Practical Dynamic Searchable Encryption with Small Leakage

Stefanov, Emil; Papamanthou, Charalampos; Shi, Elaine

doi:10.14722/ndss.2014.23298

Cited by 423 publications

(397 citation statements)

References 35 publications

(53 reference statements)

Supporting

Mentioning

396

Contrasting

Order By: Relevance

“…Extensive work has been done in basic SSE, which caters for a single keyword [6]. Recent improvements have been proposed to handle conjunctive search over multiple keywords [5], and to optimise the resolution to cater for large scale data in the presence of updates [4,20,30]. However, all of these works focus on keyword-based retrieval, whereas structured querying (such as SPARQL) over encrypted RDF datasets would require (at least) an unrestricted set of triple query patterns.…”

Section: Related Workmentioning

confidence: 99%

Self-Enforcing Access Control for Encrypted RDF

et al. 2017

View full text Add to dashboard Cite

Abstract. The amount of raw data exchanged via web protocols is steadily increasing. Although the Linked Data infrastructure could potentially be used to selectively share RDF data with different individuals or organisations, the primary focus remains on the unrestricted sharing of public data. In order to extend the Linked Data paradigm to cater for closed data, there is a need to augment the existing infrastructure with robust security mechanisms. At the most basic level both access control and encryption mechanisms are required. In this paper, we propose a flexible and dynamic mechanism for securely storing and efficiently querying RDF datasets. By employing an encryption strategy based on Functional Encryption (FE) in which controlled data access does not require a trusted mediator, but is instead enforced by the cryptographic approach itself, we allow for fine-grained access control over encrypted RDF data while at the same time reducing the administrative overhead associated with access control management.

show abstract

Section: Related Workmentioning

confidence: 99%

Self-Enforcing Access Control for Encrypted RDF

et al. 2017

View full text Add to dashboard Cite

show abstract

“…Our main contribution is designing the first asymptotically-optimal parallelizable dynamic SSE scheme that provides forward privacy. Our scheme outperforms the existing schemes providing forward privacy [6,29], and is competitive with the most efficient dynamic SSE schemes without forward privacy [19,20] while providing stronger security. In particular, our scheme:…”

Section: Introductionmentioning

confidence: 86%

“…Thus, all our leakage is minimal across all known efficient dynamic SSE schemes. Now, we define the security of our DSSE scheme via ideal-real simulation similar to [29]. Definition 2.6 (Security of SSE scheme).…”

Section: Definition 22 (Search Pattern)mentioning

confidence: 99%

See 1 more Smart Citation

Efficient Dynamic Searchable Encryption with Forward Privacy

Etemad

Küpçü

Papamanthou

et al. 2018

Proceedings on Privacy Enhancing Technologies

Self Cite

View full text Add to dashboard Cite

Searchable symmetric encryption (SSE) enables a client to perform searches over its outsourced encrypted files while preserving privacy of the files and queries. Dynamic schemes, where files can be added or removed, leak more information than static schemes. For dynamic schemes, forward privacy requires that a newly added file cannot be linked to previous searches. We present a new dynamic SSE scheme that achieves forward privacy by replacing the keys revealed to the server on each search. Our scheme is efficient and parallelizable and outperforms the best previous schemes providing forward privacy, and achieves competitive performance with dynamic schemes without forward privacy. We provide a full security proof in the random oracle model. In our experiments on the Wikipedia archive of about four million pages, the server takes one second to perform a search with 100,000 results.

show abstract

“…A scheme achieving sublinear search time using inverted index was also proposed. Most of the subsequent SSE schemes, such as schemes in [5,[20][21][22][23][24][25][26][27] adopted or extended the model proposed by Curtmola et al [19]. All these schemes are based on a single server.…”

Section: Searchable Symmetric Encryption (Sse)mentioning

confidence: 99%

Searchable Data Vault: Encrypted Queries in Secure Distributed Cloud Storage

et al. 2017

View full text Add to dashboard Cite

Cloud storage services allow users to efficiently outsource their documents anytime and anywhere. Such convenience, however, leads to privacy concerns. While storage providers may not read users' documents, attackers may possibly gain access by exploiting vulnerabilities in the storage system. Documents may also be leaked by curious administrators. A simple solution is for the user to encrypt all documents before submitting them. This method, however, makes it impossible to efficiently search for documents as they are all encrypted. To resolve this problem, we propose a multi-server searchable symmetric encryption (SSE) scheme and construct a system called the searchable data vault (SDV). A unique feature of the scheme is that it allows an encrypted document to be divided into blocks and distributed to different storage servers so that no single storage provider has a complete document. By incorporating the scheme, the SDV protects the privacy of documents while allowing for efficient private queries. It utilizes a web interface and a controller that manages user credentials, query indexes and submission of encrypted documents to cloud storage services. It is also the first system that enables a user to simultaneously outsource and privately query documents from a few cloud storage services. Our preliminary performance evaluation shows that this feature introduces acceptable computation overheads when compared to submitting documents directly to a cloud storage service.

show abstract

Practical Dynamic Searchable Encryption with Small Leakage

Cited by 423 publications

References 35 publications

Self-Enforcing Access Control for Encrypted RDF

Self-Enforcing Access Control for Encrypted RDF

Efficient Dynamic Searchable Encryption with Forward Privacy

Searchable Data Vault: Encrypted Queries in Secure Distributed Cloud Storage

Contact Info

Product

Resources

About