Sortable Attribute-Based Searchable Encryption Scheme Under Cloud-Edge Collaboration

doi:10.19678/j.issn.1000-3428.0067398

Abstract

Abstract:

Cloud and edge computing technologies can effectively solve the complex storage and computing needs of the explosive growth of network edge traffic. However, after data outsourcing, users' sensitive information may be leaked due to incomplete trust in cloud and edge devices. An Attribute-Based Searchable Encryption(ABSE) scheme with cloud-edge collaboration is proposed to solve this problem. Cloud-edge collaboration technology is adopted to store many ciphertexts on the cloud server, and the corresponding encryption index is uploaded to the nearest edge node for multi-keyword search and auxiliary decryption to improve communication efficiency. The TF-IDF rule is used to return only the Top-k files that meet the users' needs in the search results, hence the multi-keyword sorting. The user attribute is divided into value and name, and only the attribute name is disclosed to protect the users' sensitive information by hiding the attribute value. At the same time, online/offline hybrid encryption technology is used to reduce the users' computing overhead. Based on DBDH and q-parallel DBDH hypothesis, the proposed scheme is proved to be INDistinguishable against Chosen Keyword Attack(IND-CKA) in the random prediction model. According to the analysis of experimental results, compared with a suboptimal scheme, the computational overhead of this scheme is reduced by 10% and 25%. Simultaneously, the scheme remains constant in the decryption stage and has higher efficiency and practicability of ciphertext retrieval.

Key words: edge computing, TF-IDF rule, Searchable Encryption(SE), attribute encryption, policy hiding

摘要：

云计算和边缘计算技术可以有效解决网络边缘流量爆炸式增长带来的巨大存储和计算需求，但数据外包后用户的敏感信息可能会因云端和边缘设备的不完全可信出现泄露问题。为了解决该问题，提出云边协同下可排序的属性基可搜索加密方案。采用云边协同技术，将大量的密文存储到云服务器，使与其对应的加密索引上传到距离最近的边缘节点进行多关键字搜索和辅助解密，提高通信效率。采用TF-IDF规则使搜索结果中仅返回最符合用户需求的Top-k文件，从而实现多关键字排序。将用户的属性分为属性值和属性名，仅公开属性名，从而通过隐藏属性值的方式达到保护用户敏感信息的目的，同时采用在线/离线混合加密技术降低用户计算开销。基于DBDH和q-parallel DBDH假设证明了该方案在随机预言模型中的选择关键字攻击下满足不可区分性。分析结果表明，该方案在加密和陷门生成阶段的计算开销相比于次优方案降低了10%和25%，同时在解密阶段保持恒定，具有更高的密文检索效率。

关键词: 边缘计算, TF-IDF规则, 可搜索加密, 属性加密, 策略隐藏

Zheng WANG, Suzhen CAO, Xiao ZHAO, Dawei ZHOU, Dandan XING. Sortable Attribute-Based Searchable Encryption Scheme Under Cloud-Edge Collaboration[J]. Computer Engineering, 2023, 49(12): 121-128.

王正, 曹素珍, 赵晓, 周大伟, 邢丹丹. 云边协同下可排序的属性基可搜索加密方案[J]. 计算机工程, 2023, 49(12): 121-128.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.19678/j.issn.1000-3428.0067398

http://www.ecice06.com/EN/Y2023/V49/I12/121

Figures/Tables 7

References 26

1	AGARWAL K, JHA A K. Intelligence and Internet of Things with 5G technology: application and development[C]//Proceedings of International Conference on Electronics and Renewable Systems. Washington D. C., USA: IEEE Press, 2022: 762-766.
2	丁庆丰, 李晋国. 一种物联网环境下的分布式异常流量检测方案. 计算机工程, 2022, 48 (8): 152- 159. URL
	DING Q F, LI J G. A distributed abnormal traffic detection scheme in Internet of Things environment. Computer Engineering, 2022, 48 (8): 152- 159. URL
3	谢娜, 谭文安, 曹彦, 等. 移动边缘计算中安全信息流建模与分析. 计算机工程, 2022, 48 (5): 35-42, 52. doi: 10.19678/j.issn.1000-3428.0062953
	XIE N, TAN W A, CAO Y, et al. Modeling and analysis of security information flow in mobile edge computing. Computer Engineering, 2022, 48 (5): 35-42, 52. doi: 10.19678/j.issn.1000-3428.0062953
4	MCENROE P, WANG S, LIYANAGE M. A survey on the convergence of edge computing and AI for UAVs: opportunities and challenges. IEEE Internet of Things Journal, 2022, 9 (17): 15435- 15459. doi: 10.1109/JIOT.2022.3176400
5	GONG F H. Design of distributed network mass data processing system based on cloud computing technology[C]//Proceedings of the 5th International Conference on I-SMAC(IoT in Social, Mobile, Analytics and Cloud). Washington D. C., USA: IEEE Press, 2021: 1218-1221.
6	SRIRAM G S. Edge computing vs. cloud computing: an overview of big data challenges and opportunities for large enterprises. International Research Journal of Modernization in Engineering Technology and Science, 2022, 4 (1): 1331- 1337.
7	CHANG L Y, ZHANG Z, LI P, et al. 6G-enabled edge AI for metaverse: challenges, methods, and future research directions. Journal of Communications and Information Networks, 2022, 7 (2): 107- 121. doi: 10.23919/JCIN.2022.9815195
8	SONG D X, WAGNER D, PERRIG A. Practical techniques for searches on encrypted data[C]//Proceedings of IEEE Symposium on Security and Privacy. Washington D. C., USA: IEEE Press, 2002: 44-55.
9	MIAO Y B, MA J F, LIU X M, et al. Attribute-based keyword search over hierarchical data in cloud computing. IEEE Transactions on Services Computing, 2020, 13 (6): 985- 998.
10	LI X H, TONG Q Y, ZHAO J W, et al. VRFMS: verifiable ranked fuzzy multi-keyword search over encrypted data. IEEE Transactions on Services Computing, 2023, 16 (1): 698- 710.
11	闫玺玺, 赵强, 汤永利, 等. 支持灵活访问控制的多关键字搜索加密方案. 西安电子科技大学学报, 2022, 49 (1): 55- 66. URL
	YAN X X, ZHAO Q, TANG Y L, et al. Multi-keyword search encryption scheme supporting flexible access control. Journal of Xidian University, 2022, 49 (1): 55- 66. URL
12	SUN J, REN L L, WANG S P, et al. Multi-keyword searchable and data verifiable attribute-based encryption scheme for cloud storage. IEEE Access, 2019, 7, 66655- 66667. doi: 10.1109/ACCESS.2019.2917772
13	NIU S F, CHEN L X, WANG J F, et al. Electronic health record sharing scheme with searchable attribute-based encryption on blockchain. IEEE Access, 2019, 8, 7195- 7204.
14	SU J, ZHANG L Y, MU Y. BA-RMKABSE: blockchain-aided ranked multi-keyword attribute-based searchable encryption with hiding policy for smart health system. Future Generation Computer Systems, 2022, 132, 299- 309. doi: 10.1016/j.future.2022.01.021
15	WU Y L, LI X Y, LIU Z. Attribute-based keyword searchable encryption scheme for multi-authority in cloud storage[C]//Proceedings of the 22nd International Conference on Communication Technology. Washington D. C., USA: IEEE Press, 2023: 933-939.
16	SUN Y Q, HAN L D, BI J G, et al. Verifiable attribute-based keyword search scheme over encrypted data for personal health records in cloud. Journal of Cloud Computing, 2023, 12 (1): 1- 13.
17	VARRI U S, PASUPULETI S K, KADAMBARI K V. Practical verifiable multi-keyword attribute-based searchable signcryption in cloud storage. Journal of Ambient Intelligence and Humanized Computing, 2023, 14 (9): 11455- 11467.
18	MAMTA, GUPTA B B. An efficient KP design framework of attribute-based searchable encryption for user level revocation in cloud. Concurrency and Computation: Practice and Experience, 2020, 32 (18): e5291.
19	ZIEGLER D, MARSALEK A, PALFINGER G. White-box traceable attribute-based encryption with hidden policies and outsourced decryption[C]//Proceedings of the 20th International Conference on Trust, Security and Privacy in Computing and Communications. Washington D. C., USA: IEEE Press, 2021: 331-338.
20	LING J T, GU H X, WANG H J, et al. An efficient ciphertext index retrieval scheme based on edge computing framework. IEEE Access, 2021, 9, 37975- 37988.
21	TAN X D, CHENG W, HUANG H P, et al. Edge-aided searchable data sharing scheme for IoV in the 5G environment. Journal of Systems Architecture, 2023, 136, 102834.
22	DEEBAK B D, MEMON F H, DEV K, et al. AI-enabled privacy-preservation phrase with multi-keyword ranked searching for sustainable edge-cloud networks in the era of industrial IoT. Ad Hoc Networks, 2022, 125, 102740.
23	陈虹, 侯宇婷, 郭鹏飞, 等. 可公开验证的高效无证书聚合签密方案. 计算机工程, 2022, 48 (10): 146- 157. URL
	CHEN H, HOU Y T, GUO P F, et al. Efficient certificateless aggregate signcryption scheme with public verification. Computer Engineering, 2022, 48 (10): 146- 157. URL
24	MAMTA, GUPTA B B, LI K C, et al. Blockchain-assisted secure fine-grained searchable encryption for a cloud-based healthcare cyber-physical system. IEEE/CAA Journal of Automatica Sinica, 2021, 8 (12): 1877- 1890.
25	YANG X H, ZHANG C S. Blockchain-based multiple authorities attribute-based encryption for EHR access control scheme. Applied Sciences, 2022, 12 (21): 10812.
26	LAN F. Research on text similarity measurement hybrid algorithm with term semantic information and TF-IDF method[EB/OL]. [2023-03-17]. https://www.hindawi.com/journals/am/2022/7923262/.

[1]	Yuqi BAN, Liguo DUAN, Haoyu WEN, Aiping LI, Jumin ZHAO. Research on Mobility-Aware Computation Offloading and Resource Allocation Strategy [J]. Computer Engineering, 2023, 49(8): 163-173.
[2]	Jing MEI, Longbao DAI, Zhao TONG, Xin DENG, Jiake WANG. Adaptive Offloading Algorithm Based on Lyapunov Optimization Under Resource Constraints [J]. Computer Engineering, 2023, 49(7): 34-46.
[3]	Xingjuan CAI, Yanheng GUO, Tianhao ZHAO, Wensheng ZHANG. Edge Computing Service Deployment and Task Offloading Based on Evolutionary Multitasking [J]. Computer Engineering, 2023, 49(7): 1-9.
[4]	LI Qiang, YI Jinhui, DU Tingting, WANG Shengchun. Dependent Task Offloading and Resource Allocation Based on A3C in Mobile Edge Computing [J]. Computer Engineering, 2023, 49(6): 42-52.
[5]	LUO Huafeng, SHEN Yifei, RUAN Lixiang, DU Qiwei, ZHENG Xiang, CHEN Zhiqi, ZHANG Sheng. Frame Offloading Scheduling Algorithm for Real-time Object Detection in Edge Environment [J]. Computer Engineering, 2023, 49(5): 295-301,309.
[6]	WANG Yicheng, GUO Rui, MENG Tong, LIU Yingfei. Privacy Protection Scheme Based on Proxy Blind Signcryption in Smart Grid [J]. Computer Engineering, 2023, 49(5): 150-164.
[7]	SHI Xiaorong, LI Aiping, NIU Baoning, DUAN Liguo, ZHAO Jumin. Research on Two-Level Content Caching for Cloud-Edge Collaboration Considering Personalized Requirements [J]. Computer Engineering, 2023, 49(5): 223-230.
[8]	SANG Yongxuan, WEI Jiangpo, WANG Bo, SONG Ying. Hybrid Heuristic Task Offloading Algorithm with Edge Caching Mechanism [J]. Computer Engineering, 2023, 49(4): 149-158.
[9]	WANG Hui, ZHANG Yuhao, SHEN Zihao, LIU Peiqian, CAI Shangqing, LIU Kun. Privacy-Enhanced Multi-Task Allocation Mechanism in Edge Cloud Collaborative Crowdsening [J]. Computer Engineering, 2023, 49(4): 52-60.
[10]	GUO Yiyu, ZHOU Luoyu. Lightweight Design of Safety Helmet Wearing Detection Network Model [J]. Computer Engineering, 2023, 49(4): 312-320.
[11]	WU Maoqiang, HUANG Xumin, KANG Jiawen, YU Rong. Research on Differential Privacy Protection for Collaborative Vehicle-Road Inference [J]. Computer Engineering, 2022, 48(7): 29-35.
[12]	ZHANG Chao, PENG Changgen, DING Hongfa, XU Dequan. Searchable Encryption Scheme Based on China State Cryptography Standard SM9 [J]. Computer Engineering, 2022, 48(7): 159-167.
[13]	LI Li, DU Huina, LI Tao. Blockchain Supervisable Privacy Protection Scheme Based on Group Signature and Attribute Encryption [J]. Computer Engineering, 2022, 48(6): 132-138.
[14]	LUO Cheng, CUI Yong, LIN Yusong. Container Migration Method Based on Bandwidth Prediction and Adaptive Compression [J]. Computer Engineering, 2022, 48(5): 200-207,214.
[15]	XIE Na, TAN Wenan, CAO Yan, ZHAO Lu. Modeling and Analysis of Security Information Flow in Mobile Edge Computing [J]. Computer Engineering, 2022, 48(5): 35-42,52.

Please choose a citation manager

Content to export