支持快速范围搜索的公钥可搜索加密方案

doi:10.19665/j.issn1001-2400.20240908

西安电子科技大学学报 ›› 2024, Vol. 51 ›› Issue (6): 204-214.doi: 10.19665/j.issn1001-2400.20240908

• 计算机科学与技术 & 网络空间安全 • 上一篇

支持快速范围搜索的公钥可搜索加密方案

丁勇¹^,²(), 文能翔³(), 王海燕⁴(), 罗富财⁵()

1.桂林电子科技大学计算机科学与信息安全学院,广西桂林 541004
2.香港科技大学高等教育学院网络空间科技研究所,香港 000000
3.桂林电子科技大学数学与计算科学学院,广西桂林 541004
4.鹏城实验室新型网络研究部,广东深圳 518000
5.浙江工商大学计算机科学与技术学院,浙江杭州 310018

收稿日期:2022-11-30 出版日期:2022-11-30 发布日期:2022-11-30
通讯作者: 王海燕(1984—),女,鹏城实验室博士研究生,E-mail:wanghy01@pcl.ac.cn
作者简介:丁勇(1975—),男,教授,E-mail:stone_dingy@126.com;
文能翔(1998—),男,桂林电子科技大学硕士研究生,E-mail:1961357181@qq.com;
罗富财(1991—),男,浙江工商大学博士研究生,E-mail:lfucai@126.com
基金资助:
广西自然科学基金(2022GXNSFBA035650);广西科技计划项目(桂AA22068067);国家自然科学基金(61962012);广西自然科学基金(2019GXNSFGA245004);鹏城实验室重大任务项目(PCL2024A05)

Public-key searchable encryption scheme for supporting fast range search

DING Yong¹^,²(), WENG Nengxiang³(), WANG Haiyan⁴(), LUO Fucai⁵()

1. College of Computer Science & Information Security,Guilin University of Electronic Technology,Guilin 541004,China
2. School of Advanced Education,Hong Kong University of Science and Technology,Institute of Cyber Space Technology,Hong Kong 000000,China
3. School of Mathematics & Computer Science,Guilin University of Electronic Technology,Guilin 541004,China
4. Department of New Network,Peng Cheng Laboratory,Shenzhen 518000,China
5. College of Computer Science and Technology,Zhejiang Gongshang University,Hangzhou 310018,China

Received:2022-11-30 Online:2022-11-30 Published:2022-11-30

摘要/Abstract

摘要：

近年来,云存储服务逐渐成为数据存储的主流方式,但同时也带来了数据隐私保护的挑战。公钥可搜索加密技术允许用户在加密数据上执行关键词搜索,而无需解密数据,从而在保护隐私的同时提供了数据检索的便利,因此得到了广泛应用。但目前大多数可搜索加密方案存在范围搜索效率低与难以抵御关键字猜测攻击的问题。为解决这一问题,利用0-1编码构造了一种支持高效范围搜索的公钥可搜索加密方案,并引入公钥认证使发送者与接收者两方协同加密,防止第三方构造有效密文与陷门,以保证方案的安全性。为提高搜索计算的效率,利用陷门搜索记录构建密文索引,对新旧陷门的搜索范围进行比较并结合密文索引,可减少需比对密文数量,从而实现快速搜索。安全分析表明,该方案可以抵御云服务器的关键字猜测攻击,实验结果表明,该方案的密文索引能有效提高密文搜索的效率。

关键词: 公钥可搜索加密, 0-1编码, 公钥认证, 密文索引, 范围搜索

Abstract:

In recent years,cloud storage services have gradually become the mainstream method for data storage,but they have also brought challenges to data privacy protection.Public Key Searchable Encryption technology allows users to perform keyword searches on encrypted data without decrypting it,thereby providing the convenience of data retrieval while protecting privacy,so that it has been widely used.However,most searchable encryption schemes currently suffer from low efficiency in range searches and vulnerability to keyword guessing attacks.To address this issue,this paper constructs a public-key searchable encryption scheme that supports efficient range searches using 0-1 encoding,and introduces public key authentication to enable collaborative encryption between sender and receiver,thus preventing third parties from constructing valid ciphertexts and trapdoors and ensuring the security of the scheme.To improve the efficiency of search computations,this paper constructs ciphertext indices using trapdoor search records,comparing the search ranges of new and old trapdoors and combining ciphertext indices to reduce the number of ciphertexts that need to be compared,thus achieving fast searches.Security analysis shows that this scheme can resist keyword guessing attacks from cloud servers,and experimental results demonstrate that the ciphertext indices of this scheme can effectively improve the efficiency of ciphertext searches.

Key words: public-key searchable encryption, 0-1 encoding, public-key authentication, ciphertext index, range search

中图分类号:

TN918.4

丁勇, 文能翔, 王海燕, 罗富财. 支持快速范围搜索的公钥可搜索加密方案[J]. 西安电子科技大学学报, 2024, 51(6): 204-214.

DING Yong, WENG Nengxiang, WANG Haiyan, LUO Fucai. Public-key searchable encryption scheme for supporting fast range search[J]. Journal of Xidian University, 2024, 51(6): 204-214.

图/表 7

图1

图2

图3

表1

图4

图5

图6

参考文献 28

[1]	SONG D, WAGNER D, PERRIG A. Practical Techniques for Searches on Encrypted Data[C]// Proceeding 2000 IEEE Symposium on Security and Privacy. Piscataway:IEEE. 2000:44-55.
[2]	BONEH D, CRESCENZO G D, OSTROVSKY R. et al. Public Key Encryption with Keyword Search[C]// Advances in Cryptology-EUROCRYPT 2004. Berlin:Springer. 2004:506-522.
[3]	BAEK, SAFAVI-NAINIR, SUSILOW. Public-key Encryption with Keyword Search Revisited[C]// International Conference on Computational Science and Its Applications. Berlin:Springer, 2008:1249-1259.
[4]	ZHAO F M, NISHIDE T, SAKURAI K. Multi-User Keyword Search Scheme for Secure Data Sharing with Fine-Grained Access Control[C]// International Conference on Information Security and Cryptology-ICISC 2011. Berlin:Springer.2012:406-418.
[5]	CAO N, WANG C, LI M, et al. Privacy-Preserving Multikeyword Ranked Search over Encrypted Cloud Data[J]. IEEE Transactions on Parall and Distributed Systems, 2014, 25(1):222-233.
[6]	RHEE H S, SUSILO W, KIM H J. Secure Searchable Public Key Encryption Scheme against Keyword Guessing Attacks[J]. IEICE Electronics Express, 2009, 6(5):237-243.
[7]	RHEE H S, PARK R H, SUSILO R, et al. Trapdoor Security ina Searchable Public-key Encryption Scheme with a Designated Tester[J]. Journal of Systems & Software, 2010, 83(5):763-771.
[8]	KAUSHIK K, VARADHARAJAN V, NALLUSANY R. Multi-user Attribute Based Searchable Encryption[C]// IEEE 14th International Conference on Mobile Data Management. Piscataway:IEEE.2013:200-205.
[9]	JIANG P, MU Y, GUO F C, et al. Online/offline Ciphertext Retrieval on ResourceConstrained Devices[J]. The Computer Journal, 2016, 59(7):955-969.
[10]	HUANG Q, LI H B. An Efficient Public-key Searchable Encryption Scheme Secure against Inside Keyword Guessing Attacks[J]. Information Sciences, 2017, 403:1-14.
[11]	YANG L, LI J. Constructing Certificateless Encryption with Keyword Search against Outside and Inside Keyword Guessing Attacks[J]. China Communications. 2019, 16(7):156-173.
[12]	陈宁江, 刘灿, 黄汝维, 等. 云环境中抵御内部关键字猜测攻击的快速公钥可搜索加密方案[J]. 电子与信息学报, 2021, 43(2):467-474.
	CHEN Ningjiang, LIU Can, HUANG Ruwei, et al. Fast Public Key Searchable Encryption Scheme Resisting Internal Keyword Guessing Attacks in Cloud Environments[J]. Journal of Electronics & Information Technology, 2021, 43(2):467-474.
[13]	WANG H Y, Li Y, WILLY S, et al. A Fast and Flexible Attribute-based Searchable Encryption Scheme Supporting Multi-search Mechanism in Cloud Computing[J]. Computer Standards & Interfaces, 2022, 82:103635.
[14]	闫玺玺, 赵强, 汤永利, 等. 支持灵活访问控制的多关键字搜索加密方案[J]. 西安电子科技大学学报, 2022, 49(1):55-66.
	YAN Xixi, ZHAO Qiang, TANG Yongli, et al. Multi-keyword Search Encryption Scheme Supporting Flexible Access Control[J]. Journal of Xidian University, 2022, 49(1):55-66.
[15]	王凯文, 王树兰, 王海燕, 等. 一种支持属性撤销的top-k多关键词密文检索方案[J]. 西安电子科技大学学报, 2022, 49(1):26-34.
	WANG Kaiwen, WANG Shulan, WANG Haiyan, et al. Top-k Multi-Keyword Ciphertext Retrieval Scheme Supporting Attribute Revocation[J]. Journal of Xidian University, 2022, 49(1):26-34.
[16]	何雨, 田有亮, 万良, 等. 支持结果验证的多服务器动态可搜索加密方案[J]. 西安电子科技大学学报, 2022, 49(5):189-200.
	HE Yu, TIAN Youliang, WAN Liang, et al. Multi-server Dynamic Searchable Encryption Scheme Supporting Result Verification[J]. Journal of Xidian University, 2022, 49(5):189-200.
[17]	LUO F C, WANG H Y, LIN C, et al. ABAEKS:Attribute-based Authenticated Encryption with Keyword Search Over Outsourced Encrypted Data[J]. IEEE Transactions on Information Forensics and Security, 2023, 18:4970-4983.
[18]	CHEN B W, XIANG T, HE D, et al. BPVSE:Publicly Verifiable Searchable Encryption for Cloud-Assisted Electronic Health Records[J]. IEEE Transactions on Information Forensics and Security, 2023, 18:3171-3184.
[19]	ZHANG Y H, ZHU T, GUO R, et al. Multi-Keyword Searchable and Verifiable Attribute-Based Encryption Over Cloud Data[J]. IEEE Transactions on Cloud Computing, 2023, 11(1):971-983.
[20]	LI H B, HUANG Q, HUANG J Y, et al. Public-Key Authenticated Encryption with Keyword Search Supporting Constant Trapdoor Generation and Fast Search[J]. IEEE Transactions on Information Forensics and Security, 2023, 18:396-410.
[21]	LI J G, SHI Y R, ZHANG Y C. Searchable Ciphertext-policy Attribute-based Encryption with Revocation in Cloud Storage[J]. International Journal of Communication Systems, 2017, 30(1):1-13.
[22]	YIN H, ZHANG J X, XIONG Y Q, et al. CP-ABSE:A Ciphertext-policy Attribute-based Searchable Encryption Scheme[J]. IEEE Access, 2019, 7:5682-5694.
[23]	曹来成, 王玮婷, 康一帆, 等. 属性盲化的模糊可搜索加密云存储方案[J]. 北京理工大学学报, 2019(7):706-713.
	CAO Laicheng, WANG Weiting, KANG Yifan, et al. Fuzzy Searchable Encrypted Cloud Storage Scheme with Attribute Blindness[J]. Transaction of Beijing Institute of Technology, 2019, 39(7):706-713.
[24]	TOMIDA K. A Transformation from Attribute-based Encryption to Associative Searchable Encryption by Using Hash Function[J]. IEICE Technical Report Information & Communication System Security, 2015, 114:175-179.
[25]	施国峰, 张兴兰. 面向云存储的支持范围密文搜索的属性基加密方案[J]. 信息网络安全, 2020, 20(6):75-81.
	SHI Guofeng, ZHANG Xinglan. Attribute-Based Encryption Scheme Supporting Range Ciphertext Search for Cloud Storage[J]. Information Network Security, 2020, 20(6):75-81.
[26]	LI Y, WANG H Y, WANG S L, et al. Attribute-Based Searchable Encryption Scheme Supporting Efficient Range Search in Cloud Computing[C]// 2021 IEEE Conference on Dependable and Secure Computing(DSC). Piscataway:IEEE. 2021:1-8.
[27]	ZENGM, QIAN H, CHEN J et al. Forward Secure Public-key Encryption with Keyword Search for Outsourced Cloud Storage[J]. IEEE Transactions on Cloud Computing, 2022, 10(1):426-438.
[28]	LIN H Y, TZENG W. An Efficient Solution to The Millionaires Problem Based on Homomorphic Encryption[C]// International Conference on Applied Cryptography and Network Security. Berlin:Springer. 2005:456-466.

	文中方案	文献[25]	文献[13]
Enc	≤nH+nMul₁+ (3n+1)Exp	(n+1)H+Exp+nPair+Mul₂	H+Mul₁+4Exp
TrapGen	2nH+(4n+1)Exp	≤2nH+2nExp	(b-a+1)H+Mul₁+2(b-a+2)Exp
Search	≤2n²Pair	≤2n²H+2Mul₂+(2n²+2)Pair	4(b-a+1)Mul₁+2(b-a+1)Exp +(2(b-a)+3)Pair

支持快速范围搜索的公钥可搜索加密方案

Public-key searchable encryption scheme for supporting fast range search

RichHTML

PDF (PC)

赞

可视化

摘要/Abstract

引用本文

使用本文

图/表 7

参考文献 28

相关文章 15

Metrics

本文评价

推荐阅读 0

[1]	李雪莲, 陈卓皓. LowMC在BGV全同态加密环境下的噪声评估[J]. 西安电子科技大学学报, 2024, 51(3): 182-193.
[2]	张峰, 刘正斌, 张晶, 张文政. 一种计算ARX密码差分—线性偏差的新方法[J]. 西安电子科技大学学报, 2024, 51(2): 211-223.
[3]	崔圆佑,王绪安,郎讯,涂正,苏昀暄. 一种改进的短签名云数据审计方案[J]. 西安电子科技大学学报, 2023, 50(5): 132-141.
[4]	樊婷,冯伟,韦永壮. 一种大状态轻量级密码S盒的设计与分析[J]. 西安电子科技大学学报, 2023, 50(4): 170-179.
[5]	刘亚,宫佳欣,赵逢禹. 加密算法Simpira v2的不可能差分攻击[J]. 西安电子科技大学学报, 2022, 49(5): 201-212.
[6]	赵毅强,曹宇文,何家骥,马浩诚,刘燕江,叶茂. 抗电磁侧信道攻击随机预混淆逻辑单元设计[J]. 西安电子科技大学学报, 2022, 49(4): 167-175.
[7]	王凯文,王树兰,王海燕,丁勇. 一种支持属性撤销的top-k多关键词密文检索方案[J]. 西安电子科技大学学报, 2022, 49(1): 26-34.
[8]	杨海滨,李瑞峰,易铮阁,钮可,杨晓元. 无双线性对的高效云存储数据审计方案[J]. 西安电子科技大学学报, 2022, 49(1): 47-54.
[9]	叶涛,韦永壮,李灵琛. KNOT认证加密算法的零和区分器分析[J]. 西安电子科技大学学报, 2021, 48(1): 76-86.
[10]	牛志华;李政;李哲;辛明军. 2ⁿ周期优秀二元序列生成及其特性分析[J]. J4, 2014, 41(1): 130-134.
[11]	杜小妮1;2;陈智雄1;3;陈汝伟1;肖国镇1. 一类新的6次剩余序列的自相关函数 [J]. J4, 2007, 34(4): 642-646.
[12]	杜小妮1;2;陈智雄1;3;陈汝伟1;肖国镇1. 一类新的6次剩余序列的自相关函数 [J]. J4, 2007, 34(4): 642-646.
[13]	闫统江(1;2);范凯(1);杜小妮(1;3);肖国镇(1). 二元W-广义割圆序列的线性复杂度[J]. J4, 2006, 33(4): 617-621.
[14]	马华(1);杨波(2). 改进的基于修改RSA的叛逆者追踪方案[J]. J4, 2006, 33(3): 422-424.
[15]	苏加军;刘景美;王新梅. 一种改进的动态叛徒追踪方案[J]. J4, 2005, 32(5): 786-789.