Forward-Secure Searchable Encryption on Labeled Bipartite Graphs

“…Recently, several forward-private DSSE schemes only relying on symmetric primitives have been proposed (e.g., [20], [21], [22], [23]), some of which offer parallelism (e.g., [20], [21], [23]), and improved I/O access with computation efficiency using a caching strategy (e.g., [20], [21], [22]). For example, Lai et al in [20] modeled the relationship between keywords and files in DSSE as bipartite graphs. The authors also proposed a novel data structure called cascaded triangles, which offers parallelism and efficient update (add/delete).…”

“…• Highly secure against File-Injection Attacks: IM-DSSE offers forward privacy (see [2] or §4 for definition) which is an imperative security feature to mitigate the impact of practical file-injection attacks [11], [16]. Only a limited number of DSSE schemes offer this property (i.e., [2], [11], [15], [18], [20], [21], [22], [23]), some of which incur high client storage with costly update (e.g., [2]) or high delay, due to oblivious access techniques (e.g., [18]) and public-key operations (e.g., [11]). Additionally, IM-DSSE offers size-obliviousness property, where it hides all size information involved with the encrypted index and update query including (i) update query size (i.e., number of unique keywords in the updated file); (ii) and the number of keyword-file pairs in the database.…”

“…• Fully Parallelizable: IM-DSSE also supports parallelization (as in [5], [20], [21], [23]) for both update and search operations and, therefore, it takes full advantage of modern computing architecture to minimize the delay of cryptographic operations. Experiments on Amazon cloud indicates that the search latency of our framework is highly practical and mostly dominated by the clientserver communication (see §5).…”

“…Scheme 2 presents IM-DSSE I .AddToken Algorithm and IM-DSSE I .Add Algorithm for file addition procedure in IM-DSSE I (modifications for file deletion follow the same principle). Specifically, we substitute encryption and decryption using random oracle H(r i ||j||u j ) with block cipher encryption E.Enc ri (·, l||u l ) and E.Dec ri (·, l||u l ), respectively, where u l is a block counter (see steps 12,20). Since I is encrypted by blocks, to update a column during the file update, the client needs to retrieve a whole block and its state from the server first (step 6).…”

A Secure Searchable Encryption Framework for Privacy-Critical Cloud Storage Services

“…Recently, several forward-private DSSE schemes only relying on symmetric primitives have been proposed (e.g., [20], [21], [22], [23]), some of which offer parallelism (e.g., [20], [21], [23]), and improved I/O access with computation efficiency using a caching strategy (e.g., [20], [21], [22]). For example, Lai et al in [20] modeled the relationship between keywords and files in DSSE as bipartite graphs. The authors also proposed a novel data structure called cascaded triangles, which offers parallelism and efficient update (add/delete).…”

“…• Highly secure against File-Injection Attacks: IM-DSSE offers forward privacy (see [2] or §4 for definition) which is an imperative security feature to mitigate the impact of practical file-injection attacks [11], [16]. Only a limited number of DSSE schemes offer this property (i.e., [2], [11], [15], [18], [20], [21], [22], [23]), some of which incur high client storage with costly update (e.g., [2]) or high delay, due to oblivious access techniques (e.g., [18]) and public-key operations (e.g., [11]). Additionally, IM-DSSE offers size-obliviousness property, where it hides all size information involved with the encrypted index and update query including (i) update query size (i.e., number of unique keywords in the updated file); (ii) and the number of keyword-file pairs in the database.…”

“…• Fully Parallelizable: IM-DSSE also supports parallelization (as in [5], [20], [21], [23]) for both update and search operations and, therefore, it takes full advantage of modern computing architecture to minimize the delay of cryptographic operations. Experiments on Amazon cloud indicates that the search latency of our framework is highly practical and mostly dominated by the clientserver communication (see §5).…”

“…Scheme 2 presents IM-DSSE I .AddToken Algorithm and IM-DSSE I .Add Algorithm for file addition procedure in IM-DSSE I (modifications for file deletion follow the same principle). Specifically, we substitute encryption and decryption using random oracle H(r i ||j||u j ) with block cipher encryption E.Enc ri (·, l||u l ) and E.Dec ri (·, l||u l ), respectively, where u l is a block counter (see steps 12,20). Since I is encrypted by blocks, to update a column during the file update, the client needs to retrieve a whole block and its state from the server first (step 6).…”

A Secure Searchable Encryption Framework for Privacy-Critical Cloud Storage Services

“…Curtmola et al [19] proposed the most widely used security definition and the first scheme with non-trivial search time. It has since been improved in several ways, e.g., support for multiple users [49], [50], [33], more expressive queries including relational databases, conjunctive keywords, and graph queries [13], [34], [17], [41], [35], [22], [40], or efficient ondisk storage [14], [43], [7], [23], [20].…”

Dynamic Searchable Encryption with Small Client Storage

Forward Secure Searchable Encryption Using Key-Based Blocks Chain Technique