Privacy preserving search services against online attack
Searchable functionality is provided in many online services such as mail services or outsourced data storage. To protect users privacy, data in these services is usually stored after being encrypted using searchable encryption. This enables the data user to securely search encrypted data from a rem...
Saved in:
| Main Authors: | , , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2020
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/5958 https://ink.library.smu.edu.sg/context/sis_research/article/6961/viewcontent/Privacy_Preserving_Search_2020_Ning_av.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-6961 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-69612021-05-24T07:25:21Z Privacy preserving search services against online attack ZHAO, Yi NIAN, Jianting LIANG, Kaitai ZHAO, Yanqi CHEN, Liqun YANG, Bo Searchable functionality is provided in many online services such as mail services or outsourced data storage. To protect users privacy, data in these services is usually stored after being encrypted using searchable encryption. This enables the data user to securely search encrypted data from a remote server without leaking data and query information. Public key encryption with keyword search is one of the research branches of searchable encryption; this provides privacy-preserving searchable functionality for applications such as encrypted email systems. However, it has an inherent vulnerability in that the information of a query may be leaked using a keyword guessing attack. Most of existing works aim to make the system resistant to offline keyword guessing, but this does not protect against online attacks on real world services. In this paper, we move a step forward to present a generic framework able to resist online keyword guessing attack using a server-assisted model. Specifically, we design a novel primitive C mirrored all-but-one lossy encryption, which can prevent a specific user from generating valid encryptions. This primitive can be seen as an access control on encryption ability. Combining searchable encryption technique with the new primitive makes online keyword guessing attack impossible for the specified user, even if the attack is launched online. We further give formal security analysis for the generic framework, and a concrete implementation with efficiency analysis to show that our design is practical. 2020-08-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/5958 info:doi/10.1016/j.cose.2020.101836 https://ink.library.smu.edu.sg/context/sis_research/article/6961/viewcontent/Privacy_Preserving_Search_2020_Ning_av.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Keyword search Encrypted data Security Online keyword guessing attack Information Security |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Keyword search Encrypted data Security Online keyword guessing attack Information Security |
| spellingShingle |
Keyword search Encrypted data Security Online keyword guessing attack Information Security ZHAO, Yi NIAN, Jianting LIANG, Kaitai ZHAO, Yanqi CHEN, Liqun YANG, Bo Privacy preserving search services against online attack |
| description |
Searchable functionality is provided in many online services such as mail services or outsourced data storage. To protect users privacy, data in these services is usually stored after being encrypted using searchable encryption. This enables the data user to securely search encrypted data from a remote server without leaking data and query information. Public key encryption with keyword search is one of the research branches of searchable encryption; this provides privacy-preserving searchable functionality for applications such as encrypted email systems. However, it has an inherent vulnerability in that the information of a query may be leaked using a keyword guessing attack. Most of existing works aim to make the system resistant to offline keyword guessing, but this does not protect against online attacks on real world services. In this paper, we move a step forward to present a generic framework able to resist online keyword guessing attack using a server-assisted model. Specifically, we design a novel primitive C mirrored all-but-one lossy encryption, which can prevent a specific user from generating valid encryptions. This primitive can be seen as an access control on encryption ability. Combining searchable encryption technique with the new primitive makes online keyword guessing attack impossible for the specified user, even if the attack is launched online. We further give formal security analysis for the generic framework, and a concrete implementation with efficiency analysis to show that our design is practical. |
| format |
text |
| author |
ZHAO, Yi NIAN, Jianting LIANG, Kaitai ZHAO, Yanqi CHEN, Liqun YANG, Bo |
| author_facet |
ZHAO, Yi NIAN, Jianting LIANG, Kaitai ZHAO, Yanqi CHEN, Liqun YANG, Bo |
| author_sort |
ZHAO, Yi |
| title |
Privacy preserving search services against online attack |
| title_short |
Privacy preserving search services against online attack |
| title_full |
Privacy preserving search services against online attack |
| title_fullStr |
Privacy preserving search services against online attack |
| title_full_unstemmed |
Privacy preserving search services against online attack |
| title_sort |
privacy preserving search services against online attack |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2020 |
| url |
https://ink.library.smu.edu.sg/sis_research/5958 https://ink.library.smu.edu.sg/context/sis_research/article/6961/viewcontent/Privacy_Preserving_Search_2020_Ning_av.pdf |
| _version_ |
1770575704887394304 |