摘要
在云计算环境中,可搜索加密技术可以让云服务器直接在用户的数据密文上进行关键词搜索,同时尽量不泄露用户的数据和搜索条件信息。现有的对称可搜索加密方案视搜索模式和访问模式为必然泄露的信息,只要没有泄露其他信息,方案就是安全的。但研究表明,搜索模式和访问模式在一定条件下仍然会泄露明文或搜索条件的信息。文章给出了一种可隐藏搜索模式的对称可搜索加密方案,将明文中出现的单词进行分组,搜索结果相同的单词分为一组;同组单词在搜索时生成相同的陷门,从而使敌手无法区分。实验结果表明,该方案能有效地隐藏一半以上的单词的搜索模式,在文档长度越长的情况下,可隐藏搜索模式的单词比例越高;同时引入的客户端存储量不会显著增加。文章最后讨论了不同组单词隐藏搜索模式的思路。
In cloud computing environment, searchable encryption lets cloud server searching on users' encrypted data directly, without leaking the information of user data and searching criteria. Existing searchable symmetric encryption schemes believe that the access pattern and search pattern will be leaked inevitably, as long as no other information is leaked, the scheme will be secure. But recent research show that the acess pattern and search pattern can leak information about the user data and searching criteria under certain circumstance. In this paper, a new symmetric searchable encryption scheme which can hide search pattern is proposed. The scheme groups each distinct word appeared in user documents, lets the words with same searching results be in the same group, and constructs same trapdoors for the words in the same group, preventing the adversaries from distinguishing. The experiments show that the search pattern of at least one half of the words can be hidden. The proportion of search pattern hidden words will be increase as the size of the documents increasing, and the extra client side storage won't grow dramatically. Finally, a basic idea to hide search pattern of the words which have different search results is provided.
出处
《信息网络安全》
CSCD
2017年第1期38-42,共5页
Netinfo Security
基金
教育部高等学校博士学科点专项科研基金[20120073110094]
关键词
可搜索加密
搜索模式
信息隐藏
searchable encryption
search pattern
information hiding
