基于区块链且支持验证的属性基搜索加密方案

闫玺玺; 原笑含; 汤永利; 陈艳丽

doi:10.11959/j.issn.1000-436x.2020011

您当前的位置：

首页 >

文章列表页 >

基于区块链且支持验证的属性基搜索加密方案

学术通信 | 更新时间：2024-06-05

- 基于区块链且支持验证的属性基搜索加密方案
- Verifiable attribute-based searchable encryption scheme based on blockchain
- 通信学报 2020年41卷第2期页码：187-198
- 作者机构：
  
  河南理工大学计算机科学与技术学院，河南焦作 454003
- 作者简介：
  
  [ "闫玺玺（1985- ），女，河南灵宝人，博士，河南理工大学副教授，主要研究方向为网络与信息安全、数字版权管理、数字内容安全和密码学" ]
  [ "原笑含（1995- ），女，河南焦作人，河南理工大学硕士生，主要研究方向为密码学、网络与信息安全" ]
  [ "汤永利（1972- ），男，河南焦作人，博士，河南理工大学教授，主要研究方向为现代密码学、网络与信息安全" ]
  [ "陈艳丽（1981- ），女，河南洛阳人，河南理工大学讲师，主要研究方向为人工智能、计算机应用、网络与信息安全" ]
- 基金信息：
  
  国家自然科学基金资助项目(61802117);河南省高校科技创新团队基金资助项目(20IRTSTHN013);河南省科技攻关基金资助项目(192102210280);河南省高等学校青年骨干教师基金资助项目(2018GGJS058)
- DOI：10.11959/j.issn.1000-436x.2020011
  中图分类号： TP309
- 网络首发：2020-02，
  
  纸质出版：2020-02-25
- 稿件说明：
移动端阅览
闫玺玺, 原笑含, 汤永利, 等. 基于区块链且支持验证的属性基搜索加密方案[J]. 通信学报, 2020,41(2):187-198.

Xixi YAN, Xiaohan YUAN, Yongli TANG, et al. Verifiable attribute-based searchable encryption scheme based on blockchain[J]. Journal on Communications, 2020, 41(2): 187-198.
闫玺玺, 原笑含, 汤永利, 等. 基于区块链且支持验证的属性基搜索加密方案[J]. 通信学报, 2020,41(2):187-198. DOI： 10.11959/j.issn.1000-436x.2020011.

Xixi YAN, Xiaohan YUAN, Yongli TANG, et al. Verifiable attribute-based searchable encryption scheme based on blockchain[J]. Journal on Communications, 2020, 41(2): 187-198. DOI： 10.11959/j.issn.1000-436x.2020011.

摘要

针对一对多搜索模型下共享解密密钥缺乏细粒度访问控制且搜索结果缺乏正确性验证的问题，提出了一种基于区块链且支持验证的属性基搜索加密方案。通过对共享密钥采用密文策略属性加密机制，实现细粒度访问控制。结合以太坊区块链技术，解决半诚实且好奇的云服务器模型下返回搜索结果不正确的问题，在按需付费的云环境下，实现用户和云服务器之间服务-支付公平，使各方诚实地按照合约规则执行。另外，依据区块链的不可篡改性，保证云服务器得到服务费，用户得到正确的检索结果，而不需要额外验证，减少用户计算开销。安全性分析表明，所提方案满足自适应选择关键词语义安全，能很好地保护用户的隐私以及数据的安全。性能对比及实验结果表明，所提方案在安全索引产生、搜索令牌生成、检索效率以及交易数量方面有一定的优化，更加适用于智慧医疗等一对多搜索场景。

Abstract

For the problem that the shared decryption key lacks of fine-grained access control and the search results lacks of correctness verification under one-to-many search model

a verifiable attribute-based searchable encryption scheme based on blockchain was proposed.The ciphertext policy attribute-based encryption mechanism was used on the shared key to achieve fine-grained access control.Ethereum blockchain technology was combined to solve the problem of incorrect search results returned by the semi-honest and curious cloud server model

so it could prompt both the cloud server and the user to follow the rules of the contract honestly and achieved service-payment fairness between the user and the cloud server in the pay-per-use cloud environment.In addition

based on the irreversible modification of the blockchain

the cloud server was guaranteed to receive the service fee

and the user was assured to obtain the correct retrieval results without additional verification which reduced the computational overhead of the user.The security analysis shows that the scheme satisfies the semantic security against adaptive chosen keyword attack and can protect the privacy of users and the security of data.The performance comparison and experimental results show that the scheme has certain optimizations in security index generation

search token generation

retrieval efficiency and transaction quantity

so it is more suitable for one-to-many search scenarios such as smart medical.

关键词

Keywords

references

SONG D X , WAGNER D , PERRIG A . Practical techniques for searches on encrypted data [C ] // 2000 IEEE Symposium on Security and Privacy . Berkeley , 2000 : 44 - 55 .

BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption [C ] // 2007 IEEE Symposium on Security and Privacy,Washington , 2007 : 321 - 334 .

YIN H , ZHANG J , XIONG Y , et al . CP-ABSE:a ciphertext-policy attribute-based searchable encryption scheme [J ] . IEEE Access , 2019 , 7 ( 99 ): 5682 - 5694 .

刘振华 , 周佩琳 , 段淑红 . 支持关键词搜索的属性代理重加密方案 [J ] . 电子与信息学报 , 2018 , 40 ( 3 ): 683 - 689 .

LIU Z H , ZHOU P L , DUAN S H . Attribute proxy re-encryption scheme supporting keyword search [J ] . Journal of Electronics ＆ Information Technology , 2018 , 40 ( 3 ): 683 - 689 .

孙瑾 , 王小静 , 王尚平 , 等 . 支持属性撤销的可验证多关键词搜索加密方案 [J ] . 电子与信息学报 , 2019 , 41 ( 1 ): 53 - 60 .

SUN J , WANG X J , WANG S P , et al . Verifiable multi-keyword search encryption scheme supporting attribute revocation [J ] . Journal of Electronics ＆ Information Technology , 2019 , 41 ( 1 ): 53 - 60 .

CURTMOLA R , GARAY J , KAMARA S , et al . Searchable symmetric encryption:improved definitions and efficient constructions [C ] // The 13th ACM Conference on Computer and Communications Security . Alexandria , 2006 : 79 - 88 .

CHAI Q , GONG G . Verifiable symmetric searchable encryption for semi-honest-but-curious cloud servers [C ] // The 2012 IEEE International Conference on Communications . Ottawa , 2012 : 917 - 922 .

JIANG X , YU J , YAN J , et al . Enabling efficient and verifiable multi-keyword ranked search over encrypted cloud data [J ] . Information Sciences , 2017 , 40 ( 3 ): 22 - 41 .

杜瑞忠 , 李明月 , 田俊峰 , 等 . 基于倒排索引的可验证混淆关键字密文检索方案 [J ] . 软件学报 , 2019 , 30 ( 8 ): 2362 - 2374 .

DU R Z , LI M Y , TIAN J F , et al . A ciphertext retrieval scheme for verifiable confusing keywords based on inverted index [J ] . Journal of Software , 2019 , 30 ( 8 ): 2362 - 2374 .

伍祈应 , 马建峰 , 李辉 , 等 . 支持用户撤销的多关键字密文查询方案 [J ] . 通信学报 , 2017 , 38 ( 8 ): 183 - 193 .

WU Q Y , MA J F , LI H , et al . Multi-keyword ciphertext query scheme supporting user revocation [J ] . Journal on Communications , 2017 , 38 ( 8 ): 183 - 193 .

CAI C , WENG J , YUAN X , et al . Enabling reliable keyword search in encrypted decentralized storage with fairness [J ] . IEEE Transactions on Dependable and Secure Computing , 2018 , 1 ( 99 ):1.

ZHANG Y H , DENG R H , SHU J , et al . TKSE:trustworthy keyword search over encrypted data with two-side verifiability via blockchain [J ] . IEEE Access , 2018 ( 6 ): 31077 - 31087 .

WANG S P , ZHANG Y L , ZHANG Y L . A blockchain-based framework for data sharing with fine-grained access control in decentralized storage systems [J ] . IEEE Access , 2018 ( 6 ): 38437 - 38450 .

CHEN L X , LEE W K , CHANG C C , et al . Blockchain based searchable encryption for electronic health record sharing [J ] . Future Generation Computer Systems , 2019 , 95 : 420 - 429 .

LI H G , TIAN H B , ZHANG F G , et al . Blockchain-based searchable symmetric encryption scheme [J ] . Computers ＆ Electrical Engineering , 2019 , 73 : 32 - 45 .

浏览量

2248

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

云辅助工业物联网中基于区块链的用户友好型数据检索和共享方案

基于云边计算的车联网数据双边访问控制方案

可扩展且支持多种追踪机制的属性基加密方案

面向云存储且支持重加密的多关键词属性基可搜索加密方案

基于区块链且可验证的智能电网多维数据聚合与分享方案