指定使用者的多服务器多关键字可搜索加密方案

doi:10.19678/j.issn.1000-3428.0059949

摘要/Abstract

摘要： 针对现有可搜索加密方案中密文检索效率低、搜索结果不精确和不支持验证数据使用者身份等问题，在无证书密码体制下，提出了一种指定使用者的多服务器多关键字可搜索加密方案。首先，方案使用多服务器和多关键字技术在降低服务器负荷的同时提高了用户检索密文的速度，使搜索结果更加精确；其次，在搜索验证阶段，搜索服务器验证数据使用者的身份，若身份合法，存储服务器根据关键词向数据使用者返回相应密文；最后，在随机预言模型下，证明方案抵抗无证书密码体制下两类攻击者的内外关键字猜测攻击。性能分析结果表明，与黄及王等人提出的公钥可搜索加密方案相比，新方案能够在降低计算开销代价的同时提高搜索效率，在安全和效率方面都具备一定的优势。关键词：可搜索加密；多服务器；多关键字；指定使用者；内外关键字猜测攻击

Abstract: In order to solve the problems of low efficiency of ciphertext retrieval, inaccurate search results and failure to verify the identity of data users in the existing searchable encryption schemes, a multi-server multi-keyword searchable encryption scheme for designated user is proposed under certificateless cryptosystem. Firstly, the scheme uses multi-server and multi-keyword technology to reduce the server load and improve the speed of users to retrieve ciphertext and make the search results more accurate. Secondly, in the search verification phase, the search server verifies the identity of the data user. If the identity is legal, the storage server returns the corresponding ciphertext to the data user according to the keyword. Finally, under the random prophecy model, it is proved that the scheme can resist the inside and outside keyword guessing attacks under certificateless cryptosystem. The results of performance analysis show that compared with the public key searchable encryption scheme proposed by Huang and Wang, the new scheme can not only reduce the computational cost but also improve the search efficiency, and has certain advantages in security and efficiency.

窦凤鸽, 曹素珍, 马佳佳, 丁晓晖, 王彩芬. 指定使用者的多服务器多关键字可搜索加密方案[J]. 计算机工程, doi: 10.19678/j.issn.1000-3428.0059949.

DOU Fengge , CAO Suzhen , Ma Jiajia , Ding xiaohui , Wang Caifen. Multi-server multi-keyword searchable encryption scheme for designated user[J]. Computer Engineering, doi: 10.19678/j.issn.1000-3428.0059949.

参考文献

[1] Lu Y, Li J, Zhang Y. Secure Channel Free Certificate-Based Searchable Encryption Withstanding Outside and Inside Keyword Guessing Attacks[J]. IEEE Transactions on Services Computing, 2020, PP (99):1-1.
[2] Zhang M, Chen Y, Huang J. SE-PPFM: A Searchable Encryption Scheme Supporting Privacy-Preserving Fuzzy Multi-keyword in Cloud Systems[J]. IEEE Systems Journal, 2020, PP (99):1-9.
[3] Wu T Y, Chen C M, Wang K H, et al. Security Analysis and Enhancement of a Certificateless Searchable Public Key Encryption Scheme for IIoT Environments[J]. IEEE Access, 2019:49232-49239.
[4] Miao Y, Tong Q, Deng R, et al. Verifiable Searchable Encryption Framework against Insider Keyword-Guessing Attack in Cloud Storage[J]. IEEE Transactions on Cloud Computing, 2020, PP (99):1-1.
[5] Pakniat Nasrollah, Shiraly Danial, Eslami Ziba. Certificateless authenticated encryption with keyword search: Enhanced security model and a concrete construction for industrial IoT[J]. Journal of Information Security and Applications, 2020, (53): 102525.
[6] D. Song et al., Practical techniques for search-ing on encrypted data[C]//2000 31st IEEE sym-posium on Security and Privacy. IEEE, 2000:44-55.
[7] D. Boneh et al., Public key encryption with keyword search[C]//EUROCRYPT 2004. Springer, 2004:506-522.
[8] H. Rhee et al., Trapdoor security in a searchable public key encryption scheme with a designated tester[J]. Journal of System and Software, 2010, 83(5): 763-771.
[9] Y. Peng et al. Certificateless public key encryption with keyword search[J]. China Communications, 2014, 11(11): 100-113.
[10] Huang Q, Li H. An efficient public-key searchable encryption scheme secure against inside keyword guessing attacks[J]. Information sciences, 2017,403(404): 1-14.
[11] Ma M, He D, Kumar N, et al. Certificateless Searchable Public Key Encryption Scheme for Industrial Internet of Things[J]. IEEE Transactions on Industrial Informatics, 2018, 14(99):759-767.
[12] Yang N, Xu S, Quan Z. An Efficient Public Key Searchable Encryption Scheme for Mobile Smart Terminal[J]. IEEE Access, 2020, (99):1-1.

[13] Wang Shaohui, Zhang Yanxuan, Wang Huaqun, et al. An efficient public key searchable encryption scheme against internal keyword guessing attacks [J]. Journal of Computer science,2019,46(07):91-95. (in Chinese) 王少辉, 张彦轩, 王化群等. 抗内部关键词猜测攻击的高效公钥可搜索加密方案[J]. 计算机科学,2019,46(07):91-95.
[14] Yang Lu, Jiguo Li. Constructing Certificateless Encryption with Keyword Search against Outside and Inside Keyword Guessing Attacks[J]. International Journal of Communication Systems, 2019,16(07): 156-173.
[15] Yang Lu. Constructing pairing-free certificateless public key encryption with keyword search[J]. Frontiers of Information Technology & Electronic Engineering, 2019, 20(8):1049-1060.
[16] Yang Ningbin, Zhou Quan, Xu Shumei. Searchable encryption scheme without pairing public key authentication [J]. Journal of Computer research and development, 2020,57(10):2125-2135. (in Chinese) 杨宁滨, 周权, 许舒美.无配对公钥认证可搜索加密方案[J].计算机研究与发展, 2020,57(10):2125-2135.
[17] Chi T, Qin B, Zheng D. An Efficient Searchable Public-Key Authenticated Encryption for Cloud-Assisted Medical Internet of Things[J]. Wireless Communications and Mobile Computing, 2020:1-11.
[18] Ni Lulin, Xu Chungen. Identity-based dynamic searchable encryption scheme [J]. Journal of Computer engineering, 2019, 45(01) :136-140. (in Chinese) 倪绿林, 许春根. 基于身份的动态可搜索加密方案[J].计算机工程,2019,45(01):136-140.
[19] Luo Yunpeng, Zhu Yutong, Mao Ciwei, Cheng Jinxue, Xu Chungen. A practical searchable encryption scheme based on connection keywords [J]. Journal of Computer engineering,2020, 46(02):175-182. (in Chinese) 骆云鹏, 朱旎彤, 毛慈伟, 程晋雪, 许春根. 一种基于连接关键词的实用化可搜索加密方案[J].计算机工程,2020,46(02):175-182.
[20] Wu L, Chen B, Zeadally S, et al. An efficient and secure searchable public key encryption scheme with privacy protection for cloud storage[J]. Soft Computing, 2018: 7685–7696.
[21] Wu B, Wang C, Yao H. Security analysis and secure channel-free certificateless searchable public key authenticated encryption for a cloud-based Internet of things[J]. PLOS ONE, 2020, 15(4): e0230722.