^*→G；H₂:{0,1}^*→Z_pIt is one-way Hash function, selects a, b, c ← Z_p, g ← G,

Pm=(H₁,H₂,e,g,p,g^a,g^b,g^c,G,G_T),

Mk=(a, b, c)

Then k independent hash function H' are chosen₁,…,H'_k, for the Bloom filter BF of the construction m bits of m bits Data owner is sent to, is that data owner and Cloud Server generate public private key pair { (n₁,e₁),d₁And { (n₂,e₂),d₂}；

Step 2: key generation (mk, T)：Trusted authority center performs Share (T, ac) algorithm, accesses tree T each Leaf node can all obtain the part about secret ac and share q_v(0), to each leaf node v ∈ lvs (T), t ← Z is chosen_p, CalculateAnd B_v=g^t, note private key sk=(T, A_v,B_v)|v∈lvs(T))；

Step 3: the encryption to keyword and file address:(w, atts, ID (w)) data owner passes through trusted authority The hash function generation Bloom filter that center is sent, BF ← BFGen ({ H'₁,…,H'_k},{w₁,…,w_l), to containing key Word w data file address IDs_wAnd Bloom filter, SYM_Enc() AES is encrypted, symmetric key sk₁：

BF_Enc=SYM (BF), (ID_w)_Enc=SYM (ID_w)；

User data owner is to BF_Enc(ID_w)_EncSigned：

To sk₁It is encrypted with ABE () AES：C=ABE (sk₁)；

After search terminates, attribute meets that the validated user can decryption C of access strategy obtains sk₁, and then decrypt and obtain Take file destination；

Select r₁,r₂←Z_p, calculateF=(f₁,f₂) wherein To each at_j∈ Atts, calculateW is encrypted to obtain with the public key of serverIt can so remember that ciphertext keyword is：

Cph=(Atts, W', W_E,W₀,W_j,F,A,B,C)；

Step 4: generation search password (sk, w):Select s ← Z_p, each leaf node v ∈ lvs (T) are calculatedSearching for password istok₂=g^cs, with the public key of server to tok₂Added It is close：Remember tk=(tok₁,(tok₂)_Enc,T,(A'_v,B'_v)|v∈lvs(T))；

Step 5: search (tk, cph)：Server chooses property set S to meet to search in password the visit specified from cph Tree is asked, if such set S is not present, returns to 0；Conversely, to each at_j∈ S, calculate

With reference to (T, E_v| att (v) ∈ S), CalculateAnd thenServer decrypts W with the private key of oneself_E, (tok₂)_EncObtain W and tok₂If e (W', tok₁)E_root=e (W, tok₂), return to { W, F, A, B, C } and give user；Otherwise, only Return to A；

Step 6: checking { W, F, A, B, C }：After data user receives the search result of Cloud Server return, tested Card operation；

The receiving terminal includes：Wireless receiving module, deciphering chip, processing module；

Further, the optimal transmission power computational methods of the wireless receiving module include:CSU node is are when it is transmitted Gap t_iIt is interior that idle channel can be accessed by the way of TDMA, and can be with speed in downlinkTransmit data, speed's Expression formula is：

Wherein ω_iRepresent the Lagrange multiplier associated with CSU power；

Optimal transmission power assignment problem is formulated as equation group：

Wherein N_CSURepresent the set of CSU nodes.

Advantages of the present invention and good effect are：It is connected to by computer between source terminal and purpose terminal, computer Mapping value into packet with communication port is led by the communication domain path control deivce inside manipulating, when communication domain route executor Configuration network node is carried out by packet, data transfer is controlled in diversification；It can also implement to encrypt, ensure the safety of data Property.

Brief description of the drawings

Fig. 1 is the structural representation of the allocation of computer device of signal communication bag provided in an embodiment of the present invention.

In figure：1st, transmitting terminal；2nd, computer；3rd, communication domain path control deivce；4th, encryption chip；5th, router；6th, receive Terminal；7th, wireless receiving module；8th, deciphering chip；9th, processing module；10th, wireless sending module.

Embodiment

In order to make the purpose , technical scheme and advantage of the present invention be clearer, with reference to embodiments, to the present invention It is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not used to Limit the present invention.

The application principle of the present invention is explained in detail below in conjunction with the accompanying drawings.

As shown in figure 1, the allocation of computer device of signal communication bag provided in an embodiment of the present invention includes transmitting terminal 1, calculated Machine 2, communication domain path control deivce 3, encryption chip 4, router 5, receiving terminal 6, wireless receiving module 7, deciphering chip 8, place Manage module 9, wireless sending module 10.

The transmitting terminal 1 is by wire transmission signal to computer 2；

The computer 2 includes communication domain path control deivce 3, encryption chip 4.

The communication domain path control deivce 3 by inside manipulating leads the mapping value into packet with communication port, communication Domain path control deivce 3 carries out configuration network node by packet, then by the coded signal of encryption chip 4, then by signal root According to different network nodes and then router 5 is controlled, is transferred to receiving terminal 6；

The receiving terminal 6 includes wireless receiving module 7, deciphering chip 8, processing module 9；

The receiving router of wireless receiving module 7 is transmitted through the information come；

The deciphering chip 8 is used for decrypted signal；

The processing module 9 is used to, by signal transacting, use.

The wireless network user attribute private key generation：

3rd step, attribute authority (aa) mechanism unit calculateMake D_i=(D_{I, 1}, D_{I, 2})；

The encryption method of the router includes：

Pm=(H₁,H₂,e,g,p,g^a,g^b,g^c,G,G_T),

Mk=(a, b, c)

BF_Enc=SYM (BF), (ID_w)_Enc=SYM (ID_w)；

User data owner is to BF_Enc(ID_w)_EncSigned：

To sk₁It is encrypted with ABE () AES：C=ABE (sk₁)；

Cph=(Atts, W', W_E,W₀,W_j,F,A,B,C)；

Step 4: generation search password (sk, w):Select s ← Z_p, each leaf node v ∈ lvs (T) are calculatedSearching for password istok₂=g^cs, with the public key of server to tok₂It is encrypted：Remember tk=(tok₁,(tok₂)_Enc,T,(A'_v,B'_v)|v∈lvs(T))；

Step 6: checking { W, F, A, B, C }：After data user receives the search result of Cloud Server return, tested Card operation.

The optimal transmission power computational methods of the wireless receiving module include:CSU node is are in its transmission time slot t_iInterior meeting Idle channel is accessed by the way of TDMA, and can be with speed in downlinkTransmit data, speedExpression formula be：

Wherein ω_iRepresent the Lagrange multiplier associated with CSU power；

Wherein N_CSURepresent the set of CSU nodes.

The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all essences in the present invention All any modification, equivalent and improvement made within refreshing and principle etc., should be included in the scope of the protection.

Claims

A kind of 1. allocation of computer device of signal communication bag, it is characterised in that the allocation of computer device bag of the signal communication bag Include：Transmitting terminal, computer, router, receiving terminal；

Transmitting terminal is connected by wireless network with computer, and computer is connected by netting twine with router, and router passes through wireless Network and the connection received；

The wireless network user attribute private key generation：

Attribute authority (aa) mechanism unit is using system public key PK and main private key MK as input, the attribute for the user terminal decrypted as needed List L=(L₁, L₂..., L_n), wherein, n is the number of attribute in system, generates attribute private key SK_LAnd it is sent to user terminal； Specifically include：

The first step, attribute authority (aa) mechanism unit is in Z_pIn randomly select r, r '₁, r '₂..., r '_nWith r "₁, r "₂..., r "_n, calculate

Second step, ifAttribute authority (aa) mechanism unit calculatesOtherwiseAttribute Weight Prestige mechanism unit calculatesWhereinIth attribute w in expression system_iN_iKth in individual value_iIndividual value,Represent attribute w_iNegative value；

3rd step, attribute authority (aa) mechanism unit calculateMake D_i=(D_{I, 1}, D_{I, 2})；

4th step, attribute authority (aa) mechanism unit calculateMake F_i=(F_{I, 1}, F_{I, 2})；

5th step, attribute authority (aa) mechanism unit make SK_L=(L, D₀, { D_i, F_i}_1≤i≤n)；

The computer includes communication domain path control deivce, encryption chip；

The router includes：Wireless sending module；The router is for the specific method of the verification operation of encryption data：

Step 1: the existence of search key：When data user only receives the A of Cloud Server return, data are used first The public key of owner is verified to A；IfThen pass through checking；C is decrypted operation acquisition pair Claim key sk₁, decryption A obtains Bloom filter BF, if BFverify (w)=0, it is meant that user institute is not present on Cloud Server The keyword of search, conversely, rejecting returning result；

Step 2: the correctness of search key：When data user receives { W, F, A, B, C }, W/f is calculated₁WithIfIllustrate correctly, conversely, explanation is error result；

Step 3: the integrality of the data file address comprising keyword w：When data user demonstrates the correctness of keyword Afterwards, then B is verified, ifThen sk is obtained by decrypting C₁, and then obtain target data File；

The encryption method of the router includes：

Trusted authority center operation RSA Algorithm is that Cloud Server and data owner generate public private key pair：{(n₁,e₁),d₁And {(n₂,e₂),d₂}；Data owner ensures the integrality of data file by digital signature；With the public key of Cloud Server to close Literary keyword is re-encrypted to prevent the offline guessing attack of external attacker, when data owner uses SYM_Enc() encryption is calculated Method returns to the address of encryption file, is designated as ID { F to being contracted out to Cloud Server, server after data file encryption_i, so include Keyword w data file is represented by ID_w=ID { F₁}||ID{F₂}…||ID{F_i}；Specifically include：

Step 1: initialization (1^l)：Trusted authority center selects Bilinear map：e:G×G→G_T, G and G_TIt is the circulation that rank is p Group, p are the primitive element of l bit longs, select the hash function under random oracle

H₁:{0,1}^*→G；H₂:{0,1}^*→Z_pIt is one-way Hash function, selects a, b, c ← Z_p, g ← G,

Pm=(H₁,H₂,e,g,p,g^a,g^b,g^c,G,G_T),

Mk=(a, b, c)

Then k independent hash function H ' are chosen₁,…,H'_k, for the Bloom filter BF transmissions of the construction m bits of m bits It is that data owner and Cloud Server generate public private key pair { (n to data owner₁,e₁),d₁And { (n₂,e₂),d₂}；

Step 2: key generation (mk, T)：Trusted authority center performs Share (T, ac) algorithm, accesses tree T each leaf Node can all obtain the part about secret ac and share q_v(0), to each leaf node v ∈ lvs (T), t ← Z is chosen_p, calculateAnd B_v=g^t, note private key sk=(T, A_v,B_v)|v∈lvs(T))；

Step 3: the encryption to keyword and file address:(w, atts, ID (w)) data owner passes through trusted authority center The hash function generation Bloom filter of transmission, BF ← BFGen ({ H '₁,…,H'_k},{w₁,…,w_l), to containing keyword w Data file address ID_wAnd Bloom filter, SYM_Enc() AES is encrypted, symmetric key sk₁：

BF_Enc=SYM (BF), (ID_w)_Enc=SYM (ID_w)；

User data owner is to BF_Enc(ID_w)_EncSigned：

To sk₁It is encrypted with ABE () AES：C=ABE (sk₁)；

After search terminates, attribute meets that the validated user can decryption C of access strategy obtains sk₁, and then decrypt and obtain target File；

Select r₁,r₂←Z_p, calculateF=(f₁,f₂) wherein To each at_j∈ Atts, calculateW is encrypted to obtain with the public key of serverIt can so remember that ciphertext keyword is：

Cph=(Atts, W', W_E,W₀,W_j,F,A,B,C)；

Step 4: generation search password (sk, w):Select s ← Z_p, each leaf node v ∈ lvs (T) are calculated Searching for password istok₂=g^cs, with the public key of server to tok₂It is encrypted： Remember tk=(tok₁,(tok₂)_Enc,T,(A′_v,B′_v)|v∈lvs(T))；

Step 5: search (tk, cph)：Server chooses property set S to meet to search in password the access tree specified from cph, If such set S is not present, 0 is returned；Conversely, to each at_j∈ S, calculate

With reference to (T, E_v| att (v) ∈ S), meter CalculateAnd thenServer decrypts W with the private key of oneself_E, (tok₂)_EncObtain W and tok₂If e (W', tok₁)E_root=e (W, tok₂), return to { W, F, A, B, C } and give user；Otherwise, only Return to A；

Step 6: checking { W, F, A, B, C }：After data user receives the search result of Cloud Server return, checking behaviour is carried out Make；

The receiving terminal includes：Wireless receiving module, deciphering chip, processing module.
2. the allocation of computer device of signal communication bag as claimed in claim 1, it is characterised in that the wireless receiving module Optimal transmission power computational methods include:CSU node is are in its transmission time slot t_iIt is interior that idle letter can be accessed by the way of TDMA Road, and can be with speed in downlinkTransmit data, speedExpression formula be：

<mrow> <mtable> <mtr> <mtd> <mrow> <msubsup> <mi>v</mi> <mi>i</mi> <mi>C</mi> </msubsup> <mo>=</mo> <munder> <mi>&Sigma;</mi> <mrow> <mi>j</mi> <mo>&Element;</mo> <msub> <mi>L</mi> <mi>C</mi> </msub> </mrow> </munder> <msub> <mi>t</mi> <mi>i</mi> </msub> <msub> <mi>log</mi> <mn>2</mn> </msub> <mrow> <mo>(</mo> <mrow> <msubsup> <mi>H</mi> <mrow> <mi>C</mi> <mo>,</mo> <mi>i</mi> </mrow> <mi>j</mi> </msubsup> <mo>&CenterDot;</mo> <msup> <mrow> <mo>(</mo> <mrow> <munderover> <mi>&Sigma;</mi> <mrow> <mi>b</mi> <mo>=</mo> <mn>1</mn> </mrow> <mi>m</mi> </munderover> <msubsup> <mi>X</mi> <mrow> <mi>i</mi> <mo>,</mo> <mi>b</mi> </mrow> <mi>j</mi> </msubsup> </mrow> <mo>)</mo> </mrow> <mrow> <mo>-</mo> <mn>1</mn> </mrow> </msup> </mrow> <mo>)</mo> </mrow> </mrow> </mtd> </mtr> <mtr> <mtd> <mrow> <mo>&times;</mo> <mrow> <mo>(</mo> <mrow> <msub> <mi>&omega;</mi> <mi>i</mi> </msub> <mi>I</mi> <mo>+</mo> <msub> <mi>&lambda;</mi> <mrow> <mi>i</mi> <mo>,</mo> <mi>m</mi> </mrow> </msub> <munder> <mi>&Sigma;</mi> <mrow> <mi>j</mi> <mo>&Element;</mo> <msub> <mi>L</mi> <mi>C</mi> </msub> </mrow> </munder> <munderover> <mi>&Sigma;</mi> <mrow> <mi>b</mi> <mo>=</mo> <mn>1</mn> </mrow> <mi>m</mi> </munderover> <msubsup> <mi>X</mi> <mrow> <mi>i</mi> <mo>,</mo> <mi>b</mi> </mrow> <mi>j</mi> </msubsup> </mrow> <mo>)</mo> </mrow> </mrow> </mtd> </mtr> </mtable> <mo>;</mo> </mrow>

Wherein ω_iRepresent the Lagrange multiplier associated with CSU power；

Optimal transmission power assignment problem is formulated as equation group：

<mrow> <mtable> <mtr> <mtd> <munder> <mi>max</mi> <mrow> <mi>i</mi> <mo>&Element;</mo> <msub> <mi>N</mi> <mrow> <mi>C</mi> <mi>S</mi> <mi>U</mi> </mrow> </msub> </mrow> </munder> </mtd> <mtd> <msubsup> <mi>v</mi> <mi>i</mi> <mi>C</mi> </msubsup> </mtd> </mtr> <mtr> <mtd> <mrow> <mi>s</mi> <mo>.</mo> <mi>t</mi> <mrow> <mo>(</mo> <mrow> <mi>F</mi> <mn>1</mn> </mrow> <mo>)</mo> </mrow> <mo>:</mo> </mrow> </mtd> <mtd> <mrow> <munder> <mi>&Sigma;</mi> <mrow> <mi>j</mi> <mo>&Element;</mo> <msub> <mi>L</mi> <mi>C</mi> </msub> </mrow> </munder> <mo>|</mo> <msubsup> <mi>H</mi> <mrow> <mi>C</mi> <mo>,</mo> <mi>i</mi> </mrow> <mi>j</mi> </msubsup> <mo>|</mo> <mo>&le;</mo> <msubsup> <mi>P</mi> <mi>max</mi> <mrow> <mi>C</mi> <mo>,</mo> <mi>i</mi> </mrow> </msubsup> </mrow> </mtd> </mtr> <mtr> <mtd> <mrow> <mrow> <mo>(</mo> <mrow> <mi>F</mi> <mn>2</mn> </mrow> <mo>)</mo> </mrow> <mo>:</mo> </mrow> </mtd> <mtd> <mrow> <msubsup> <mi>I</mi> <mi>m</mi> <mrow> <mi>C</mi> <mi>S</mi> <mi>U</mi> </mrow> </msubsup> <mo>&le;</mo> <munder> <mi>&Sigma;</mi> <mrow> <mi>j</mi> <mo>&Element;</mo> <msub> <mi>L</mi> <mi>C</mi> </msub> </mrow> </munder> <mo>|</mo> <msubsup> <mi>H</mi> <mrow> <mi>C</mi> <mo>,</mo> <mi>i</mi> </mrow> <mi>j</mi> </msubsup> <mo>|</mo> <mo>&CenterDot;</mo> <munderover> <mi>&Sigma;</mi> <mrow> <mi>b</mi> <mo>=</mo> <mn>1</mn> </mrow> <mi>m</mi> </munderover> <mo>|</mo> <msubsup> <mi>X</mi> <mrow> <mi>i</mi> <mo>,</mo> <mi>b</mi> </mrow> <mi>j</mi> </msubsup> <mo>|</mo> </mrow> </mtd> </mtr> </mtable> <mo>;</mo> </mrow>

Wherein N_CSURepresent the set of CSU nodes.