Constructing designated server public key encryption with keyword search schemes withstanding keyword guessing attacks

Lu, Yang; Li, Jiguo

doi:10.1002/dac.3862

Cited by 4 publications

(2 citation statements)

References 47 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, [28] still needs a secure channel in trapdoor transmission process. Recently, the PEKS schemes proposed in [29]- [31] also adopted similar idea by including a data sender's private key in the generation of keyword ciphertexts to solve the problem of inside keyword guessing attacks. Lattice-based schemes proposed in [32] and [33] employed preimage sampleable function to generate the authenticated keyword ciphertexts for resisting inside KGAs.…”

Section: Related Workmentioning

confidence: 99%

A Decryptable Attribute-Based Keyword Search Scheme on eHealth Cloud in Internet of Things Platforms

et al. 2020

View full text Add to dashboard Cite

Recently, attribute-based keyword search (ABKS) schemes have been used to provide finegrained search over encrypted data on eHealth cloud in the Internet of Things (IoT) platforms. As compared to conventional public key encryption with keyword search (PEKS) schemes, ABKS schemes provide more powerful and flexible search operations which allow encrypted data to be retrieved by multiple users that satisfy set of attributes. However, there are still some limitations and security issues on the existing ABKS schemes. Many of the existing ABKS schemes only support for the encryption of keyword and require a separate cryptographic primitive to encrypt the message. Also, most of the schemes cannot resist offline keyword guessing attacks by inside attackers (i.e., the honest-but-curious servers). A secure-channel is needed for most of the ABKS schemes to transmit the trapdoors between the server and receivers. To solve these problems, we propose a secure-channel free ciphertext-policy decryptable attribute-based keyword search (CP-DABKS) scheme. The proposed scheme allows the authorised user who satisfy the access structure to decrypt the ciphertext. Our scheme not only resists the insider keyword guessing attack, but also eliminates the secure channel for trapdoor transmission. We formally define and prove the security of the proposed CP-DABKS scheme. We also demonstrate its application on an eHealth cloud platform. INDEX TERMS Attribute-based, decryptable, searchable encryption, eHealth, Internet of Things.

show abstract

Section: Related Workmentioning

confidence: 99%

A Decryptable Attribute-Based Keyword Search Scheme on eHealth Cloud in Internet of Things Platforms

et al. 2020

View full text Add to dashboard Cite

show abstract

“…In a SE scheme, by generating some trapdoors associated with some keywords, users can ask the server to retrieve their desired data files such that the server is prevented from learning any partial information about the keywords and contents of the outsourced data files. The existing SE schemes can be categorized into public‐key SE (PKSE) schemes 9–12 and symmetric SE (SSE) schemes 13–16 . Although SSE schemes are significantly more efficient than PKSE schemes, they suffer from the critical and expensive key distribution 17 problem.…”

Section: Introductionmentioning

confidence: 99%

Provable secure lightweight attribute‐based keyword search for cloud‐based Internet of Things networks

Ali

Sadeghi

2020

Trans Emerging Tel Tech

View full text Add to dashboard Cite

As more data from Internet of Things (IoT) devices is outsourced to cloud service providers, the need for secure and efficient fine‐grained access control and data retrieving mechanisms will be increasingly pressing. Attribute‐based keyword search (ABKS) is a promising tool to provide the required infrastructures. However, most of the existing ABKS schemes suffer from expensive computational overhead on the user side. This feature makes such schemes unsuitable for IoT applications as IoT devices usually have limited computational resources. To address this problem, we design a lightweight ABKS scheme called LW‐ABKS. In our scheme, by performing a constant number of efficient computational operations, a data owner can generate a searchable ciphertext. Indeed, in generating a searchable ciphertext, the number of operations performed by data owners modeling IoT devices does not depend on the number of attributes in the access control policy. Moreover, in LW‐ABKS, an authorized data user can retrieve the outsourced data files by performing very lightweight computational operations. We also provide security definitions for the new primitive and prove its security in the standard model and under the hardness assumption of the discrete logarithm and the decisional bilinear Diffie‐Hellman problems.

show abstract

Certificate-based authenticated encryption with keyword search: Enhanced security model and a concrete construction for Internet of Things

Shiraly,

Eslami,

Pakniat

2024

Journal of Information Security and Applications

View full text Add to dashboard Cite

Constructing designated server public key encryption with keyword search schemes withstanding keyword guessing attacks

Cited by 4 publications

References 47 publications

A Decryptable Attribute-Based Keyword Search Scheme on eHealth Cloud in Internet of Things Platforms

A Decryptable Attribute-Based Keyword Search Scheme on eHealth Cloud in Internet of Things Platforms

Provable secure lightweight attribute‐based keyword search for cloud‐based Internet of Things networks

Certificate-based authenticated encryption with keyword search: Enhanced security model and a concrete construction for Internet of Things

Contact Info

Product

Resources

About