摘要： 针对海洋浮标数据存在被黑客攻击、窃取的问题，在分析北斗海洋浮标系统工作原理的基础上，设计了基于属性基加密的海洋浮标数据安全管理系统。在该系统中设计了数据加解密、数据管理和密钥管理的子系统，设计了包括数据的存储以及数据的请求两个业务流程，做到了对数据的细化到用户属性的安全管控。在此基础上，基于开源的JPBC密码库和主流的前后端技术实现了该系统，并对多种加解密方案的从加密效率、密钥安全和数据共享等方面进行了对比分析。结果显示：本研究所采用的加密方案具有显著优势，与传统的浮标数据管理系统进行对比，该系统融合了对称加密与属性基加密技术，实现了浮标数据的安全保护与数据的细粒度共享。本研究成果可以为浮标数据的信息安全管理，推动渔业信息化、现代化的发展提供参考。

关键词: 海洋浮标, 海洋渔业, 北斗卫星, 数据管理, 属性基加密 , 信息安全

Abstract: Targeting the problem of ocean buoys data being attacked and stolen by hackers, and based on analyzing the operating mechanism of Beidou ocean buoy system, an attribute-based encryption ocean buoy data security management system was designed and proposed in this paper. In order to achieve fine-grained access control of ocean buoy data, this system contained three subsystems including data encryption and decryption, data management and key management, meanwhile, the process of data storage and data request were designed to manage the transfer of buoy data between data requester and data owner. Furthermore, the system was implemented based on the open source JPBC cryptographic library and popular front-end and back-end technologies, and compared with multiple encryption schemes. The results showed that the encryption scheme used in this paper had significant advantages in encryption efficiency and fine-grained buoy data sharing. Compared with the traditional buoy data management system, this system combined symmetric encryption and attribute-based encryption technologies to realize the security protection of buoy data and the fine-grained sharing of data. The research results provided references for buoy data security management, and promoting fishery informatization and modernization development.

Key words: ocean buoy, ocean fishing, Beidou satellite, data management, attribute-based encryption, information security