计算机工程 ›› 2020, Vol. 46 ›› Issue (3): 120-128.doi: 10.19678/j.issn.1000-3428.0054493

• 网络空间安全 • 上一篇    下一篇

多服务器可验证的属性基多关键字排序检索方案

曹素珍a, 杜霞玲a, 王友琛a, 刘雪艳b   

  1. 西北师范大学 a. 计算机科学与工程学院;b. 数学与统计学院, 兰州 730070
  • 收稿日期:2019-04-04 修回日期:2019-05-15 发布日期:2019-05-24
  • 作者简介:曹素珍(1976-),女,副教授,主研方向为信息安全、软件安全;杜霞玲、王友琛,硕士研究生;刘雪艳,副教授。
  • 基金项目:
    国家自然科学基金(61562077,61662071,61662069);西北师范大学青年教师科研能力提升计划(NWNU-LKQN-14-7)。

Multi-Server Verifiable Attribute-Based Multi-Keyword Sorting Retrieval Scheme

CAO Suzhena, DU Xialinga, WANG Youchena, LIU Xueyanb   

  1. a. College of Computer Science and Engineering;b. College of Mathematics and Statistics, Northwest Normal University, Lanzhou 730070, China
  • Received:2019-04-04 Revised:2019-05-15 Published:2019-05-24

摘要: 针对现有可搜索加密方案搜索行为不可控、搜索结果不可信以及搜索语义单一的问题,提出一种多服务器模式下可验证的属性基多关键字排序检索方案。构造多维B+树作为索引存储结构将索引和密文分开存储,并在检索时使用提前剪枝策略去除相关性较低的子树,实现快速多关键字排序查找。运用属性基加密技术实现搜索行为的授权,通过授权的验证服务器对检索结果进行验证,保证检索结果的正确性。安全性及效率分析结果表明,基于DL假设和q-BDHE假设,该方案在随机预言模型下可抵抗选择明文攻击和抗关键字猜测攻击,并且能够减小计算开销。

关键词: 多服务器模式, 可验证性, 属性基加密, 多关键字排序, 关键字猜测攻击

Abstract: To solve the problems of uncontrollable search behavior,untrusted search results and unitary search semantics of existing searchable encryption schemes,this paper proposes a verifiable attribute-based multi-keyword sorting retrieval scheme under multi-server mode.In this scheme,the multi-dimensional B+ tree is constructed as the index storage structure to store the index and ciphertext separately.The subtrees of low relevance is clipped by using the pruning strategy in advance,so as to realize fast multi-keyword sorting search.The attribute-based encryption technology is used to authorize the search behavior,and the retrieval results are verified by the authorized verification server to ensure the correctness of the retrieval results.The analysis results of security and efficiency show that,based on the DL assumption and q-BDHE assumption,under the random prediction model,the scheme can resist choice plaintext attacks and keyword guessing attacks,and can effectively reduce the computational cost.

Key words: multi-server mode, verifiability, attribute-based encryption, multi-keyword sorting, keyword guessing attack

中图分类号: