抗内部关键词猜测攻击的高效公钥可搜索加密方案
|
摘要
云环境下,如何对用户加密数据实现高效检索是学术界的研究热点。现有大部分公钥可搜索加密方案不能有效抵御由云服务器发起的内部关键词猜测攻击(Inside Keyword Guessing Attack,IKGA),而抗IKGA方案存在效率不高,以及相同关键词对应搜索陷门相同导致的关键词统计信息泄露等问题。鉴于此,提出了一个新的高效抗IKGA的公钥可搜索加密方案,并基于变形DLIN(Decision Linear Problem)假设,以随机预言机模型证明了新方案满足内部关键词猜测攻击下的语义安全。新方案中,搜索陷门包含随机数且相同关键词的搜索陷门不同。与其他PEKS方案相比,新方案减少了双线性对运算的使用次数,因此具有更大的性能优势。
In the cloud environment,how to search users' encrypted data efficiently is the research hotspot in academic circle.Most current public-key searchable encryption schemes cannot effectively resist the Inside Keyword Guessing Attack(IKGA) launched by cloud servers,while the existing anti-IKGA schemes suffer the problems of low efficiency or the same search trapdoors generation algorithm for same keyword,which would reveal statistics information of keywords.This paper proposed a new efficient anti-IKGA public-key searchable encryption scheme,in which the search trapdoor is generated by a non-deterministic algorithm.Based on the modified DLIN(Decision Linear Problem) assumption,the new scheme is certified to satisfy semantic security against IKGA in the random oracle model.In the new scheme,the trapdoors are generated with random numbers thus same keyword has various trapdoors.Compared with other PEKS schemes,the new scheme reduces the number of bilinear pairing operations and thus has better performance advantages.
In the cloud environment,how to search users' encrypted data efficiently is the research hotspot in academic circle.Most current public-key searchable encryption schemes cannot effectively resist the Inside Keyword Guessing Attack(IKGA) launched by cloud servers,while the existing anti-IKGA schemes suffer the problems of low efficiency or the same search trapdoors generation algorithm for same keyword,which would reveal statistics information of keywords.This paper proposed a new efficient anti-IKGA public-key searchable encryption scheme,in which the search trapdoor is generated by a non-deterministic algorithm.Based on the modified DLIN(Decision Linear Problem) assumption,the new scheme is certified to satisfy semantic security against IKGA in the random oracle model.In the new scheme,the trapdoors are generated with random numbers thus same keyword has various trapdoors.Compared with other PEKS schemes,the new scheme reduces the number of bilinear pairing operations and thus has better performance advantages.
引文
[1] SONG D X,WAGNER D,PERRIG A.Practical Techniques for Searches on Encrypted Data[C]//IEEE Symposium on Security &Privacy.Berkeley,CA,USA:IEEE Computer Society,2000:44-55.
[2] BONEH D,CRESCENZO G D,OSTROVSKY R,et al.Public Key Encryption with Keyword Search[C]//International Conference on the Theory and Applications of Cryptographic Techniques.Heidelberg,Berlin:Springer,2004:506-522.
[3] DONG J P,KIM K,LEE P J.Public Key Encryption with Conjunctive Field Keyword Search[C]//International Conference on Information Security Applications.Heidelberg,Berlin:Springer,2004:73-86.
[4] ZHANG R,XUE R,LIU L,et al.Oblivious Multi-Keyword Search for Secure Cloud Storage Service[C]//IEEE Internatio-nal Conference on Web Services.Honolulu,Hawaii,USA:IEEE Computer Society,2017:269-276.
[5] CHANG Y J,WU J L.Multi-user Searchable Encryption Scheme with Constant-Size Keys[C]//IEEE International Symposium on Cloud and Service Computing.Kanazawa,Japan:IEEE,2018:98-103.
[6] BYUN J,RHEE H,PARK H A,et al.Off-Line Keyword Guessing Attacks on Recent Keyword Search Schemes over Encrypted Data[J].Lecture Notes in Computer Science,2006,4165:75-83.
[7] JEONG I R,KWON J O,HONG D,et al.Constructing PEKS schemes secure against keyword guessing attacks is possible?[J].Computer Communications,2009,32(2):394-396.
[8] BAEK J,SAFAVINAINI R,SUSILO W.Public key encryption with keyword search revisited[C]//International conference on Computational Science and Its Applications.Heidelberg,Berlin:Springer,2008:1249-1259.
[9] RHEE H S,PARK J H,SUSILO W,et al.Trapdoor security in a searchable public-key encryption scheme with a designated tester[J].Journal of Systems & Software,2010,83(5):763-771.
[10] RHEE H S.Secure searchable public key encryption scheme against keyword guessing attacks[J].Ieice Electronics Express,2009,6(5):237-243.
[11] LU Y,WANG G,LI J,et al.Efficient designated server identity-based encryption with conjunctive keyword search[J].Annals of Telecommunications,2017,72(5/6):1-12.
[12] WANG C H,TU T Y.Keyword Search Encryption Scheme Resistant Against Keyword-Guessing Attack by the Untrusted Server[J].Journal of Shanghai Jiaotong University(Science),2014,19(4):440-442.
[13] SUN L,XU C,ZHANG M,et al.Secure searchable public key encryption against insider keyword guessing attacks from indistinguishability obfuscation[J].Science China(Information Scie-nces),2018,61(3):1-3.
[14] HUANG Q,LI H.An efficient public-key searchable encryption scheme secure against inside keyword guessing attacks [J].Information Sciences,2017,403-404:1-14.
[15] BONEH D,BOVEN X,SHACHAM H.Short Group Signatures[C]//International Cryptology Conference.Heidelberg,Berlin:Springer,2004:41-55.
[16] SHAO Z Y,YANG B.On security against the server in designated tester public key encryption with keyword search[J].Information Processing Letters,2015,115(12):957-961.
[2] BONEH D,CRESCENZO G D,OSTROVSKY R,et al.Public Key Encryption with Keyword Search[C]//International Conference on the Theory and Applications of Cryptographic Techniques.Heidelberg,Berlin:Springer,2004:506-522.
[3] DONG J P,KIM K,LEE P J.Public Key Encryption with Conjunctive Field Keyword Search[C]//International Conference on Information Security Applications.Heidelberg,Berlin:Springer,2004:73-86.
[4] ZHANG R,XUE R,LIU L,et al.Oblivious Multi-Keyword Search for Secure Cloud Storage Service[C]//IEEE Internatio-nal Conference on Web Services.Honolulu,Hawaii,USA:IEEE Computer Society,2017:269-276.
[5] CHANG Y J,WU J L.Multi-user Searchable Encryption Scheme with Constant-Size Keys[C]//IEEE International Symposium on Cloud and Service Computing.Kanazawa,Japan:IEEE,2018:98-103.
[6] BYUN J,RHEE H,PARK H A,et al.Off-Line Keyword Guessing Attacks on Recent Keyword Search Schemes over Encrypted Data[J].Lecture Notes in Computer Science,2006,4165:75-83.
[7] JEONG I R,KWON J O,HONG D,et al.Constructing PEKS schemes secure against keyword guessing attacks is possible?[J].Computer Communications,2009,32(2):394-396.
[8] BAEK J,SAFAVINAINI R,SUSILO W.Public key encryption with keyword search revisited[C]//International conference on Computational Science and Its Applications.Heidelberg,Berlin:Springer,2008:1249-1259.
[9] RHEE H S,PARK J H,SUSILO W,et al.Trapdoor security in a searchable public-key encryption scheme with a designated tester[J].Journal of Systems & Software,2010,83(5):763-771.
[10] RHEE H S.Secure searchable public key encryption scheme against keyword guessing attacks[J].Ieice Electronics Express,2009,6(5):237-243.
[11] LU Y,WANG G,LI J,et al.Efficient designated server identity-based encryption with conjunctive keyword search[J].Annals of Telecommunications,2017,72(5/6):1-12.
[12] WANG C H,TU T Y.Keyword Search Encryption Scheme Resistant Against Keyword-Guessing Attack by the Untrusted Server[J].Journal of Shanghai Jiaotong University(Science),2014,19(4):440-442.
[13] SUN L,XU C,ZHANG M,et al.Secure searchable public key encryption against insider keyword guessing attacks from indistinguishability obfuscation[J].Science China(Information Scie-nces),2018,61(3):1-3.
[14] HUANG Q,LI H.An efficient public-key searchable encryption scheme secure against inside keyword guessing attacks [J].Information Sciences,2017,403-404:1-14.
[15] BONEH D,BOVEN X,SHACHAM H.Short Group Signatures[C]//International Cryptology Conference.Heidelberg,Berlin:Springer,2004:41-55.
[16] SHAO Z Y,YANG B.On security against the server in designated tester public key encryption with keyword search[J].Information Processing Letters,2015,115(12):957-961.