Multi-server Key Aggregation Searchable Encryption Scheme in Cloud Environment
-
摘要:
密钥聚合可搜索加密不仅可以通过关键字检索密文,还可以减少用户密钥管理的代价和安全风险。该文分析了一个可验证的密钥聚合可搜索加密方案,指出该方案不满足关键字猜测攻击,未经授权的内部用户可以猜测其他用户的私钥。为了提高原方案的安全性,提出了云存储环境下多服务器的密钥聚合可搜索加密方案。所提方案不仅改进了原方案的安全性问题,还增加了多服务的特性,提高了上传和存储的效率,更适合一对多的用户环境。
Abstract:Key aggregation searchable encryption can not only retrieve ciphertext through keywords, but also can reduce user key management costs and security risks. This paper analyzes a verifiable key aggregation searchable encryption scheme, noting that the scheme does not satisfy keyword guessing attacks, and that unauthorized internal users can guess the private keys of other users. In order to improve the security of the original scheme, a multi-server key aggregation searchable encryption scheme is proposed in the cloud environment. The new scheme not only improves the security of the original solution, but also adds multi-service features, and improves the storage and search efficiency. Therefore, it is more suitable for a one-to-many user environment.
-
Key words:
- Searchable encryption /
- Key aggregation /
- Multiple servers /
- Keyword guessing
-
表 1 基本运算耗费的时间(ms)
${T_{{\rm{sm}}}}$ ${T_{\rm a}}$ ${T_{\exp }}$ ${T_{{\rm{mul}}}}$ ${T_p}$ 0.756 0.267 3.756 0.185 3.611 
下载: 导出CSV
表 2 效率对比
方案 加密 陷门生成 安全性 Liu等人方案 $2{T_{{\rm{sm}}}} + 2{T_{\rm a}} + 4{T_{\exp }} + 2{T_{{\rm{mul}}}}{\rm{ + }}3{T_{\rm p}} \ge 28.273$ ${T_{\rm a}} + {T_{{\rm{mul}}}} \ge 0.452$ 低 本文方案 $2{T_{{\rm{sm}}}} + 2{T_{\rm a}} + 5{T_{\exp }} + 6{T_{{\rm{mul}}}} \ge 21.{\rm{936}}$ ${T_{{\rm{sm}}}} + {T_{\rm a}} + 3{T_{\exp }} + 2{T_{{\rm{mul}}}} \ge 12.661$ 高
下载: 导出CSV
-
张键红, 李鹏燕. 一种有效的云存储数据完整性验证方案[J]. 信息网络安全, 2017(3): 1–5. doi: 10.3969/j.issn.1671-1122.2017.03.001ZHANG Jianhong and LI Pengyan. An efficient data integrity verification scheme for cloud storage[J]. Netinfo Security, 2017(3): 1–5. doi: 10.3969/j.issn.1671-1122.2017.03.001 陆海宁. 可隐藏搜索模式的对称可搜索加密方案[J]. 信息网络安全, 2017(1): 38–42. doi: 10.3969/j.issn.1671-1122.017.01.006LU Haining. Searchable symmetric encryption with hidden search pattern[J]. Netinfo Security, 2017(1): 38–42. doi: 10.3969/j.issn.1671-1122.017.01.006 SONG D X, WAGNER D, and PERRIG A. Practical techniques for searches on encrypted data[C]. IEEE Symposium on Security and Privacy, Berkeley, USA, 2000: 44–55. DAN B, CRESCENZO G D, OSTROVSKY R, et al. Public key encryption with keyword search[J]. Lecture Notes in Computer Science, 2004, 3027: 506–522. doi: 10.1007/978-3-540-24676-3_30 王尚平, 刘利军, 张亚玲. 一个高效的基于连接关键词的可搜索加密方案[J]. 电子与信息学报, 2013, 35(9): 2266–2271. doi: 10.3724/SP.J.1146.2012.01036WANG Shangping, LIU Lijun, and ZHANG Yaling. An efficient conjunctive keyword searchable encryption scheme[J]. Journal of Electronics &Information Technology, 2013, 35(9): 2266–2271. doi: 10.3724/SP.J.1146.2012.01036 CHANG Yujui and WU Jaling. Multi user searchable encryption scheme with constant size keys[C]. IEEE International Symposium on Cloud and Service Computing, Kanazawa, Japan, 2017: 98–103. 刘振华, 周佩琳, 段淑红. 支持关键词搜索的属性代理重加密方案[J]. 电子与信息学报, 2018, 40(3): 683–689. doi: 10.11999/JEIT170448LIU Zhenhua, ZHOU Peilin, and DUAN Shuhong. Attribute based proxy reencryption scheme with keyword search[J]. Journal of Electronics &Information Technology, 2018, 40(3): 683–689. doi: 10.11999/JEIT170448 PENG Yanguo, CUI Jiangtao, PENG Changgen, et al. Certificateless public key encryption with keyword search[J]. China Communications, 2014, 11(11): 100–113. doi: 10.1109/CC.2014.7004528 WU Tsuyang, MENG Fanya, CHEN Chienming, et al. On the security of a certificateless searchable public key encryption scheme[C]. International Conference on Genetic and Evolutionary Computing, Fuzhou, China, 2016: 113–119. MA Mimi, HE Debiao, KUMAR N, et al. Certificateless searchable public key encryption scheme for industrial internet of things[J]. IEEE Transactions on Industrial Informatics, 2017, 14(2): 759–767. doi: 10.1109/TII.2017.2703922 MA Mimi, HE Debiao, KHAN M K, et al. Certificateless searchable public key encryption scheme for mobile healthcare system[J]. Computers & Electrical Engineering, 2017, 65(5): 413–424. doi: 10.1016/j.compeleceng.2017.05.014 黄海平, 杜建澎, 戴华, 等. 一种基于云存储的多服务器多关键词可搜索加密方案[J]. 电子与信息学报, 2017, 39(2): 389–396. doi: 10.11999/JEIT160338HUANG Haiping, DU Jianpeng, DAI Hua, et al. Multi sever multi keyword searchable encryption scheme based on cloud storage[J]. Journal of Electronics &Information Technology, 2017, 39(2): 389–396. doi: 10.11999/JEIT160338 CHU C K, CHOW S S M, TZENG W G, et al. Key aggregate cryptosystem for scalable data sharing in cloud storage[J]. IEEE Transactions on Parallel and Distributed Systems, 2014, 25(2): 468–477. doi: 10.1109/TPDS.2013.112 CUI Baojiang, LIU Zheli, and WANG Lingyu. Key-Aggregate Searchable Encryption (KASE) for group data sharing via cloud storage[J]. IEEE Transactions on Computers, 2016, 65(8): 2374–2385. doi: 10.1109/TC.2015.2389959 LIU Zheli, LI Tong, LI Ping, et al. Verifiable searchable encryption with aggregate keys for data sharing system[J]. Future Generation Computer Systems, 2017, 78(2): 778–788. doi: 10.1016/j.future.2017.02.024 -
计量
- 文章访问数: 2556
- HTML全文浏览量: 572
- PDF下载量: 103
- 被引次数: 0
下载:
