Towards efficient privacy-preserving conjunctive keywords search over encrypted cloud data

IF 6.2 2区计算机科学 Q1 COMPUTER SCIENCE, THEORY & METHODS Future Generation Computer Systems-The International Journal of Escience Pub Date : 2025-05-01 Epub Date: 2025-01-16 DOI:10.1016/j.future.2025.107716

Yaru Liu , Xiaodong Xiao , Fanyu Kong , Hanlin Zhang , Jia Yu

{"title":"Towards efficient privacy-preserving conjunctive keywords search over encrypted cloud data","authors":"Yaru Liu , Xiaodong Xiao , Fanyu Kong , Hanlin Zhang , Jia Yu","doi":"10.1016/j.future.2025.107716","DOIUrl":null,"url":null,"abstract":"<div><div>With increasing popularity of cloud computing, more and more users choose to store data on cloud servers. Privacy-preserving keyword search is a critical technology in the field of cloud computing, which can directly search for encrypted data stored on cloud servers. In this paper, we propose a new scheme which can achieve conjunctive keywords search in a privacy-preserving way, and maintain forward security. In order to realize conjunctive keywords search with reduced communication cost and leakage, our scheme constructs a secure index based on the full binary tree data structure. Each leaf node represents a keyword, and the node stores the file identifier containing the keyword. Thus, all files containing searched keywords can be searched at one time without searching one file by one. The search time is only related to the number of search keywords and not related to the number of files. Each non-leaf node stores the keywords of its left and right child nodes, which are mapped to the Indistinguishable Bloom Filter(IBF). To achieve forward security, we choose a random string as the latest state to update trapdoors for each update query. Thus, update trapdoor cannot match with previous search trapdoors to achieve forward security. Finally, detailed experiments and security analysis prove that our scheme is secure and efficient.</div></div>","PeriodicalId":55132,"journal":{"name":"Future Generation Computer Systems-The International Journal of Escience","volume":"166 ","pages":"Article 107716"},"PeriodicalIF":6.2000,"publicationDate":"2025-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Future Generation Computer Systems-The International Journal of Escience","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0167739X25000111","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"2025/1/16 0:00:00","PubModel":"Epub","JCR":"Q1","JCRName":"COMPUTER SCIENCE, THEORY & METHODS","Score":null,"Total":0}

引用次数: 0

Abstract

With increasing popularity of cloud computing, more and more users choose to store data on cloud servers. Privacy-preserving keyword search is a critical technology in the field of cloud computing, which can directly search for encrypted data stored on cloud servers. In this paper, we propose a new scheme which can achieve conjunctive keywords search in a privacy-preserving way, and maintain forward security. In order to realize conjunctive keywords search with reduced communication cost and leakage, our scheme constructs a secure index based on the full binary tree data structure. Each leaf node represents a keyword, and the node stores the file identifier containing the keyword. Thus, all files containing searched keywords can be searched at one time without searching one file by one. The search time is only related to the number of search keywords and not related to the number of files. Each non-leaf node stores the keywords of its left and right child nodes, which are mapped to the Indistinguishable Bloom Filter(IBF). To achieve forward security, we choose a random string as the latest state to update trapdoors for each update query. Thus, update trapdoor cannot match with previous search trapdoors to achieve forward security. Finally, detailed experiments and security analysis prove that our scheme is secure and efficient.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

在加密云数据上实现高效的隐私保护连接关键字搜索

随着云计算的日益普及，越来越多的用户选择将数据存储在云服务器上。隐私保护关键字搜索是云计算领域的一项关键技术，它可以直接搜索存储在云服务器上的加密数据。在本文中，我们提出了一种新的方案，该方案可以在保护隐私的情况下实现连接关键字搜索，并保持前向安全性。为了在减少通信开销和泄漏的情况下实现连接关键词搜索，该方案基于全二叉树数据结构构造了一个安全索引。每个叶节点表示一个关键字，节点存储包含该关键字的文件标识符。因此，可以一次搜索包含搜索关键字的所有文件，而不必逐个搜索文件。搜索时间只与搜索关键字的数量有关，与文件的数量无关。每个非叶节点存储其左右子节点的关键字，这些关键字映射到不可区分布隆过滤器（IBF）。为了实现前向安全性，我们选择一个随机字符串作为更新trapdoor的最新状态。因此，更新活板门无法与之前的搜索活板门匹配，无法实现前向安全。最后，通过详细的实验和安全性分析，证明了该方案的安全性和有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Future Generation Computer Systems-The International Journal of Escience 工程技术-计算机：理论方法

CiteScore

19.90

自引率

2.70%

发文量

376

审稿时长

10.6 months

期刊介绍： Computing infrastructures and systems are constantly evolving, resulting in increasingly complex and collaborative scientific applications. To cope with these advancements, there is a growing need for collaborative tools that can effectively map, control, and execute these applications. Furthermore, with the explosion of Big Data, there is a requirement for innovative methods and infrastructures to collect, analyze, and derive meaningful insights from the vast amount of data generated. This necessitates the integration of computational and storage capabilities, databases, sensors, and human collaboration. Future Generation Computer Systems aims to pioneer advancements in distributed systems, collaborative environments, high-performance computing, and Big Data analytics. It strives to stay at the forefront of developments in grids, clouds, and the Internet of Things (IoT) to effectively address the challenges posed by these wide-area, fully distributed sensing and computing systems.