HPKI認証の特長を考慮した在宅医療介護システムにおける患者情報の開示先制御
全文
(2) Vol.2017-CSEC-79 No.3 2017/12/4. ใॲཧֶձڀݚใࠂ IPSJ SIG Technical Report. ؒͷใڞ༗ʹ ICT Λ͢༻׆Δ͜ͱͰνʔϜέΞ͕ԁ ͱͳΓɼҩྍɾհޢͷ࣭ͷ্ޮԽ͕ظ͞ΕΔ͜ͱ. ද 1 hcRole ଐੑͱͯ͠ࡌهՄೳͰ͋Δࢿ໊֨ [3] ࢿ໊֨ʢࠃՈࢿ֨ʣ. આ໌. ʞMedical Doctorʟ. ҩࢣ. ʞDentistʟ. ࣃՊҩࢣ. ʞPharmacistʟ. ༀࡎࢣ. ʞMedical Technologistʟ. ྟচࢣٕࠪݕ. ʞRadiological Technologistʟ. ྍ์ࣹઢٕࢣ. ʞRegistered Nurseʟ. ࢣޢ. ϝϯόʔʹݶʹີݫఆ͞Εͳ͚ΕͳΒͳ͍ɽ·ͨɼࠓޙ. ʞPublic Health Nurseʟ. อ݈ࢣ. ΑΓଟ͘ͷݸਓใ͕αʔόʹిࢠԽอଘ͞ΕΔ͜ͱΛ. ʞMidwifeʟ. ॿ࢈ࢣ. ఆ͢Δͱɼ֎෦͔Βͷ߈ܸʹΑΔαʔό͔Βͷใ࿙Ӯͷ. ʞPhysical Therapistʟ. ཧֶྍ๏࢜. ݥةੑ͕͋Δɽ͜Εʹରͯ͠ɼݸਓใͷ҉߸ԽอʹΑ. ʞOccupational Therapistʟ. ࡞ྍۀ๏࢜. Γɼ࿙Ӯ࣌ʹͪʹͦͷ༰͕໌Β͔ʹͳΔϦεΫΛݮ. ʞOrthoptistʟ. ࢹೳ܇࿅࢜. ʞSpeech Therapistʟ. ޠݴௌ֮࢜. ʞDental Technicianʟ. ࣃՊٕ࢜. ʞNational Registered ʞDietitianʟ. ཧӫཆ࢜. ʞCertified Social Workerʟ. ࣾձࢱ࢜. ʞCertified Care Workerʟ. հޢࢱ࢜. ใͷվ᜵Λ͙ͨΊʹɼઐ༻ͷެ։جݤ൫ʢHealthcare. ʞEmergency Medical Technicianʟ. ໋࢜ٹٸٹ. Public Key Infrastructure: HPKIʣ͕උ͞Ε͍ͯΔɽฏ. ʞPsychiatric Social Workerʟ. ਫ਼ਆอ݈ࢱ࢜. 21 ʹʮอ݈ҩྍࢱ PKI ೝূہೝূ༻ʢਓʣ. ʞClinical Engineerʟ. ྟচֶٕ࢜. ʞMassage and Finger Pressure. ͋ΜຎϚοαʔδ. ɹ Practitionerʟ. ࢦѹࢣ. ʞAcupuncturistʟ. Γࢣ. ͕ࣔ͞Ε͍ͯΔɽ ͔͠͠ɼࡏҩྍհޢ࿈ܞͷͨΊͷใڞ༗γεςϜͰ ऀױͷҩྍใͱ͍͏ػඍͳใ [2] Λ͡Ίɼऀױͷ ੜ׆ঢ়گՈʹؔ͢ΔใͳͲͷϓϥΠόγʔੑͷߴ͍ ݸਓใΛѻ͏ɽ͕ͨͬͯ͠ɼͦͷ։ࣔઌέΞνʔϜͷ. ͢Δ͜ͱ͕Ͱ͖Δɽ͢ͳΘͪɼࡏҩྍհޢ࿈ܞγεςϜ ʹ͓͍ͯɼ҉߸Խอ͞Εͨݸਓใͷ։ࣔઌ੍͕ޚඞ ཁͱͳΔɽ ·ͨɼอ݈ҩྍࢱͰɼར༻ऀͷͳΓ͢·͠. ূ໌ॻϙϦγʯ[3] ͷࡦఆ͕ߦΘΕɼೝূ༻ͷ HPKI ূ໌ ॻͷൃߦ͕ߦ͑Δ͜ͱͱͳͬͨɽ ݸਓใͷͳີݫ։ࣔઌ੍ޚΛߟ͑Δ্Ͱɼ։ࣔઌͷ. ʞMoxibustion Practitionerʟ. ͖Ύ͏ࢣ. ਖ਼ੑΛ֬ೝ͢ΔೝূΛ߹Θͤͯߟ͑Δඞཁ͕͋Δɽ͔͠. ʞDental Hygienistʟ. ࣃՊӴੜ࢜. ͠ɼؔ࿈Ͱڀݚͦͷʹ͍ͭͯߟྀ͞Ε͍ͯͳ͍ [4]ɽͦ. ʞProsthetics & Orthcticʟ. ٛࢶ۩࢜. ͜ͰɼຊߘͰ HPKI ʹΑΔೝূʹΑͬͯ୲อ͞ΕΔใ. ʞArtificial Limb Fitterʟ. ॊಓ෮ࢣ. ʹ͍ͯͮجɼ҉߸Խ͞Εͨݸਓใͷ։ࣔઌ੍ޚΛߦ͏ํ. ʞClinical Laboratory Technicianʟ. Ӵੜࢣٕࠪݕ. ࣜΛ 2 ͭఏҊ͢Δɽ·ͣɼදతͳެ։͋Ͱ߸҉ݤΔ RSA ҉߸ʹΑͬͯߏ͢Δํࣜͱɼ࣍ʹଐੑϕʔε҉߸ͷҰछ. ηΩϡΞʹཧ͢Δɽ·ͨɼPKG Keygen ʹ͓͍ͯϚ. Ͱ͋Δ҉߸จϙϦγʔଐੑϕʔε҉߸ʢCiphertext-Policy. ελൿີݤΛ༻͍ͯϢʔβͷଐੑू߹ʹରԠͨ͠ൿີݤΛ. Attribute-Based Encryption: CP-ABEʣʹΑͬͯߏ͢. ੜ͠ൃߦ͢Δɽ·ͨɼEncrypto ʹ͓͍ͯ҉߸จʹຒΊ. ΔํࣜΛఏҊ͢Δɽ·ͨɼ҉߸Խ͓Αͼ෮߸ॲཧ࣌ؒͷଌ. ࠐΉΞΫηεߏɼ৬छॴଐͷଐੑΛཧࣜͷͰܗ. ఆʹΑΓɼ2 ํࣜΛධՁ͢Δɽ. ද͞ݱΕΔɽྫ͑ɼ“ਓࣄ෦ and ʢ෦ or ՝ʣ” Ͱ͋. 2. ҉߸จϙϦγʔଐੑϕʔε҉߸ʢCP-ABEʣ CP-ABE Bethencourt[5] ΒʹΑͬͯఏҊ͞Ε͓ͯΓɼ ҎԼͷ 4 ͭͷΞϧΰϦζϜ͔ΒͳΔɽ. Setup ηΩϡϦςΟύϥϝʔλ λ Λೖྗͱͯ͠ɼϚελ ެ։ ݤP K ͱϚελൿີ ݤM K Λग़ྗ͢Δɽ. Encrypto Ϛελެ։ ݤP K ͱฏจ M ɼ·ͨΞΫηε. Δɽ͜ΕΛຬͨ͢ଐੑू߹ʹରԠͨ͠ൿີݤͷΈɼ҉߸จ Λ෮߸ՄೳͱͳΔɽ. 3. HPKI ʹΑΔೝূ HPKI ʹΑΔೝূͷ֓ཁΛઆ໌͢Δɽͳ͓ɼ ࡏݱHPKI ʹ͓͍ͯॺ໊༻ূ໌ॻϙϦγͱೝূ༻ূ໌ॻϙϦγ͕ࡦ ఆ͞Ε͍ͯΔ͕ɼ͜͜Ͱ୯ʹূ໌ॻͱهड़ͨ͠߹ɼೝ. ߏ P Λೖྗͱͯ͠ɼ҉߸จ CT Λग़ྗ͢Δɽ. ূ༻ূ໌ॻΛࢦ͢͜ͱͱ͢ΔɽHPKI ʹΑΔిࢠೝূͷ. Keygen Ϛελൿີ ݤM K ͱϢʔβͷଐੑू߹ S Λೖ. ΈࣗମɼPKI ೝূͱಉ༷Ͱ͋Γɼೝূ༻ͷൿີެͱݤ. ྗͱͯ͠ɼൿີ ݤSK Λग़ྗ͢Δɽ. ։ॻ໌ূݤΛ༻͍ΔɽൿີʹݤΑΔॺ໊ͷʹূݕΑΓຊਓ. Decrypto Ϛελެ։ ݤP K ͱൿີ ݤSK ɼ҉߸จ CT. ੑΛ֬ೝ͠ɼެ։ॻ໌ূݤͷʹূݕΑΓ࣮ࡏੑΛ֬ೝ͢Δ. Λೖྗͱͯ͠ɼSK ͷଐੑू߹ S ͕ CT ͷΞΫηεߏ. ͜ͱͰূ໌ॻॴ༗ऀΛೝূ͢Δɽͦͯ͠ɼγεςϜΞϓ. P Λຬͨ͢߹ɼฏจ M Λग़ྗ͢Δɽ. ϦέʔγϣϯͰূ໌ॻʹ͞ࡌهΕͨใʹ͍ͯͮجՃೖ. PKG(Private Key Generater) ͱݺΕΔ৴པ͞Εͨؔػ. ऀΛࣝผ͠ɼ༩͑ΒΕͨݶݖΛ֬ೝ͢Δ͜ͱͰɼใͷ. ͕ Setup ʹ͓͍ͯϚελެ։ͱݤϚελൿີݤͷੜ͠ɼ. ΞΫηεʹର͢ΔڐՄΛߦ͏ [6]ɽ. ͦͷ͏ͪϚελެ։ݤΛϢʔβʹ͠ɼϚελൿີݤΛ. c 2017 Information Processing Society of Japan . ূ໌ॻͷجຊྖҬʹ͞ࡌهΕΔ Subject(Ճೖऀ໊) ͷ. 2.
(3) Vol.2017-CSEC-79 No.3 2017/12/4. ใॲཧֶձڀݚใࠂ IPSJ SIG Technical Report ද 2 ࣬ױɾ৬छผใൃ৴݅ͷׂ߹ʢ%ʣ[7] ͕Μ. ೝ. ৺࣬ױ. ഏ࣬ױ. ࠎં. ҩࢣ. 39.4. 14.5. 17.4. 13.3. 11.4. ࣃՊҩࢣ. 0.0. 5.1. 6.7. 15.6. 9.3. ༀࡎࢣ. 6.4. 0.2. 1.2. 0.0. 5.5. ࢣޢ. 41.8. 18.1. 21.4. 37.8. 18.1. հࢧޢԉઐһ. 5.8. 16.1. 17.4. 33.3. 26.2. ཧֶྍ๏࢜. 5.5. 4.2. 15.9. 0.0. 8.4. ࣃՊӴੜ࢜. 0.3. 3.2. 7.0. 0.0. 15.2. հޢ৬. 0.9. 38.6. 13.0. 0.0. 5.9. ✀ูẖ䛾 䜹䝔䝂䝷䜲䝈. ᝈ⪅y䛾 ಶேሗ. 䠄ϭ䠅䜹䝔䝂䝸ẖ 䛾^ ᬯྕ. 䜹䝔䝂䝸. 䠄ϯ䠅ᬯྕ䛥 䜜䛯ಶே ሗ͕䜹䝔䝂䝸 䜻䞊䛾᱁⣡. ᬯྕ῭䜏 䜹䝔䝂䝸. 䜹䝔䝂䝸. 䜹䝔䝂䝸 䜻䞊. 䠄Ϯ䠅Z^ ᬯྕ. ᬯྕ῭䜏 䜹䝔䝂䝸. ᝈ⪅ሗ 䝃䞊䝞. 䜹䝔䝂䝸䜻䞊 䝃䞊䝞. 䜹䝔䝂䝸. ͙. PP ࣬ױ PP PP ৬छ PP. 䜹䝔䝂䝸. 㛤♧チྍ䛩䜛 ་⒪ㆤᚑ⪅ 䛾බ㛤㘽. බ㛤㘽 䝃䞊䝞. ਤ 1 ݸਓใͷ҉߸ԽʢRSA ํࣜʣ. γϦΞϧ൪߸ʹɼՃೖऀʹҰҙͳ൪߸ΛؚΉ͜ͱ͕Ͱ͖. ߸Խ͢Δɽ·ͨɼ։ࣔઌ୯Ґʹެ։߸҉ݤͷݤΛੜ͠ɼ. Δɽ͜ͷ߹ɼ͜ͷγϦΞϧ൪߸ʹΑͬͯɼՃೖऀΛҰҙ. ͦͷʹݤΑͬͯΧςΰϦΩʔͷૹɼཧΛߦ͏͜ͱͰɼ. ʹࣝผ͢Δ͜ͱ͕Ͱ͖Δɽ. ݸਓใΛΧςΰϦຖʹ։ࣔઌ੍ޚΛߦ͏ɽ͜ΕΒͷखॱ. ·ͨɼ֦ுྖҬʹ hcRole ଐੑͱ͍͏ ISO 17090 Ͱن. ɼऀױओಋܕͷ։ࣔઌ੍ؔ͢ʹޚΔ[ ڀݚ10] ʹ͓͚Δ҉. ఆ͞ΕΔࠃՈࢿ֨ʢද 1ʣҩྍؔػͷཧऀͷࢿ֨. ߸Խอ͞Εͨใͷ։ࣔઌ੍ޚΛࢀߟʹ͍ͯ͠Δɽຊݚ. ใ͕͞ࡌهΕΔ [3]ɽ͜ͷ hcRole ଐੑʹΑΓՃೖऀͷࠃ. Ͱڀɼ։ࣔઌ୯Ґʹੜ͢Δ͚͓ʹݤΔެ։ʹ߸҉ݤ. Ոࢿ֨ใΛ֬ೝͰ͖Δ͜ͱ HPKI ೝূ༻ূ໌ॻͷಛ. දతͰ͋Δ RSA Λར༻͢ΔํࣜͱɼCP-ABE Λར༻͢Δ. ͷͻͱͭͰ͋Δɽ. ํࣜΛఏҊ͢Δɽͳ͓ɼҎ߱ɼຊߘͰ͜ͷ 2 ํࣜΛͦΕ. 4. ࡏҩྍհޢ࿈͚͓ʹܞΔใڞ༗ จ[ ݙ7] Ͱɼࡏʹطҩྍͱհޢͷҩྍհ͕ऀࣄैޢ. ͧΕ RSA ํࣜͱ CP-ABE ํࣜͱද͢هΔɽ. 5.2 RSA ํࣜ. ICT ʹΑΓใڞ༗Λ͍ͯ͠ΔઌਐҬͰަΘ͞Εͨจ. RSA ํࣜͰɼ͋Β͔͡Ί։ࣔઌ୯Ґʹ RSA ެ։ݤϖ. ষɾ୯ޠΛௐࠪੳ͍ͯ͠Δɽௐࠪରσʔλɼର. ΞΛੜ͢Δɽੜͨ͠ RSA ެ։ݤϖΞͷ͏ͪɼެ։ݤ. ҬͷऀױຖʹνʔϜԽ͞Εͨҩྍհ͕ऀࣄैޢɼ177 ਓͷ. ެ։ݤαʔόͰɼൿີݤൿີݤαʔόͰอ͢Δɽ. ަʹࡍ࣮͍ͯͭʹऀױΘ͞Εͨ 1 ؒͷจষσʔλ 6342. ͜͜ͰɼRSA ެ։ݤϖΞΛੜ͢Δରʹؔͯ͠ɼHPKI. ݅Ͱ͋Δɽද 2 ʹɼछྨͷ࣬ױʮ͕Μʯ ʮೝʯ ʮ৺࣬ױʯ. ʹΑΔೝূʹΑͬͯ୲อ͞ΕΔใͷར༻Λߟྀ͢Δͱɼ. ʮഏ࣬ױʯ ʮࠎંʯͷऀױผʹɼަΘ͞Εͨจষͷ૯ʹର. ҩྍհऀࣄैޢ୯Ґͷ߹ʹՃ͑ɼhcRole ଐੑͷར༻ʹΑ. ͢Δ֤৬छͷใൃ৴݅ͷׂ߹ (%) Λࣔ͢ɽʮ͕Μʯͷ. Γ৬छ୯Ґͷ߹͕ߟ͑ΒΕΔɽ͔͠͠ɼ্Ͱड़ͨΑ͏. ʹऀױରͯ͠ɼ( ࢣޢ41.8%) ͱҩࢣ (39.4%) Ͱશମͷ. ʹɼࡏҩྍհͰޢɼऀױͷ࣬ױͷछྨʹΑͬͯɼ৬छ. 81.2%ΛΊ͍ͯΔҰํɼ ʮഏ࣬ױʯͷʹऀױରͯ͠ɼ. ຖʹऀױͷؔΘΓํ͕ҟͳ͍ͬͯΔ͜ͱ͕໌Β͔ʹͳͬ. ( ࢣޢ37.8%) ͱհࢧޢԉઐһ (33.3%) Ͱશମͷ 71.1%Λ. ͍ͯΔͨΊɼ৬छ୯Ґͷ։ࣔઌ੍͍͓ͯʹޚɼ֤ҩྍհ. Ί͍ͯΔɽ͜ͷΑ͏ʹऀױͷ࣬ױͷछྨʹΑΓɼ৬छຖ. ऀࣄैޢΛ୲͍ͯ͠Δͱऀױඥ͚ɼͦͷ্Ͱ৬छ୯Ґ. ͷؔΘΓํҟͳΔ͜ͱ͕͔͍ͬͯΔɽ·ͨɼհࢧޢԉ. ͷ։ࣔઌ੍ޚΛߦ͏͜ͱ͕దͰ͋Δͱߟ͑ΒΕΔɽΑͬ. ઐһʹ͍ͭͯɼݱঢ়ͰɼhcRole ଐੑʢද 1ʣʹ·ؚΕ. ͯɼ৬छ୯Ґʹ RSA ެ։ݤϖΞΛੜ͢Δࡍɼऀױຖ. ͍ͯͳ͍ɽ͔͠͠ɼ͜͜Ͱ͔ΔΑ͏ʹɼհࢧޢԉઐһ. ͷ৬छ୯Ґʹੜ͢Δඞཁ͕͋Δɽ͕ͨͬͯ͠ɼRSA ެ։. Ͱ͍࣍ʹࢣޢใൃ৴͍ͯ͠ΔɽΑͬͯɼຊߘͰɼ. ݤϖΞΛҩྍैࣄऀ୯Ґʹੜ͢Δ߹ɼͦͷ૯ҩྍ. hcRole ଐੑʹհࢧޢԉઐһΛՃߟྀ͢Δɽ. հऀࣄैޢͷ૯ͱͳΓɼ৬छ୯Ґʹੜ͢Δ߹ɼͦͷ. 5. ఏҊํࣜ 5.1 ֓ཁ. ૯ऀױͷ × ؔʹऀױΘΔ৬छͱͳΔɽ͜ͷ 2 ͭ ͷ߹ʹ͓͍ͯੜ͞ΕΔ RSA ެ։ݤϖΞͷ૯ʹ͍ͭ ͯɼ౷ܭσʔλʹࢉ͖ͮجग़ͨ͠ͱ͜Ζɼҩྍհऀࣄैޢ. ఏҊํࣜͰɼऀױͷݸਓใࣗମͷ҉߸Խɼެ։ݤ. ୯Ґʹੜ͢Δ߹ͷํ͕ͦͷ͕খ͍͜͞ͱ͕͔ͬͯ. ҉߸ʹൺॲཧ͕ߴͳڞ௨͍ߦͰ߸҉ݤɼAES Λར༻͢. ͍Δ [11]ɽΑͬͯɼݤཧίετͷ͔؍Βɼ͜͜Ͱҩ. Δɽ·ͨɼްੜ࿑ಇলʹΑΔҩྍใγεςϜʹؔ͢ΔΨ. ྍհऀࣄैޢ୯Ґʹ RSA ެ։ݤϖΞͱ ID Λੜ͠ɼͦ. ΠυϥΠϯ [8] ʹଇΓɼ։ࣔ͢ΔݸਓใͷൣғΛ੍͢ޚ. ΕΒΛඥ͚ͯ։ࣔઌ੍ޚΛߦ͏ɽҎԼʹɼ͜ͷํࣜʹ͓. ΔͨΊɼऀױͷݸਓใΛجຊଐੑՈɼҩྍɼհ[ ޢ9]. ͚Δݸਓใͷ҉߸Խͱ෮߸ɼ·ͨ։ࣔઌͷՃɾআʹ. ͳͲͷछผຖʹΧςΰϥΠζ͢Δɽͦͯ͠ɼΧςΰϦຖʹ. ͍ͭͯઆ໌͢Δɽ. ݻ༗ͷΧςΰϦΩʔʢAES ݤʣΛੜ͠ɼͦΕʹΑͬͯ҉. ݸਓใͷ҉߸Խ. c 2017 Information Processing Society of Japan . 3.
(4) Vol.2017-CSEC-79 No.3 2017/12/4. ใॲཧֶձڀݚใࠂ IPSJ SIG Technical Report 䠄ϭ䠅,W</䛻䜘䜚 ་⒪ㆤᚑ⪅䜢 㟁Ꮚㄆド. ,W</䜹䞊䝗. ㄆド⏝ ド᫂᭩. ,W</ㄆド 䝃䞊䝞. ㄆド⏝ ⛎ᐦ㘽. 䠄Ϯ䠅ㄆド䛥䜜䛯་⒪ ㆤᚑ⪅䛻⣣䛔 䛯⛎ᐦ㘽䛾ྲྀ䜚ฟ䛧. ་⒪ㆤ ᚑ⪅㘽 䝃䞊䝞. 䠄ϭ䠅,W</䛻䜘䜚 ་⒪ㆤᚑ⪅䜢 㟁Ꮚㄆド. ་⒪ㆤᚑ⪅z䛻 ⣣䛡䜙䜜䛯⛎ᐦ㘽. 䜹䝔䝂䝸䜻䞊 䝃䞊䝞. 䠄3䠅ᬯྕ῭䜏 䛾䜹䝔䝂䝸䜻䞊 䛸ಶேሗ䛾 ྲྀ䜚ฟ䛧. 䠄4䠅䜹䝔䝂䝸 䜻䞊䛾RSA ྕ 䞉䞉䞉. ᬯྕ῭䜏䜹䝔䝂䝸䜻䞊. ㄆド⏝ ド᫂᭩. ,W</ㄆド 䝃䞊䝞. ་⒪ㆤᚑ⪅z. 䜹䝔䝂䝸䜻䞊. ,W</䜹䞊䝗. ་⒪ㆤ ᚑ⪅㘽 䝃䞊䝞. ་⒪ㆤᚑ⪅z䛻 ⣣䛡䜙䜜䛯⛎ᐦ㘽 䠄3䠅ᬯྕ῭䜏䛾 䜹䝔䝂䝸䜻䞊䛾ྲྀ䜚 ฟ䛧. 䜹䝔䝂䝸䜻䞊 䝃䞊䝞. ᬯྕ῭䜏 ಶேሗ. 䠄5䠅ಶேሗ 䛾AES ྕ. ་⒪ㆤᚑ⪅z. 䠄4䠅䜹䝔䝂䝸 䜻䞊䛾RSA ྕ. බ㛤㘽䝃䞊䝞. 㛤♧ඛ䛻㏣ຍ䛩䜛 ་⒪ㆤᚑ⪅ 䛾බ㛤㘽. 䠄5䠅RSA ᬯྕ ᬯྕ῭䜏 䜹䝔䝂䝸䜻䞊. 䜹䝔䝂䝸䜻䞊. 䠄6䠅ᬯྕ䛥䜜䛯䜹䝔䝂䝸䜻䞊䛾᱁⣡. 䞉䞉䞉. ᝈ⪅ሗ 䝃䞊䝞. ㄆド⏝ ⛎ᐦ㘽. 䠄Ϯ䠅ㄆド䛥䜜䛯་⒪ ㆤᚑ⪅䛻⣣䛔 䛯⛎ᐦ㘽䛾ྲྀ䜚ฟ䛧. ᬯྕ῭䜏䜹䝔䝂䝸䜻䞊. ಶேሗ. ਤ 2 ݸਓใͷ෮߸ʢRSA ํࣜʣ. ਤ 3 ։ࣔઌͷՃʢRSA ํࣜʣ. ʹΑͬͯ҉߸Խ͞Ε͍ͯΔݸਓใΛͦΕͧΕɼ. ऀױͷݸਓใΛ҉߸Խ͢Δखॱਤ 1 ͷΑ͏ʹͳ. ΧςΰϦΩʔαʔόͱݸਓใαʔό͔ΒऔΓ. Δɽͳ͓ɼਤ 1 ɼ͋Δ ऀױX ͷݸਓใͷҰͭͷΧ. ग़͢. ςΰϦ A ͷ҉߸ԽखॱΛ͍ࣔͯ͠Δɽ. ( 4 ) ൿີͰݤΧςΰϦΩʔΛ RSA ෮߸͢Δ. ( 1 ) छผຖʹΧςΰϥΠζ͞ΕͨݸਓใΛΧςΰϦ. ( 5 ) ։ࣔઌͱͯ͠Ճ͍ͨ͠ҩྍհऀࣄैޢͷ ID ʹ. ຖʹੜͨ͠ΧςΰϦΩʔͰ AES ҉߸Խ͢Δ. ( 2 ) ։ࣔڐՄ͢Δҩྍհऀࣄैޢͷެ։ݤΛެ։ݤ αʔό͔ΒऔΓग़͠ɼͦͷެ։ͰݤΧςΰϦΩʔ Λ RSA ҉߸Խ͢Δ. ( 3 ) ҉߸Խ͞ΕͨɼݸਓใͱΧςΰϦΩʔΛͦΕͧ Εͷαʔόʹ֨ೲ͢Δ ݸਓใͷ෮߸ ҩྍհ ͕ऀࣄैޢHPKI ʹΑΔೝূΛͯܦɼऀױͷݸ ਓใΛ෮߸͢Δखॱਤ 2 ͷΑ͏ʹͳΔɽͳ͓ɼਤ. 2 ɼ͋Δҩྍैࣄऀ Y ͕ݸਓใΛ෮߸͢ΔखॱΛ. ඥ͍ͨެ։ݤΛެ։ݤαʔό͔ΒऔΓग़͠ɼͦ ͷެ։ͰݤΧςΰϦΩʔΛ RSA ҉߸Խ͢Δ. ( 6 ) ҉߸Խͨ͠ΧςΰϦΩʔΛΧςΰϦΩʔαʔόʹ ֨ೲ͢Δ ·ͨɼʹط։ࣔઌͱͯ͠Ճ͞Ε͍ͯΔҩྍհࣄैޢ ऀΛ։ࣔઌ͔Βআ͢Δ߹ʹɼͦͷ ID ʹඥ͍ ͨެ։ʹݤΑͬͯ҉߸Խ͞Ε͍ͯΔΧςΰϦΩʔΛΧ ςΰϦΩʔαʔό͔Βআ͢Δ͚ͩͰΑ͍.. 5.2.1 RSA ํࣜͷܽ ࡂ࣌ऀױͷ༰ଶͷٸม࣌ͳͲʹɼීஈͦͷऀױ. ͍ࣔͯ͠Δɽ. ʹؔΘ͍ͬͯͳ͍έΞνʔϜ֎ͷҩྍհͯͬ͋Ͱऀࣄैޢ. ( 1 ) HPKI ʹΑΓҩྍհऀࣄैޢΛిࢠೝূ͢Δ. ɼ͍ͪૣͦ͘ͷऀױͷใΛѲ͠࠷దͳରԠΛ͢Δඞ. ( 2 ) ҩྍհݤऀࣄैޢαʔό͔Βɼೝূ͞Εͨҩྍհ. ཁ͕͋ΔɽͦͷͨΊɼऀױͷঢ়ʹگԠͨ͡ݸਓใͷ։ࣔ. ऀࣄैޢͷ ID ʹඥ͚ΒΕͨൿີݤΛऔΓग़͢. ઌ੍͕ޚॏཁͰ͋Δ [12]ɽhcRole ଐੑΛ։ࣔઌ੍ʹޚར. ( 3 ) औΓग़ͨ͠ൿີʹݤରԠ͢Δެ։ʹݤΑͬͯ҉߸. ༻͢Δ͜ͱՃೖऀΛҰҙʹಛఆ͢Δඞཁ͕ͳ͍ͨΊɼۓ. Խ͞Ε͍ͯΔΧςΰϦΩʔͱɼͦͷΧςΰϦΩʔ. ͚͓ʹ࣌ٸΔઐࢿ֨Λ࣋ͭՃೖऀͷݸਓใͷ։ࣔ. ʹΑͬͯ҉߸Խ͞Ε͍ͯΔݸਓใΛͦΕͧΕɼ. ڐՄͷར༻໘ʹ༗༻Ͱ͋Δ [6]ɽ͔͠͠ɼRSA ํࣜͰ. ΧςΰϦΩʔαʔόͱݸਓใαʔό͔ΒऔΓ. ɼҩྍհऀࣄैޢ͋Β͔͡Ίࣗʹඥ͚ΒΕͨެ։. ग़͢. ʹݤΑͬͯ҉߸Խͨ͠ใ͔͠෮߸Ͱ͖ͳ͍ͨΊɼ͜ͷΑ. ( 4 ) ൿີͰݤΧςΰϦΩʔΛ RSA ෮߸͢Δ. ͏ͳ HPKI ͷಛΛ͔ͨ͠׆։ࣔઌ੍͍ͳ͍͖ͯͰ͕ޚɽ. ( 5 ) ΧςΰϦΩʔͰݸਓใΛ AES ෮߸͢Δ. ·ͨɼҩྍհऀࣄैޢຖʹੜͨ͠ RSA ެ։ݤϖΞʹ͓. ։ࣔઌͷՃɾআ ऀױͷݸਓใͷ։ࣔઌͷՃͷखॱਤ 3 ͷΑ͏ʹ. ͚ΔൿີݤηΩϡΞʹཧ͞Εͳ͚ΕͳΒͳ͘ɼγε ςϜΛӡ༻্͍ͯ͘͠Ͱߟྀ͖͢ίετͱͳΔɽ. ͳΔɽਤ 3 ɼ͋Δҩྍհ ऀࣄैޢY ͕ݸਓใͷҰ ͭͷΧςΰϦ A ͷ։ࣔઌΛՃ͢ΔखॱΛ͍ࣔͯ͠ Δɽͳ͓ɼ։ࣔઌͷՃʹ͍ͭͯɼʹط։ࣔڐՄ͞. 5.3 CP-ABE ํࣜ CP-ABE ํࣜͰɼ͋Β͔͡Ί֤ҩྍհ ʹऀࣄैޢID. Ε͍ͯΔͷ͕ߦ͏͜ͱͱ͢Δɽ. Λੜ͓ͯ͘͠ɽͦͯ͠ɼΧςΰϦΩʔΛ CP-ABE Ͱ҉. ( 1 ) HPKI ʹΑΓҩྍհऀࣄैޢΛిࢠೝূ͢Δ. ߸Խ͢Δɽྫ͑ɼ։͍ࣔͨ͠ҩྍհ ͕ऀࣄैޢ2 ਓͱ͠ɼ. ( 2 ) ҩྍհݤऀࣄैޢαʔό͔Βɼೝূ͞Εͨҩྍհ. ͦΕͧΕͷ ID ͕ 330001ɼ330054 Ͱ͋Δͱ͢Δɽͦͷ. ऀࣄैޢͷ ID ʹඥ͚ΒΕͨൿີݤΛऔΓग़͢. ߹ɼ҉߸จʹຒΊࠐΉ෮߸ϙϦγΛ “(ID =330001) or (ID. ( 3 ) औΓग़ͨ͠ൿີʹݤରԠ͢Δެ։ʹݤΑͬͯ҉߸. =330054)” ͱ͍͏Α͏ʹ ID Λ OR Ͱ݁߹͢ΔهͰܗड़͢. Խ͞Ε͍ͯΔΧςΰϦΩʔͱɼͦͷΧςΰϦΩʔ. Δɽ·ͨɼγεςϜͰऀױͷ࣌ٸۓঢ়ଶΛԿΒ͔ͷଐੑ. c 2017 Information Processing Society of Japan . 4.
(5) Vol.2017-CSEC-79 No.3 2017/12/4. ใॲཧֶձڀݚใࠂ IPSJ SIG Technical Report 䠄ϭ䠅䜹䝔䝂䝸 ẖ䛾^ᬯ ྕ. ✀ูẖ䛾 䜹䝔䝂䝷䜲䝈. ᝈ⪅y䛾 ಶேሗ. 䜹䝔䝂䝸. ;ŝĚсϯϯϬϬϬϭͿŽƌ͙ 䠄ϯ䠅ᬯྕ䛥 䜜䛯ಶே ሗ͕䜹䝔䝂䝸 䜻䞊䛾᱁⣡. ᬯྕ῭䜏 䜹䝔䝂䝸. 䜹䝔䝂䝸. 䜹䝔䝂䝸 䜻䞊. 䠄Ϯ䠅WͲ ᬯྕ. ᬯྕ῭䜏 䜹䝔䝂䝸䜻䞊. ᝈ⪅ሗ 䝃䞊䝞. 䝬䝇䝍බ㛤㘽. ㄆド⏝ ド᫂᭩. ,W</ㄆド 䝃䞊䝞. 䠄Ϯ䠅ㄆド䛥䜜䛯་⒪ ㆤᚑ⪅䛻ᑐ䛩䜛 ᒓᛶ䜻䞊䛾⏕ᡂ. ͙. බ㛤㘽 䝃䞊䝞. ਤ 4 ݸਓใͷ҉߸ԽʢCP-ABE ํࣜʣ. ་ᖌ. DĞĚŝĐĂůͺŽĐƚŽƌ 䠄4䠅䜹䝔䝂䝸 䜻䞊䛾CPABE ྕ. ་⒪ㆤᚑ⪅z 䛾ᒓᛶ䜻䞊. ྕ䝫䝸䝅. 䜹䝔䝂䝸䜻䞊 䝃䞊䝞. ㄆド⏝ ⛎ᐦ㘽. ᒓᛶ䠖;ŝĚсϯϯϬϬϬϭͿ. W<'. 䜹䝔䝂䝸. 䜹䝔䝂䝸. ,W</䜹䞊䝗. 䠄ϭ䠅,W</䛻䜘䜚 ་⒪ㆤᚑ⪅䜢 㟁Ꮚㄆド. ྕ䝫䝸䝅. ;ŝĚсϯϯϬϬϬϭͿŽƌ͙ 䜹䝔䝂䝸䜻䞊 䝃䞊䝞. 䞉䞉䞉. 䠄3䠅ᬯྕ῭䜏 䛾䜹䝔䝂䝸䜻䞊 䛸ಶேሗ䛾 ྲྀ䜚ฟ䛧. ᬯྕ῭䜏䜹䝔䝂䝸䜻䞊. 䜹䝔䝂䝸䜻䞊. 䞉䞉䞉. ᝈ⪅ሗ 䝃䞊䝞. Ͱද͢͜ͱ͕Ͱ͖ɼ͜ΕΛ emergency ͱදͨ͠ͱ͢Δɽͦ. ᬯྕ῭䜏 ಶேሗ. 䠄5䠅ಶேሗ 䛾AES ྕ. ಶேሗ. ਤ 5 ݸਓใͷ෮߸ʢCP-ABE ํࣜʣ. ͷ߹ɼhcRole ଐੑΛར༻͠ɼྫ͑ɼ“emergency and 䠄ϭ䠅,W</䛻䜘䜚 ་⒪ㆤᚑ⪅䜢 㟁Ꮚㄆド. Medical Doctor” Λ OR ݁߹͢Δ͜ͱͰɼ։ࣔڐՄ͞Εͯ ͍ͳ͍ҩࢣͰ͋ͬͯɼʹ࣌ٸۓҩࢣͷࠃՈࢿ֨Λ࣋ͭ. ㄆド⏝ ド᫂᭩. ,W</ㄆド 䝃䞊䝞. 䠄Ϯ䠅ㄆド䛥䜜䛯་⒪ ㆤᚑ⪅䛻ᑐ䛩䜛 ᒓᛶ䜻䞊䛾⏕ᡂ. ͷʹใΛ։ࣔՄೳͱ͢Δ༻࣌ٸۓͷ෮߸ϙϦγΛه ड़͢Δ͜ͱ͕Ͱ͖Δɽ. W<'. ·ͨɼҩྍհ ͕ऀࣄैޢHPKI ʹΑͬͯೝূ͞Εͨ ߹ɼͦͷ ID ͱূ໌ॻͷ hcRole ଐੑΛଐੑͱͯ͠ຒ Ίࠐ·ΕͨൿີݤΛ PKG ͕ੜ͢ΔɽͦͷൿີʹݤΑͬ ͯɼରԠ͍ͯ͠Δଐੑू߹͕ຬͨ͢෮߸ϙϦγ͕ຒΊࠐ· Ε͍ͯΔΧςΰϦΩʔΛ෮߸͢Δ͜ͱ͕Ͱ͖Δɽ·ͨɼҩ ྍհ͕ऀࣄैޢγεςϜ͔ΒϩάΞτͨ͠ࡍʹൿີݤΛ আ͢Δ͜ͱͰɼൿີݤΛཧ͢Δඞཁ͕ͳ͘ͳΔɽ ҎԼʹɼ͜ͷํࣜʹ͓͚Δݸਓใͷ҉߸Խͱ෮߸ɼ· ͨ։ࣔઌͷՃɾআʹ͍ͭͯઆ໌͢Δɽͳ͓ɼҎԼʹࣔ ֤͢खॱʹ͓͍ͯɼRSA ํࣜͱಉ༷Ͱ͋Δ෦ʹؔͯ͠. ,W</䜹䞊䝗. 䠄3䠅ᬯྕ῭䜏䛾 䜹䝔䝂䝸䜻䞊䛾ྲྀ 䜚ฟ䛧 䜹䝔䝂䝸䜻䞊 䝃䞊䝞. ྕ䝫䝸䝅. ;ŝĚсϯϯϬϬϬϭͿ. ㄆド⏝ ⛎ᐦ㘽. ་⒪ㆤᚑ⪅z. ᒓᛶ䠖;ŝĚсϯϯϬϬϬϭͿ. DĞĚŝĐĂůͺŽĐƚŽƌ. ་⒪ㆤᚑ⪅z 䛾ᒓᛶ䜻䞊. 䠄4䠅䜹䝔䝂䝸 䜻䞊䛾AES ྕ. බ㛤㘽䝃䞊䝞. Whͺ<z 䠄5䠅WͲ ᬯྕ. ᬯྕ῭䜏 䜹䝔䝂䝸䜻䞊. 䜹䝔䝂䝸䜻䞊. 䠄6䠅ᬯྕ䛥䜜䛯䜹䝔䝂䝸䜻䞊䛾᱁⣡ ྕ䝫䝸䝅. ㏣ຍྕ䝫䝸䝅. ;ŝĚсϯϯϬϬϬϭͿŽƌ;ŝĚсϯϯϬϬϬϮͿŽƌ ;ŝĚсϯϯϬϬϬϯͿ͙. ྕ䝫䝸䝅䞊䛾᭦᪂ ῭䜏䜹䝔䝂䝸䜻䞊. ਤ 6 ։ࣔઌͷՃʢCP-ABE ํࣜʣ. ෮߸͢Δ. ( 5 ) RSA ํࣜͱಉ༷ ։ࣔઌͷՃɼআ. “RSA ํࣜͱಉ༷” ͱ͢Δɽ. ऀױͷݸਓใͷ։ࣔઌͷՃͷखॱਤ 6 ͷΑ͏ʹ. ݸਓใͷ҉߸Խ. ͳΔɽਤ 6 ɼ͋Δҩࢣ Z ͕ݸਓใͷҰͭͷΧςΰ. ऀױͷݸਓใΛ҉߸Խ͢Δखॱਤ 4 ͷΑ͏ʹͳ. Ϧ A ͷ։ࣔઌΛՃ͢ΔखॱΛ͍ࣔͯ͠Δɽͳ͓ɼ։. Δɽͳ͓ɼਤ 4 ɼ͋Δ ऀױX ͷݸਓใͷҰͭͷΧ. ࣔઌͷՃʹ͍ͭͯɼʹط։ࣔڐՄ͞Ε͍ͯΔͷ. ςΰϦ A ͷ҉߸ԽखॱΛ͍ࣔͯ͠Δɽ. ͕ߦ͏͜ͱͱ͢Δɽ. ( 1 ) RSA ํࣜͱಉ༷. ( 1 ) RSA ํࣜͱಉ༷. ( 2 ) Ϛελެ։ݤΛެ։ݤαʔό͔ΒऔΓग़͠ɼ։. ( 2 ) PKG ͕ೝূ͞Εͨҩྍհऀࣄैޢͷ ID ͱূ໌. ࣔઌڐՄ͢Δҩྍհऀࣄैޢͷ ID Λ OR ݁߹͠. ॻͷ hcRole ଐੑʹରԠͨ͠ൿີݤΛੜ͢Δ. ͨ෮߸ϙϦγͰΧςΰϦΩʔΛ CP-ABE ҉߸Խ. ( 3 ) RSA ํࣜͱಉ༷. ͢Δ. ( 4 )ʢ̎ʣͰੜͨ͠ൿີͰݤΧςΰϦΩʔΛ CP-ABE. ( 3 ) RSA ํࣜͱಉ༷ ݸਓใͷ෮߸. ෮߸͢Δ. ( 5 ) Ϛελެ։ݤΛެ։ݤαʔό͔ΒऔΓग़͠ɼ։ࣔ. ҩྍհ ͕ऀࣄैޢHPKI ʹΑΔೝূΛͯܦɼऀױͷݸ. ઌͱͯ͠Ճ͍ͨ͠ҩྍհऀࣄैޢͷ ID Λ OR. ਓใΛ෮߸͢Δखॱਤ 5 ͷΑ͏ʹͳΔɽͳ͓ɼਤ. ݁߹ʹՃͯ͠෮߸ϙϦγΛߋ৽͠ɼΧςΰϦ. 5 ɼ͋Δҩࢣ Z ͕ݸਓใΛ෮߸͢ΔखॱΛࣔͯ͠. ΩʔΛ CP-ABE ҉߸Խ͢Δ. ͍Δɽ. ( 6 ) RSA ํࣜͱಉ༷. ( 1 ) RSA ํࣜͱಉ༷. ·ͨɼʹط։ࣔڐՄ͞Ε͍ͯΔҩྍհऀࣄैޢΛ։ࣔ. ( 2 ) PKG ͕ೝূ͞Εͨҩྍհऀࣄैޢͷ ID ͱূ໌. ઌ͔Βআ͢Δ߹ɼ ʢ̑ʣʹ͓͍ͯɼͦͷҩྍհޢ. ॻͷ hcRole ଐੑʹରԠͨ͠ൿີݤΛੜ͢Δ. ैࣄऀͷ ID ͷ OR ݁߹Λআͯ͠෮߸ϙϦγΛߋ৽. ( 3 ) RSA ํࣜͱಉ༷. ͠ɼΧςΰϦΩʔΛ CP-ABE ҉߸Խ͢Δɽ. ( 4 )ʢ̎ʣͰੜͨ͠ൿີͰݤΧςΰϦΩʔΛ CP-ABE. c 2017 Information Processing Society of Japan . 5.
(6) Vol.2017-CSEC-79 No.3 2017/12/4. ใॲཧֶձڀݚใࠂ IPSJ SIG Technical Report ද 3 ඪ४తͳڞ༗ใ [9]. ऀױଐੑ. WͲ᪉ᘧ. த߲. খ߲. . . େ. த. খ. 13. 32. ɹ0ɹ. ɹ0ɹ. ɹ 32 ɹ. ॅډɾՈ. 6. 23. ɹ0ɹ. ɹ0ɹ. ɹ 23 ɹ. ҩྍ. 16. 59. ɹ0ɹ. ɹ 29 ɹ. ɹ 30 ɹ. հޢɾੜ׆. 9. 71. ɹ0ɹ. ɹ 71 ɹ. ɹ0ɹ. ྍɾέΞ. 8. 51. 22. ɹ 29 ɹ. ɹ0ɹ. Z^᪉ᘧ. Ϭ͘ϭϱ. มԽසຖͷখ߲. ฎ⌮㛫䠄⛊䠅. େ໊߲. Ϭ͘ϭϮϱ Ϭ͘ϭ Ϭ͘Ϭϳϱ Ϭ͘Ϭϱ Ϭ͘ϬϮϱ Ϭ Ϭ. ϱ. ϭϬ. ϭϱ. ϮϬ. 㛤♧チྍ䛩䜛ேᩘ䠄WͲ䛻䛚䛡䜛KZ⤖ྜ䛾ᒓᛶᩘ 䛚䜘䜃Z^ 䛻䛚䛡䜛ฎ⌮ᅇᩘ䠅. 6. RSA ํࣜͱ CP-ABE ํࣜͷॲཧ࣌ؒͷ ଌఆ. ਤ 7 1 ΧςΰϦ҉߸Խॲཧ࣌ؒ WͲ᪉ᘧ. ఏҊํࣜͰɼҰൠతͳใڞ༗γεςϜʹཁ͢Δॲཧ ཧ͕࣌ؒڐ༰ൣғͰ͋Δ͔Ͳ͏͔Λ֬ೝ͢Δҝʹ֤ํࣜ ʹ͓͚Δݸਓใͷ҉߸Խͱ෮߸ͷखॱʹཁ͢Δॲཧͷ࣌ ؒΛଌఆͨ͠ɽ͜ΕΒͷॲཧɼΫϥΠΞϯτͷΘΓʹ ԋࢉαʔό͕࣮ߦ͢Δ͜ͱͱ͠ɼଌఆʹɼOS ͕ Ubuntu. ฎ⌮㛫䠄⛊䠅. ʹՃ͑ɼ҉߸Խ෮߸ͷॲཧΛཁ͢ΔɽΑͬͯɼͦΕΒͷॲ. Z^᪉ᘧ. Ϭ͘ϬϮ Ϭ͘Ϭϭϱ Ϭ͘Ϭϭ Ϭ͘ϬϬϱ Ϭ. Ϭ. 14.04.5 LTS(64bit)ɼCPU ͕ Intel®Core™i7-6950X CPU. ϱ. ϭϬ. ϭϱ. ϮϬ. 㛤♧チྍ䛩䜛ேᩘ䠄WͲ䛻䛚䛡䜛KZ⤖ྜ䛾ᒓᛶᩘ䠅. @ 3.00GHzɼϝϞϦ͕ 64GB ͷαʔόΛར༻ͨ͠ɽ·ͨɼ. ਤ 8 1 ΧςΰϦ෮߸ॲཧ࣌ؒ. ֤ଌఆ 100 ճࢼߦͷฏۉΛͱ͍ͬͯΔɽ. CP-ABE ͷॲཧଌఆʹɼBethencourt[5] Β͕։ൃͨ͠ C ޠݴͷΦʔϓϯιʔεͷϥΠϒϥϦ Ciphertext-Policy. ͜ͱ͕͔Δɽ ଌఆʹࡍͯ͠ɼখ߲Λ·ͱΊͨத߲ΛఏҊख๏ʹ. Attribute-Based Encryption Λར༻͢Δɽ͜ͷϥΠϒϥϦ. ͓͚Δ 1 ΧςΰϦͱͨ͠ɽ·ͨɼ1 ΧςΰϦΛ࠷େ 512 จ. ɼ(k, nʣᮢൿີࢄ๏ʹΑͬͯ CP-ABE ʹ͓͚Δ෮. ࣈͱੵݟΓɼଌఆʹ͓͚Δ҉߸ԽରϑΝΠϧ 1 KB. ߸ϙϦγͷཧԋࢉΛ࣮͍ͯ͠ݱΔɽଐੑΛ n ͱͨ͠. ͷςΩετϑΝΠϧͱͨ͠ɽ͜ͷͱ͖ɼAES ʹΑΔ҉߸Խ. ߹ɼൿີใΛ n ʹݸࢄ͠ɼͦΕΒΛ֤ଐੑʹରԠ. ͓Αͼ෮߸ॲཧ࣌ؒ RSA ͓Αͼ CP-ABE ʹൺेখ. ͚ͨ߸҉ͰݤԽ͢Δɽ͜ΕΒͷଐੑͷ AND ݁߹Λߦ͏. ͘͞ɼແࢹ͢Δ͜ͱ͕Ͱ͖Δɽ. ߹ɼ෮߸ʹඞཁͳࢄใͷ k = n ͱͳΓɼOR ݁߹Λ. ෮߸ϙϦγʹهड़͢Δ OR ݁߹ͷଐੑΛมԽͤͯ͞ଌ. ߦ͏߹ɼk = 1 ͱͳΔɽ·ͨɼ͜ͷϥΠϒϥϦͰϑΝΠ. ఆΛߦͬͨɽ҉߸Խॲཧʹؔͯ͠ɼCP-ABE ํࣜʹ͓͍. ϧΛ҉߸Խ͢ΔࡍɼϑΝΠϧࣗମ AES (ݤ 128bitɼ. ͯɼ͜ͷଐੑ = ։ࣔڐՄ͢Δҩྍհऀࣄैޢͷͱͳ. CBC Ϟʔυ) Ͱ҉߸Խ͠ɼAES ݤΛ CP-ABE Ͱ҉߸Խ͠. Γɼ·ͨɼ͜ͷ RSA ํࣜʹ͓͚Δ RSA ҉߸Խॲཧͷ. ͍ͯΔ͕ɼ͜ΕʹɼΦʔϓϯιʔεϥΠϒϥϦ OpenSSL. ܁Γฦ͠ճͱͳΔͨΊɼ2 ํࣜͷॲཧ࣌ؒΛಉҰ 2 ࣍ݩ. ͷ AES ҉߸ԽؔΛར༻͍ͯ͠Δɽ·ͨɼCP-ABE Ͱར. άϥϑʹද͢͜ͱ͕ՄೳͰ͋Δɽͦͷ݁ՌΛਤ 7 ʹࣔ͢ɽ. ༻͍ͯ͠ΔϖΞϦϯάԋࢉϥΠϒϥϦͰɼRSA ʢݤ. ݁Ռͱͯ͠ɼ։ࣔઌਓ͕େ͖͘ͳΔ͜ͱͰɼCP-ABE. 2048bitʣ ͱಉͷ҉߸ͳͱڧΔύϥϝʔλΛઃఆͯ͠. ํ͓ࣜΑͼ RSA ํࣜͱʹ҉߸Խճ͕େ͖͘ͳΔͨΊɼ. ͍Δɽ. ॲཧ࣌ؒେ͖͘ͳΔ͕ɼͦͷ͖ RSA ํࣜʹൺɼ. ΑͬͯɼRSA ͷॲཧଌఆʹɼOpenSSL Λར༻ͯ͠ɼ ͜Εʹ߹ΘͤͨϋΠϒϦουܕͷॲཧΛߦ͏ϓϩάϥϜΛ ࣮͠ɼར༻ͨ͠ɽ. CP-ABE ํ͕ࣜେ͖͘ɼͦͷࠩେ͖͘ͳ͍ͬͯ݁͘Ռͱ ͳͬͨɽ ·ͨɼ෮߸ॲཧ࣌ؒͷଌఆ݁ՌΛਤ 8 ʹࣔ͢ɽRSA ํ. ·ͨɼจ[ ݙ9] Ͱɼࡏҩྍհޢ࿈͚͓ʹܞΔඪ४త. ࣜʹ͓͍ͯɼ෮߸ରͷ։ࣔڐՄਓͷӨڹड͚ͳ͍. ͳڞ༗ใΛ͓ࣔͯ͠ΓɼͦΕΒΛ 5 ͭͷେ߲ʹྨ. ͨΊɼ1 ΧςΰϦͷ෮߸ॲཧ࣌ؒҰఆͰ 0.004 ඵ Ͱ͋ͬ. ͚͠ɼ͞ΒʹͦΕΛத߲ɼখ߲Ͱ͚͍ͯΔʢද 3ʣɽ. ͨɽCP-ABE ํࣜʹ͓͍ͯɼ෮߸ରͷ։ࣔڐՄਓ͕. ·ͨɼใͷ࠷খ୯ҐͰ͋Δখ߲ɼมԽස͕େதখ. େ͖͘ͳΔ͜ͱͰɼ෮߸ϙϦγͷଐੑ͕େ͖͘ͳΔɽ͠. ͷ 3 ஈ֊ʹ͚ΒΕ͍ͯΔɽྫ͑ɼόΠλϧใͷΑ͏. ͔͠ɼఏҊํࣜʹ͓͍ͯ OR ݁߹ͷΈͷ෮߸ϙϦγͱͳ. ʹऀױͷঢ়ଶʹΑͬͯසൟʹมԽ͢ΔใมԽස͕େ. ΔͨΊɼ1 ճͷ෮߸ॲཧͰ෮߸ϙϦγΛຬͨͨ͢Ίɼॲཧ. Ͱ͋ΔɽҰํͰɼࢯ໊ॅॴɼ͔͔Γ͚ͭҩʹؔ͢Δใ. ࣌ؒҰఆͱͳΔɽͦͷେ͖͞ฏ Ͱۉ0.006 ඵ Ͱ͋Γɼ. ͳͲมԽස͕খͱ͞Ε͍ͯΔɽมԽසɼऀױଐੑ. RSA ෮߸ॲཧ࣌ؒͱಉͰ͋Δ͜ͱ͕͔ͬͨɽ. ॅډɾՈ͕খ͘͞ɼհޢɾੜ׆ྍɾέΞ͕େ͖͍. c 2017 Information Processing Society of Japan . ·ͨɼCP-ABE ํࣜʹ͓͍ͯɼHPKI ʹΑΔೝূޙɼ. 6.
(7) Vol.2017-CSEC-79 No.3 2017/12/4. ใॲཧֶձڀݚใࠂ IPSJ SIG Technical Report. ID ͱ hcRole ଐੑʹରԠ͢ΔଐੑΩʔͷੜॲཧΛߦ͏. ͨɽ·ͨɼ2 ํࣜʹ͓͚Δݸਓใͷ҉߸Խͱ෮߸ॲཧͷ. ͕ɼͦͷλΠϛϯά෮߸ॲཧͱҟͳΔͨΊɼ͜͜Ͱߟ. खॱʹཁ͢Δॲཧ࣌ؒΛଌఆͨ͠ɽͦͷ݁Ռɼॲཧ࣌ؒͱ. ྀ͍ͯ͠ͳ͍ɽ·ͨɼͦͷॲཧ࣌ؒͷଌఆ݁Ռ 0.219 ඵ. ͯ͠ɼ҉߸Խɼ෮߸ͱʹ RSA ํ͕ࣜߴͰ͋ͬͨɽ. Ͱ͋Γɼӡ༻্ͳ͍ͱߟ͑ΒΕΔɽ. 7. γεςϜͷ࣮ӡ༻Λఆͨ͠ॲཧ࣌ؒʹؔ ͢Δߟ. CP-ABE ํࣜʹ͓͍ͯɼӡ༻্ͳ͍Ͱ෮߸ॲཧ ͕ՄೳͰ͋Δ͜ͱ͕͔ͬͨɽ͔͠͠ɼ҉߸Խॲཧʹؔ͠ ͯɼ༻࣌ٸۓͷ෮߸ϙϦγେਓͷνʔϜέΞʹΑΓɼ γεςϜͷϨεϙϯελΠϜʹ͓͍ͯɼॲཧ͕࣌ؒࢧత. ࣮ࡍʹҩྍհ͕ऀࣄैޢγεςϜΛར༻͢Δࡍɼද 3 ʹ. ʹͳΔՄೳੑ͕͋ΔɽΑͬͯɼRSA ํࣜมԽසͷେ. ͓͚Δେ߲ຖʹɼใΛ·ͱΊͯӾཡɼొ͢Δɽ͜ͷ. ͖͍ใͷ։ࣔઌ੍ʹޚɼ·ͨɼCP-ABE ํࣜมԽස. ߹ɼ1 Ͱ࠷େ 16 ΧςΰϦʢҩྍใʣͷ҉߸Խ͓Α. ͷখ͘͞ɼʹ࣌ٸۓॏཁͳใͷ։ࣔઌ੍ʹޚద͍ͯ͠Δ. ͼ෮߸ॲཧ͕ඞཁͱͳΔɽ͜͜Ͱɼจ[ ݙ7] ͷௐࠪʹڀݚ. ͱߟ͑ΒΕΔɽ͔͠͠ɼ͜ͷ 2 ํࣜͷซ༻ͰɼCP-ABE. ߹ΘͤɼҩࢣɼࣃՊҩࢣɼༀࡎࢣɼࢣޢɼհࢧޢԉઐ. ํࣜʹ͓͚Δ֤ҩྍհʹऀࣄैޢରԠ͢Δൿີݤͷཧͷ. һɼཧֶྍ๏࢜ɼࣃՊӴੜ࢜ɼհޢࢱ࢜ͷ 8 ৬छʹΑΔ. ͏͍ͱݮརͷޮՌ͕ͳ͘ͳͬͯ͠·͏ɽ. έΞνʔϜΛఆ͢Δɽ·ͨɼͱࢣޢհޢࢱ࢜ 3 ໊. Αͬͯɼࠓޙͷ՝มԽස͕େ͖͍ใʹରͯ͠ͷ. ͣͭʢͦͷଞͷ৬छ 1 ໊ͣͭʣͱ͠ɼਓ ܭ12 ໊ͱ. CP-ABE ํࣜͷద༻ํ๏ΛߟҊ͢Δ͜ͱ͕͛ڍΒΕΔɽ۩. ఆ͢Δɽ. ମతʹɼݱঢ়෮߸ϙϦγͷهड़ํ๏͕ҩྍհऀࣄैޢ. ෮߸ॲཧʹؔͯ͠ɼ1 ΧςΰϦ͋ͨΓͷॲཧ͕࣌ؒ. ͷ ID Λ OR ݁߹ͰฒΔ୯७ͳͷͰ͋ΔͨΊɼ෮߸ϙ. 0.006 ඵͰ͋ΔͷͰɼ16 ΧςΰϦͰ 0.096 ඵఔͱߴ. Ϧγʹ͓͚ΔଐੑΛ͢ݮΔ͜ͱͰ҉߸ԽॲཧͷߴԽ. Ͱॲཧ͢Δ͜ͱ͕Ͱ͖Δɽ·ͨɼྫ͑ɼऀױͷόΠλϧ. ΛਤΔɽ·ͨɼRSA ํࣜʹ͓͚Δެ։ݤϖΞͷੜʹ͍ͭ. ใɼଌఆͷʹσʔλ͕ੵ͍ͯ͘͠ɽ͜ͷΑ͏ͳ. ͯɼຊߘͰ hcRole ଐੑΛར༻ͨ͠৬छຖͰͳ͘ɼΑ. ใɼաڈͷσʔλΛෳ෮߸͠ɼ࣌ʹ্ྻܥฒͯӾཡ. Γੜ͕গͳ͍֤ҩྍैࣄऀ୯Ґͱͨ͠ɽ͔͠͠ɼ͜ͷ. ͢Δ߹͕͋Δɽ1 ඵఔͰ෮߸͢Δ͜ͱ͕Ͱ͖Δσʔλ. ߹Ͱެ։ݤϖΞʹ hcRole ଐੑΛඥ͚͓͚ͯɼۓ. ͷ 1 ÷ 0.006 166.7 ΑΓɼ166 Ͱ͋Δɽ͜Εଌఆ. ʹ࣌ٸέΞϝϯόʔ֎ͷऀͰ͋ͬͯ hcRole ଐੑΛ֬. ճ͕िʹ 3 ճҎԼͰ͋Εɼ1 ؒͷσʔλͱͳΔͨ. ೝ্ͨ͠ͰͦΕʹҰக͢ΔϝϯόʔͷऀͷݤΛར༻Մೳ. Ίɼӡ༻্େ͖ͳͳ͍ͱߟ͑ΒΕΔɽ. ͱ͢Εɼ ʹ࣌ٸۓhcRole ଐੑΛ͔ͨ͠׆։ࣔઌ੍ޚΛ. ҉߸Խॲཧʹؔͯ͠ɼ։ࣔڐՄਓ͕ 12 ໊ͷͱ͖ͷ. 1 ΧςΰϦ͋ͨΓͷॲཧ࣌ؒɼ0.096 ඵ Ͱ͋ͬͨɽΑͬ. ՄೳͰ͋ΔɽΑͬͯɼͦΕΛߟ্ྀͨ͠Ͱͷ CP-ABE ํ ࣜͱͷൺֱɾߟΛߦ͏͜ͱ͛ڍΒΕΔɽ. ͯɼ16 ΧςΰϦͰ 1.536 ඵఔͰ͋ΔͷͰɼ͜ͷέΞ νʔϜͷఆͰɼ҉߸Խॲཧʹؔͯ͠ӡ༻্க໋తͳ. ࢀߟจݙ. ͳ͍ͱߟ͑ΒΕΔɽ͔͠͠ɼ҉߸Խॲཧʹؔͯ͠ɼ. [1]. ༻࣌ٸۓͷ෮߸ϙϦγΛهड़͢Δ͜ͱɼΑΓେਓͷέ ΞνʔϜʹͳΔՄೳੑΛߟྀ͢ΔͱɼγεςϜͷϨεϙϯ ελΠϜʹ͓͍ͯɼCP-ABE ͷॲཧ͕࣌ؒࢧతʹͳΔ. [2]. Մೳੑ͕͋ΔɽΑͬͯɼऀױͷݸਓใͷ͏ͪɼಛʹසൟ ʹγεςϜͷొΛඞཁͱ͢ΔɼมԽසͷେ͖͍ใ. [3]. Λ CP-ABE ҉߸Խ͢ΔͷదͰͳ͘ɼॲཧ͕ߴͳ. RSA ํ͕ࣜద͍ͯ͠ΔɽҰํͰɼมԽස͕খ͍͞ใ ʹؔͯ͠ɼجຊతʹॳճొͷࡍʹ͔͠҉߸ԽॲཧΛඞ ཁͱ͠ͳ͍ͨΊɼॲཧ͕࣌ؒେ͖͍߹Ͱӡ༻ͷӨڹ ͕খ͍͞ɽՃ͑ͯɼ͜ΕΒͷใʹɼऀױଐੑ͔͔Γ. [4]. ͚ͭҩɼطපྺͳͲ͕·ؚΕɼʹ࣌ٸۓѲ͖͢ใ ͕ଟ͍ͨΊɼCP-ABE ํ͕ࣜద͍ͯ͠Δͱߟ͑ΒΕΔɽ. [5]. 8. ͓ΘΓʹ ຊߘͰɼࡏҩྍհޢ࿈ܞγεςϜʹ͓͚Δ HPKI ʹ ΑΔೝূΛఆ͠ɼ͜ΕʹΑͬͯ୲อ͞ΕΔใʹͮج ͍ͨऀױͷݸਓใͷ։ࣔઌ੍ޚΛ RSA ҉߸ʹΑͬͯߏ ͢ΔํࣜͱɼCP-ABE ʹΑͬͯߏ͢ΔํࣜΛఏҊ͠. c 2017 Information Processing Society of Japan . [6]. ࣜגձࣾใ௨৴૯߹ॴڀݚɿҬʹ͓͚Δ ICT ར ༻׆ͷݱঢ়ʹؔ͢Δௐࠪڀݚใࠂॻ (online)ɼೖखઌ http://www.soumu.go.jp/johotsusintokei/linkdata/h2 7 07 houkoku.pdfɼʢࢀর 2017-11-02ʣɽ ۀ ࢈ ࡁ ܦলɿJIS Q 15001:2006(online)ɼೖ ख ઌ http://www.meti.go.jp/policy/it policy/privacy/jis s hian.pdfɼʢࢀর 2017-11-02ʣɽ ް ੜ ࿑ ಇ লɿอ ݈ ҩ ྍ ࢱ PKI ೝ ূ ہೝ ূ ༻ʢ ਓ ʣূ ໌ ॻ ϙ Ϧ γ 1.4 ൛ (online)ɼೖ ख ઌ http://www.mhlw.go.jp/file/05Shingikai-12601000-SeisakutoukatsukanSanjikanshitsu Shakaihoshoutantou/0000112704.pdfɼ ʢࢀর 2017-11-02ʣɽ ཱా ଠҰɼߔߤ ޱɼനੴ ળ໌΄͔ɿࡏҩྍհޢใ ࿈ܞγεςϜʹ͓͚Δ࿈݁Մೳಗ໊ԽͱϋΠϒϦου҉ ߸ํࣜΛΈ߹ΘͤͨηΩϡΞͳݸਓใཧख๏ɼ৴ ֶٕใɼvol.112ɼno.466ɼpp.65-70ʢ2013ʣ Bethencourt, J., Sahai, A. and Waters, B.: Ciphertextpolicy attribute-based encryption, Proc. IEEE Symposium on Security and Privacy, pp.321-334(2007). Ұൠࣾஂ๏ਓ อݥҩྍࢱใγεςϜۀձ ҩ ྍ γ ε ς Ϝ ෦ ձ η Ω ϡ Ϧ ς Ο ҕ һ ձɿJAHIS HPKI ి ࢠ ೝ ূ Ψ Π υ ϥ Π ϯ V1.1(online)ɼೖ ख ઌ https://www.jahis.jp/files/user/images/JAHIS HPKI V1.1.pdfɼʢࢀর 2017-11-02ʣɽ. 7.
(8) ใॲཧֶձڀݚใࠂ IPSJ SIG Technical Report. Vol.2017-CSEC-79 No.3 2017/12/4. ࡏҩྍͱհޢͷଟ৬छ࿈ؔ͢ʹܞΔௐࠪڀݚ ҕ һ ձɿࡏ ҩ ྍ ͱ հ ޢͷ ࿈ ܞͷ ͨ Ί ͷ ใ γ ε ςϜͷڞ௨ج൫ͷ͋Γํʹؔ͢Δௐࠪڀݚใࠂ ॻ (online)ɼೖखઌ http://www.iog.u-tokyo.ac.jp/wpcontent/uploads/2015/04/01667ff78127f3599d21c25a 6906f782.pdfɼʢࢀর 2017-11-02ʣɽ [8] ް ੜ ࿑ ಇ লɿҩ ྍ ใ γ ε ς Ϝ ͷ ҆ શ ཧ ʹ ؔ ͢ Δ Ψ Π υ ϥ Π ϯ ୈ 5 ൛ (online)ɼೖ ख ઌ http://www.mhlw.go.jp/file/05-Shingikai-12601000Seisakutoukatsukan-Sanjikanshitsu Shakaihoshouta ntou/0000166260.pdfɼʢࢀর 2017-11-02ʣɽ [9] ࡏҩྍͱհޢͷ࿈͚͓ʹܞΔใγεςϜར༻ʹؔ͢Δ ΨΠυϥΠϯݕ౼ҕһձɿࡏҩྍͱհޢͷ࿈͚͓ʹܞΔ ใγεςϜͷదͳར༻Λଅਐ͢ΔͨΊͷΨΠυϥΠϯʢ Ҋʣ(online)ɼೖखઌ http://www.iog.u-tokyo.ac.jp/wpcontent/uploads/2014/05/5435d2ad3a28ce3767b71b2 bfb764856.pdfɼʢࢀর 2017-11-02ʣɽ [10] Benaloh, J., Chase, M., and Lauter, K., et al. Patient controlled encryptionɿ ensuring privacy of electronic medical records, Proc. ACM CCSW 2009, pp.103114(2009). [11] Ҵ٢ ཅҰ࿕ɼനੴ ળ໌ɼඌ ३΄͔ɿHPKI ೝূΛ༻ ͍ͨࡏҩྍհޢ࿈ܞγεςϜʹ͓͚Δݸਓใͷ։ࣔ ઌ੍ޚɼ৴ֶٕใɼvol.117ɼno.199ɼpp.51-56ʢ2017ʣ [12] ּҪ ܟհɼӽ ګೋɿঢ়گมԽΛߟྀͨ͠ར༻ऀݸਓ ใͷΞΫηε੍ޚϞσϧͷߏஙɼCSS2009 จूɼpp.1-6 ʢ2009ʣ. [7]. c 2017 Information Processing Society of Japan . 8.
(9)
関連したドキュメント
This study was performed to examine attitudes toward evacuation(wish to stay at home, access evacuation sites)among elderly community residents that were able to choose
Rumiko Kimura* College of Nursing and
Nursing care is the basis of human relationship, is supported by how to face patients and to philosophize about care as a
For the assessment of the care burden we used the Japanese Version of the Zarit Caregiver Burden Interview (J- ZBI) and compared it with the caregiver’s age, relationship, care term
It seems that the word “personality” includes both the universality of care and each care worker ’s originality with certain balance, and also shows there are unique relations
With a diverse portfolio of products and services, talented engineering staff with system expertise, a deep understanding of the quality, reliability and longevity requirements
International Association for Trauma Surgery and Intensive Care (IATSIC) World Congress on Disaster Medicine and Emergency Medicine (WADEM). International symposium on intensive
The importance of middle leadership has been emphasized recently in early childhood education and care research. This paper aimed; 1) to determine the term “ ECEC middle leader ”