可验证混合存储属性基多关键字密文检索方案

doi:10.19678/j.issn.1000-3428.0056432

摘要/Abstract

摘要： 属性基可搜索加密技术能同时满足细粒度访问控制和密文数据的检索需求。利用区块链防篡改、去中心化等优势，提出一种混合存储属性基多关键字密文检索方案。采用公钥密码算法对属性钥加密，确保分配给用户的属性钥可在公开信道安全传输，运用用户版本号与用户属性钥的生成绑定方式实现用户撤销功能，以防止用户对数据的越权访问。结合区块链的技术优势，将密文索引和密文数据分别存储于区块链和云服务器，实现对搜索结果正确性的验证和数据隐私性的保护。在随机预言模型下基于HDH、MDDH及CDH等困难性问题的仿真结果证明了该方案的安全性和高效性。

关键词: 属性基加密, 区块链, 多关键字, 用户撤销, 公开信道

Abstract: Attribute-based searchable encryption technology can simultaneously meet the requirements of fine-grained access control and ciphertext data retrieval.This paper proposes a multi-keyword ciphertext retrieval scheme based on hybrid storage attributes using the anti-tampering and de-centralization features of blockchain.The scheme uses a public key encryption algorithm to encrypt the attribute key,ensuring that the attribute key assigned to the user can be securely transmitted on the public channel.The user revocation function is implemented by binding the user version number to the generation of the user attribute key to prevent the user from having unauthorized access to the data.Combining the technical advantages of blockchain,the ciphertext index and the ciphertext data are respectively stored in the blockchain and the cloud server to realize the verification of the correctness of the search results and the protection of data privacy.Simulation results based on difficult problems such as HDH,MDDH and CDH under the random prediction model prove the safety and efficiency of the scheme.

Key words: attribute-based encryption, blockchain, multi-keyword, user revocation, public channel

中图分类号:

TP309

曹素珍, 杜霞玲, 杨小东, 刘雪艳, 汪锐. 可验证混合存储属性基多关键字密文检索方案[J]. 计算机工程, 2020, 46(11): 181-186,193.

CAO Suzhen, DU Xialing, YANG Xiaodong, LIU Xueyan, WANG Rui. Attribute-Based Multi-Keyword Ciphertext Retrieval Scheme Using Verifiable Hybrid Storage[J]. Computer Engineering, 2020, 46(11): 181-186,193.

http://www.ecice06.com/CN/Y2020/V46/I11/181

图/表 6

20201124090052

20201124090055

20201124090058

20201124090101

20201124090104

20201124090107

参考文献

[1] SONG D X,WAGNER D,PERRIG A.Practical techniques for searches on encrypted data[C]//Proceedings of 2000 IEEE Symposium on Security and Privacy.Berkeley,USA:[s.n.],2000:44-55.
[2] DAN B,CRESCENZO G D,OSTROVSKY R,et al.Public key encryption with keyword search[C]//Proceedings of International Conference on Theory and Applications of Cryptographic Techniques.Berlin,Germany:Springer,2004:506-522.
[3] HUANG Haiping,DU Jianpeng,DAI Hua,et al.Multi-sever multi-keyword searchable encryption scheme based on cloud storage[J].Journal of Electronics and Information Technology,2017,39(2):389-396.(in Chinese) 黄海平,杜建澎,戴华,等.一种基于云存储的多服务器多关键词可搜索加密方案[J].电子与信息学报,2017,39(2):389-396.
[4] MIAO Yinbin,MA Jianfeng.VKSE-MO:verifiable keyword search over encrypted data in multiowner settings[J].SCIENCE CHINA Information Sciences,2017,60(12):108-202.
[5] SAHAI A,WATERS B.Fuzzy identity-based encryption[C]//Proceedings of International Conference on Theory and Applications of Cryptographic Techniques.Berlin,Germany:Springer,2005:457-473.
[6] KAUSHIK K,VARADHARAJAN V.Multi-user attribute based searchable encryption[C]//Proceedings of the 14th IEEE International Conference on Mobile Data Management.Washington D.C.,USA:IEEE Press,2013:200-207.
[7] ZHENG Q J,XU S H,ATENIESE G.VABKS:verifiable attribute-based keyword search over outsourced encrypted data[C]//Proceedings of 2014 IEEE Conference on Computer Communications.Toronto,Canada:IEEE Press,2014:522-530.
[8] SUN Wenhai,YU Shucheng,LOU Wenjing,et al.Protecting your right:verifiable attribute-based keyword search with fine-grained owner-enforced search authorization in the cloud[J].IEEE Transactions on Parallel and Distributed Systems,2016,27(4):1187-1198.
[9] LIN Peng,JIANG Jie,CHEN Tieming.Application of keyword searchable encryption in cloud[J].Journal of Communications,2015,36(S1):259-265.(in Chinese) 林鹏,江颉,陈铁明.云环境下关键词搜索加密算法研究[J].通信学报,2015,36(S1):259-265.
[10] SU Hang,ZHU Zhiqiang,SUN Lei.Research on searchable attribute based encryption with mobile cloud storage[J].Application Research of Computers,2017,34(12):3753-3757,3766.(in Chinese) 苏航,朱智强,孙磊.移动云存储中基于属性的搜索加密方案研究[J].计算机应用研究,2017,34(12):3753-3757,3766.
[11] ZHONG Hong,CUI Jie.Efficient and verifiable muti-authority attribute based encryption scheme[J].Journal of Software,2018,29(7):2006-2017.(in Chinese) 仲红,崔杰.高效且可验证的多授权机构属性基加密方案[J].软件学报,2018,29(7):2006-2017.
[12] CAO Suzhen,DU Xialing,WANG Youchen.Multi-server verifiable attribute-based multi-keyword ranked retrieval scheme[J].Computer Engineering,2019,46(3):120-128.(in Chinese) 曹素珍,杜霞玲,王友琛.多服务器可验证的属性基多关键字排序检索方案[J].计算机工程,2019,46(3):120-128.
[13] CHEN Yanli,YANG Huashan.CP-ABE based searchable encryption with attribute revocation [J].Journal of Chongqing University of Posts and Telecommunications,2016,28(4):545-554.(in Chinese)陈燕俐,杨华山.可支持属性撤销的基于CP-ABE可搜索加密方案[J].重庆邮电大学学报,2016,28(4):545-554.
[14] WU Qiying,MA Jianfeng,SUN Hui,et al.Multi-keyword search over encrypted data with user revocation[J].Journal of Communications,2017,38(8):183-193.(in Chinese)伍祈应,马建峰,孙辉,等.支持用户撤销的多关键字密文查询方案[J].通信学报,2017,38(8):183-193.
[15] SUN Jin,WANG Xiaojing.Verifiable multi-keyword search encryption scheme with attribute revocation[J].Journal of Electronics and Information Technology,2019,41(1):58-65.(in Chinese)孙瑾,王小静.支持属性撤销的可验证多关键词搜索加密方案[J].电子与信息学报,2019,41(1):58-65.
[16] SHAO Qifeng,JIN Cheqing,ZHANG Zhao,et al.Blockchian:architecture and research progress[J].Chinese Journal of Computers,2018,41(5):969-987.(in Chinese)邵奇峰,金澈清,张召,等.区块链技术:架构及进展[J].计算机学报,2018,41(5):969-987.
[17] LI Huige,TIAN Haibo,ZHANG Fangguo,et al.Block chain based searchable symmetric encryption scheme[J].Computers and Electrical Engineering,2018,73:32-45.
[18] ZHANG Yinghui,HU Jiangang,et al.KSE:trustworthy keyword search over encrypted data with two-side[J].IEEE Access,2018,6:31077-31087.
[19] NIU Shufen,WANG Jinfeng,WANG Bobin,et al.Ciphertext sorting search scheme based on B+ tree index structure on blockchain[J].Journal of Electronics and Information Technology,2019,41(10):2409-2415.(in Chinese)牛淑芬,王金风,王伯彬,等.区块链上基于B+树索引结构的密文排序搜索方案[J].电子与信息学报,2019,41(10):2409-2415.
[20] GUO Lifeng,LU Bo.Efficient proxy re-encryption with keyword search scheme[J].Journal of Computer Research and Development,2014,51(6):1221-1228.(in Chinese)郭丽峰,卢波.有效的带关键字搜索的代理重加密方案[J].计算机研究与发展,2014,51(6):1221-1228.
[21] ZUO Cong SHAO Jun.CCA-secure ABE with outsourced decryption for fog computing[J].Future Generation Computer Systems,2018,78:730-738.
[22] HUANG Rufen,NONG Jiang,HUANG Zhenjie.An efficient certificateless blind signature scheme[J].Computer Engineering,2013,39(2):130-136.(in Chinese)黄茹芬,农强,黄振杰.一个高效的无证书盲签名方案[J].计算机工程,2013,39(2):130-136.

选择文件类型/文献管理软件名称

选择包含的内容