Cong Zuo,Shi-Feng Sun,Joseph K. Liu,Jun Shao,Josef Pieprzyk

DOI: https://doi.org/10.1007/978-3-319-98989-1_12

2018-01-01

Abstract:Dynamic searchable symmetric encryption (DSSE) is a useful cryptographic tool in encrypted cloud storage. However, it has been reported that DSSE usually suffers from file-injection attacks and content leak of deleted documents. To mitigate these attacks, forward security and backward security have been proposed. Nevertheless, the existing forward/backward-secure DSSE schemes can only support single keyword queries. To address this problem, in this paper, we propose two DSSE schemes supporting range queries. One is forward-secure and supports a large number of documents. The other can achieve both forward security and backward security, while it can only support a limited number of documents. Finally, we also give the security proofs of the proposed DSSE schemes in the random oracle model.

Cong Zuo,Shi-Feng Sun,Joseph K. Liu,Jun Shao,Josef Pieprzyk

DOI: https://doi.org/10.48550/arXiv.1905.08561

2019-05-21

Cryptography and Security

Abstract:Dynamic searchable symmetric encryption (DSSE) is a useful cryptographic tool in encrypted cloud storage. However, it has been reported that DSSE usually suffers from file-injection attacks and content leak of deleted documents. To mitigate these attacks, forward privacy and backward privacy have been proposed. Nevertheless, the existing forward/backward-private DSSE schemes can only support single keyword queries. To address this problem, in this paper, we propose two DSSE schemes supporting range queries. One is forward-private and supports a large number of documents. The other can achieve backward privacy, while it can only support a limited number of documents. Finally, we also give the security proofs of the proposed DSSE schemes in the random oracle model.

Cong Zuo,Shi-Feng Sun,Joseph K. Liu,Jun Shao,Josef Pieprzyk,Lei Xu

DOI: https://doi.org/10.1109/tdsc.2020.2994377

2022-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Due to its capabilities of searches and updates over the encrypted database, the dynamic searchable symmetric encryption (DSSE) has received considerable attention recently. To resist leakage abuse attacks, a secure DSSE scheme usually requires forward and backward privacy. However, the existing forward and backward private DSSE schemes either only support single keyword queries or require more interactions between the client and the server. In this article, we first give a new leakage function for range queries, which is more complicated than the one for single keyword queries. Furthermore, we propose a concrete forward and backward private DSSE scheme by using a refined binary tree data structure. Finally, the detailed security analysis and extensive experiments demonstrate that our proposal is secure and efficient, respectively.

Cheng Guo,Wenfeng Li,Xinyu Tang,Kim-Kwang Raymond Choo,Yining Liu

DOI: https://doi.org/10.1109/tdsc.2023.3262060

2024-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Dynamic searchable symmetric encryption (DSSE) allows efficient searches over encrypted databases and also supports clients in their updating of the data, such as those stored in a remote cloud server. However, recent attacks suggest the risk of leakage during such updates, which consequently impacts on the privacy of the queries. In addition, existing DSSE schemes that support forward privacy generally rely on the honest-but-curious server and support only single-keyword retrieval, which limits the application scenarios. In this paper, we present the design of a verifiable DSSE protocol, which supports efficient conjunctive query with forward privacy. In our scheme, the forward index is constructed by a novel form, i.e., $ t$t-puncturable PRFs, and the authentication tag is designed by symmetric cryptography. During conjunctive queries, we narrow the scope by an inverted index, and then we determine the results of the final query through the forward index. Meanwhile, we can use verification tag to check the correctness and completeness of the result. In addition, we present an extension to support backward privacy, and our experimental evaluations show that our proposed approach achieves better performance on both conjunctive queries and updates than other competing solutions and ensures efficient verification.

Cong Zuo,Shi-Feng Sun,Joseph K. Liu,Jun Shao,Josef Pieprzyk

DOI: https://doi.org/10.1007/978-3-030-29962-0_14

2019-01-01

Abstract:Dynamic Searchable Symmetric Encryption (DSSE) enables a client to perform updates and searches on encrypted data which makes it very useful in practice. To protect DSSE from the leakage of updates (leading to break query or data privacy), two new security notions, forward and backward privacy, have been proposed recently. Although extensive attention has been paid to forward privacy, this is not the case for backward privacy. Backward privacy, first formally introduced by Bost et al., is classified into three types from weak to strong, exactly Type-III to Type-I. To the best of our knowledge, however, no practical DSSE schemes without trusted hardware (e.g. SGX) have been proposed so far, in terms of the strong backward privacy and constant roundtrips between the client and the server.

Ke Huang,Xiaolei Dong,Zhenfu Cao,Jiachen Shen

DOI: https://doi.org/10.1088/1757-899x/715/1/012062

2020-01-01

IOP Conference Series Materials Science and Engineering

Abstract:Dynamic searchable symmetric encryption (DSSE) is helpful to users with limited storage. In DSSE, the users are able to perform search and update queries on the ciphertext which stored on the cloud server. However, DSSE may suffer from file-injection attacks and leak information after deletion. In order to solve these problems, DSSE schemes with forward security and/or backward security have been proposed. In this paper, we propose two efficient DSSE schemes. The first one supports forward security using binary tree as the basic data structure. The second one uses puncturable encryption to achieve both forward and backward privacy.

Jing Chen,Zhenfu Cao,Jiachen Shen,Xiaolei Dong,Xingkai Wang

DOI: https://doi.org/10.1145/3377644.3377666

2020-01-01

Abstract:Users with limited computing and storage capabilities can access large amounts of data easily by uploading the database to cloud server. But this leads to security issues. Dynamic searchable encryption scheme is a solution, providing not only data privacy for users, but also the ability of searching for keywords on the ciphertext and inserting or deleting documents. However, most of the existing efficient dynamic searchable encryption schemes do not satisfy forward security, considering file-injection attack. In this paper, we design and implement a new forward secure dynamic symmetric searchable encryption (DSSE) scheme. We also use a new index structure inspired by linked list to achieve forward security instead of using ORAM. Our storage overhead is greatly reduced compared to previous works, without losing efficiency. Finally, we implement, evaluate and analyze our scheme.

Haochen Dou,Zhenwu Dan,Peng Xu,Wei Wang,Shuning Xu,Tianyang Chen,Hai Jin

DOI: https://doi.org/10.1109/tifs.2024.3350330

IF: 7.231

2024-02-02

IEEE Transactions on Information Forensics and Security

Abstract:Dynamic Searchable Symmetric Encryption (DSSE) is a prospective technique in the field of cloud storage for secure search over encrypted data. A DSSE client can issue update queries to an honest-but-curious server for adding or deleting his ciphertexts to or from the server and delegate keyword search over those ciphertexts to the server. Numerous investigations focus on achieving strong security, like forward-and-Type-I−-backward security, to reduce the information leakage of DSSE to the server as much as possible. However, the existing DSSE with such strong security cannot keep search correctness and stable security (or robustness, in short) if irrational queries are issued by the client, like duplicate add or delete queries and the delete queries for removing non-existed entries, to the server unintentionally. Hence, this work proposes two new DSSE schemes, named and , respectively. Both two schemes achieve forward-and-Type-I−-backward security while keeping robustness when irrational queries are issued. In terms of performance, has more efficient communication costs and roundtrips than . In contrast, has a more efficient search performance than . Its search performance is close to the existing DSSE scheme with the same security but fails to achieve robustness.

computer science, theory & methods,engineering, electrical & electronic

Shabnam Kasra Kermanshahi,Shifeng Sun,Joseph K. Liu,Ron Steinfeld,Surya Nepal,Wang Fat Lau,Man Ho Allen Au

DOI: https://doi.org/10.1109/TDSC.2020.2982389

2022-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:This article presents two dynamic symmetric searchable encryption schemes for geometric range search. Our constructions are the first to provide forward/backward security in the context of SSE-based schemes supporting geometric range search. Besides, we define a security notion called content privacy. This security notion captures the leakages that are critical in the context of geometric range search but not considered by forward/backward security. Content privacy eliminates the leakage on the updated points of the database during both search and update. Due to the inherent leakages associated with range queries, none of the existing related works can support content privacy, whereas the design of our constructions avoids such leakages. When compared to the state-of-the-art schemes, our constructions provide a higher level of security and practical efficiency supported by our experimental results.

Randolph Loh,Cong Zuo,Joseph K. Liu,Shi-Feng Sun

DOI: https://doi.org/10.1007/978-3-030-14234-6_16

2018-01-01

Abstract:We consider the need for security while providing services that are comparable to that of traditional applications to fully exploit cloud services to its fullest potential. While Dynamic Searchable Symmetric Encryption (DSSE) supports such needs, we want to be able to protect against file-injection attacks. Hence, we require forward privacy and a scheme which allows for a wide range of searching capabilities. We propose an extension, based on the RSA problem, to a DSSE scheme that supports range queries allowing the scheme to also support multiple clients. Furthermore, we describe how we can further manage clients using Attribute-Based Encryption (ABE) such that clients cannot decrypt ciphertexts that fall outside of their access rights.

Zhigang Yao,Chungen Xu,Lei Xu,Lin Mei

DOI: https://doi.org/10.1007/978-3-030-34637-9_23

2019-01-01

Abstract:Dynamic searchable symmetric encryption (DSSE) allows addition and deletion operation on an encrypted database. Recently, several attack works (such as IKK) show that existing SSE definition which leaks access pattern and search pattern cannot capture the adversary in the real world. These works underline the necessity for forward privacy. To achieve forward privacy, updating search token is considered as a simple yet efficient method. In this paper, we concentrate on scenario of updating a batch of files containing the same keyword and propose an efficient forward private searchable encryption (EFSE) scheme with a novel batch update. In this scenario, by batch update method, the search token corresponding to the keyword only needs to be updated once. Then for each file in the batch, we use updated search token combining number of this file in the batch to transform the pair (file, keyword) into encrypted index. In the scenario mentioned above, the number of updating search token operation in our EFSE is 1, while the one in existing forward private searchable encryption scheme based on updating search token is the size of batch. In addition, by integrating Cash’s OXT scheme, we extend our EFSE scheme to support conjunctive keywords query. Finally, we give the rigorous security analysis for our proposed two schemes and give performance evaluation for the basic one.

Wang Qiao,Guo Yu,Huang Hejiao,Jia Xiaohua

DOI: https://doi.org/10.1007/978-3-030-02744-5_9

2018-01-01

Abstract:Searchable Symmetric Encryption (SSE) makes it possible to privacy-preserving search over encrypted data stored on an untrusted server. Dynamic SSE schemes add the ability for the user to support secure update of encrypted data records. However, recent attacks show that update information can be exploited to recover the underlying values of ciphertexts. To improve the security, the notion of forward security is proposed, which aims to thwart those attacks by adding new documents without revealing if they match previous search queries. Unfortunately, existing forward secure SSE schemes are mostly for single-user settings, and cannot be easily extended to multi-user settings. In this paper, we propose a multi-user forward secure dynamic SSE scheme with optimal search complexity. By introducing a semi-trusted proxy server who does not collude with the cloud server, we take a nice method to solve multi-user queries problem in most forward secure SSE schemes. With the help of proxy server who maintains keywords’ state information, our scheme achieves forward security. Our experimental results demonstrate the efficiency of the proposed scheme. © Springer Nature Switzerland AG 2018.

Kun He,Jing Chen,Qinxi Zhou,Ruiying Du,Yang Xiang

DOI: https://doi.org/10.1109/tifs.2020.3033412

IF: 7.231

2021-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Dynamic Searchable Symmetric Encryption (DSSE) enables users to search on the encrypted database stored on a semi-trusted server while keeping the search and update information under acceptable leakage. However, most existing DSSE schemes are not efficient enough in practice due to the complex structures and cryptographic primitives. Moreover, the storage cost on the client side grows linearly with the number of keywords in the database, which induces unaffordable storage cost when the size of keyword set is large. In this article, we focus on secure dynamic searchable symmetric encryption with constant client storage cost. Our framework is boosted by fish-bone chain, a novel two-level structure which consists of Logical Keyword Index Chain (LoKIC) and Document Index Chain (DIC). To instantiate the proposed framework, we propose a forward secure DSSE scheme, called CLOSE-F, and a forward and backward secure DSSE scheme, called CLOSE-FB. Experiments showed that the computation cost of CLOSE-F and CLOSE-FB are as efficient as the state-of-the-art solutions, while the storage costs on the client side are constant in both CLOSE-F and CLOSE-FB, which are much smaller than existing schemes.

computer science, theory & methods,engineering, electrical & electronic

Huijuan Qiu,Zhenhua Liu

DOI: https://doi.org/10.1007/978-981-99-9331-4_15

2024-01-01

Abstract:Dynamic searchable symmetric encryption (DSSE) enables search and modification on encrypted data. While considerable efforts have been dedicated to achieving forward and backward privacy in DSSE, the potential adverse consequences of key corruption or exposure have been overlooked. In this paper, we introduce the updatability into DSSE to resist the key exposure attacks, propose a new concept named updatable and dynamic searchable symmetric encryption (U&D-SSE), and establish L-adaptive security model tailored to the update environment. Then we construct a U&D-SSE scheme with token inference, where a ciphertext can be updated by a token and a key can be inferred in bi-direction. Furthermore, a U&D-SSE scheme with token-free inference is proposed to achieve no-directional key update through indistinguishable obfuscation. Finally, both schemes are proven to be secure in the L-adaptive security model, and ensuring the preservation of forward and backward privacy.

Xiangyu Wang,Jianfeng Ma,Ximeng Liu,Yinbin Miao,Yang Liu,Robert H. Deng

DOI: https://doi.org/10.1109/tdsc.2022.3205670

2022-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Spatial keyword queries are attractive techniques that have been widely deployed in real-life applications in recent years, such as social networks and location-based services. However, existing solutions neither support dynamic update nor satisfy the privacy requirements in real applications. In this article, we investigate the problem of Dynamic Searchable Symmetric Encryption (DSSE) for spatial keyword queries. First, we formulate the definition of DSSE for spatial keyword queries (namely, $\mathsf {DSSE}_{\mathsf {SKQ}}$ ) and extend the DSSE leakage functions to capture the leakages in $\mathsf {DSSE}_{\mathsf {SKQ}}$ . Then, we present a practical $\mathsf {DSSE}_{\mathsf {SKQ}}$ construction based on geometric prefix encoding inverted-index and encrypted bitmap. Rigorous security analysis proves that our construction can achieve not only forward/backward privacy but content privacy as well, which can resist the most existing leakage-abuse attacks. Evaluation results using real-world datasets demonstrate the efficiency and feasibility of our construction. Comparative analysis reveals that our construction outperforms state-of-the-art schemes in terms of privacy and performance, e.g., our construction is $175\times$ faster than existing schemes with only 51% server storage cost.

Peng Xu,Willy Susilo,Wei Wang,Tianyang Chen,Qianhong Wu,Kaitai Liang,Hai Jin

DOI: https://doi.org/10.1109/tifs.2022.3155977

IF: 7.231

2022-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Dynamic searchable symmetric encryption (DSSE) has been widely recognized as a promising technique to delegate update and search queries over an outsourced database to an untrusted server while guaranteeing the privacy of data. Many efforts on DSSE have been devoted to obtaining a good tradeoff between security and performance. However, it appears that all existing DSSE works miss studying on what will happen if the DSSE client issues irrational update queries carelessly, such as duplicate update queries and delete queries to remove non-existent entries (that have been considered by many popular database system in the setting of plaintext). In this scenario, we find that (1) most prior works lose their claimed correctness or security, and (2) no single approach can achieve correctness, forward and backward security, and practical performance at the same time. To address this problem, we study for the first time the notion of robustness of DSSE. Generally, we say that a DSSE scheme is robust if it can keep the same correctness and security even in the case of misoperations. Then, we introduce a new cryptographic primitive named key-updatable pseudo-random function and apply this primitive to constructing ROSE, a robust DSSE scheme with forward and backward security. Finally, we demonstrate the efficiency of ROSE and give the experimental comparisons.

computer science, theory & methods,engineering, electrical & electronic

Shi-Feng Sun,Ron Steinfeld,Shangqi Lai,Xingliang Yuan,Amin Sakzad,Joseph K. Liu,Surya Nepal,Dawu Gu

DOI: https://doi.org/10.14722/ndss.2021.24162

2021-01-01

Abstract:In Dynamic Symmetric Searchable Encryption (DSSE), forward privacy ensures that previous search queries cannot be associated with future updates, while backward privacy guarantees that subsequent search queries cannot be associated with deleted documents in the past. In this work, we propose a generic forward and backward-private DSSE scheme, which is, to the best of our knowledge, the first practical and non-interactive Type-II backward-private DSSE scheme not relying on trusted execution environments. To this end, we first introduce a new cryptographic primitive, named Symmetric Revocable Encryption (SRE), and propose a modular construction from some succinct cryptographic primitives. Then we present our DSSE scheme based on the proposed SRE, and instantiate it with lightweight symmetric primitives. At last, we implement our scheme and compare it with the most efficient Type-II backward-private scheme to date (Demertzis et al., NDSS 2020). In a typical network environment, our result shows that the search in our scheme outperforms it by 2 - 11 x under the same security notion.

Zhijun Li,Jianfeng Ma,Yinbin Miao,Ximeng Liu,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1016/j.ins.2021.06.048

IF: 8.1

2021-01-01

Information Sciences

Abstract:Dynamic Searchable Symmetric Encryption (DSSE) has gained increasing popularity as it enables users to perform both file updates and ciphertext retrieval over encrypted data. However, existing DSSE schemes still lead to privacy leakage ( e.g., forward and backward privacy) in the dynamic setting. Some forward and backward secure DSSE schemes have been proposed, but still cannot support the keyword shielding flexibly. To solve this challenging issue, we propose a Forward and Backward Authorized Keyword Search (FB-AKS) scheme with recoverable keyword shielding by using trapdoor permutations and puncturable encryption in this paper. Compared with existing forward and backward private schemes, FB-AKS achieves keyword authorization flexibly ( e.g., keyword shielding, keyword un-shielding). The formal security analysis proves that FB-AKS achieves forward and backward security. And extensive experiments demonstrate that FB-AKS has less computation and storage overheads.

Xiangyu Wang,Jianfeng Ma,Ximeng Liu,Yinbin Miao,Dan Zhu

DOI: https://doi.org/10.1007/978-3-030-59416-9_48

2020-01-01

Abstract:Nowadays, spatial search services bring unprecedented convenience in people's daily life (e.g., location-based services, social networking) and are becoming more and more popular. To protect the privacy of outsourcing data, several schemes have been proposed to achieve secure search over encrypted spatial databases. However, most existing schemes cannot support dynamic updates, which seriously hinders the practical application of spatial databases. To address this issue, in this paper, we propose two novel Spatial Dynamic Searchable Encryption (SDSE) constructions for outsourcing spatial databases, which achieve various security guarantees. First, we present a basic construction supporting dynamic update with sub-linear search complexity based on the order-revealing encryption and Quadtree. Then, to ensure that updates do not reveal any information underlying the prior modifications beyond some explicit leakage (i.e., forward security), we further give an improved construction according to constrained pseudo-random functions. Both the nearest neighbor search and geometric search are supported in our constructions, which meet almost all spatial search needs. The experiments using real-world dataset demonstrate that our constructions are efficient and feasible in practice.

Yang Mengwei,Xu Chungen,Zhang Pan

DOI: https://doi.org/10.1007/978-3-031-23020-2_27

2022-01-01

Abstract:Geometric range query is a general query algorithm over spatial data and applies to many real-world applications, such as location-based services. Considering the sensitivity of location information, how to guarantee the confidentiality of the location information while providing efficient query service becomes a big concern. Several cryptographic solutions are proposed to solve this problem, particularly those dynamic searchable encryption schemes with forward and backward privacy that provides strong security guarantees for encrypted spatial databases that support data deletion and addition. Despite the increasing efforts, recent studies show that existing solutions with these two securities either use less secure property-preserving encryption for efficiency and flexibility or intuitively build a binary tree for each dimension, which leads to poor scalability. This paper proposes a novel forward and backward secure geometric range searchable encryption scheme on encrypted spatial data. Specifically, we build a two-level index for first-step rough navigation and second-step precise testing to get accurate search results. Detailed theoretical analysis and experimental evaluation demonstrate that compared with related work, our scheme achieves strong security and sub-linear search efficiency while boosting the average update time by 70 times.