西安电子科技大学学报 ›› 2023, Vol. 50 ›› Issue (5): 156-165.doi: 10.19665/j.issn1001-2400.20230406

• 网络空间安全 • 上一篇    下一篇

面向ASPE的抗合谋攻击图像检索隐私保护方案

蔡英(),张猛(),李新(),张宇(),范艳芳()   

  1. 北京信息科技大学 计算机学院,北京 100101
  • 收稿日期:2023-01-14 出版日期:2023-10-20 发布日期:2023-11-21
  • 作者简介:蔡 英(1966—),女,教授,E-mail:ycai@bistu.edu.cn;|张 猛(1996—),男,北京信息科技大学硕士研究生,E-mail:2020020482@bistu.edu.cn;|李 新(1992—),男,北京信息科技大学硕士研究生,E-mail:2020020582@bistu.edu.cn;|张 宇(1997—),女,北京信息科技大学硕士研究生,E-mail:2020020480@bistu.edu.cn;|范艳芳(1979—),女,副教授,E-mail:fyfhappy@bistu.edu.cn
  • 基金资助:
    北京市自然科学基金(L192023);国家自然科学基金(61672106)

Anti-collusion attack image retrieval privacy protection scheme for ASPE

CAI Ying(),ZHANG Meng(),LI Xin(),ZHANG Yu(),FAN Yanfang()   

  1. Department of Computer Science and Technology,Beijing Information Science and Technology University,Beijing 100101,China
  • Received:2023-01-14 Online:2023-10-20 Published:2023-11-21

摘要:

现有的基于非对称内积标量保留加密算法(ASPE)实现了云计算下图像检索中的隐私保护,但由于检索时云服务提供商和检索用户不可信以及外部敌手的存在,无法抵抗恶意用户与云服务器的合谋攻击,可能导致包含敏感信息的图像数据泄露。针对多用户场景,提出了一种面向ASPE的抗合谋攻击图像检索隐私保护方案。首先,该方案通过代理重加密解决因向不可信用户传输私钥导致的图像密钥泄露问题;其次,在客户端添加对角矩阵加密解决云服务提供商和检索用户之间因合谋攻击导致的特征密钥泄露问题;最后,通过线性判别分析来解决局部敏感哈希构建索引时因降维导致的检索准确率下降问题。通过安全性分析证明,该方案是安全且有效的,不仅能够抵抗来自云服务提供商和不可信用户的合谋攻击、唯密文攻击、已知背景攻击和已知明文攻击,同时能够实现对检索过程中图像与私钥的保护。实验结果表明,所提方案在保护图像隐私及保证检索效率的前提下,密文域和明文域的检索精度仅相差约2%。

关键词: 图像检索, 隐私保护技术, 云计算, 合谋攻击, 局部敏感哈希

Abstract:

The existing algorithm based on Asymmetric Scalar-Product-Preserving Encryption (ASPE) realizes privacy protection in image retrieval under cloud computing.But due to untrustworthy cloud service providers and retrieval users during retrieval and the existence of an external adversary,it cannot resist the collusion attack of malicious users and cloud servers,which may lead to the leakage of image data containing sensitive information.Aiming at multi-user scenarios,an Anti-collusion attack image retrieval privacy protection scheme for ASPE is proposed.First,the scheme uses proxy re-encryption to solve the problem of image key leakage caused by transmitting private keys to untrusted users.Second,the feature key leakage problem between the cloud service provider and the retrieval user due to collusion attacks is solved by adding a diagonal matrix encryption at the client side.Finally,linear discriminant analysis is used to solve the problem of retrieval accuracy drop caused by dimensionality reduction when locality sensitive hashing is used to construct an index.The security analysis proves that the scheme is safe and effective and that it can not only resist collusion attacks from cloud service providers and untrusted users,ciphertext-only attacks,known background attacks and known plaintext attacks,but also realize protection of images and private keys during the process.Experimental results show that under the premise of protecting image privacy and ensuring retrieval efficiency,the retrieval accuracy of the proposed scheme in the ciphertext domain and that in the plaintext domain are only about 2% different.

Key words: image retrieval, privacy-preserving techniques, cloud computing, collusion attacks, locality sensitive hashing

中图分类号: 

  • TP309