Abstract
Public key encryption with keyword search (PEKS) enables users to search over encrypted data outsourced to an untrusted server. Unfortunately, updates to the outsourced data may incur information leakage by exploiting the previously submitted queries. Prior works addressed this issue by means of forward privacy, but most of them suffer from significant performance degradation. In this paper, we present a novel forward private PEKS scheme leveraging Software Guard Extension (SGX), a trusted execution environment provided by Intel. The proposed scheme presents substantial performance improvements over prior work. Specifically, we reduce the query processing cost from O(n) to O(1), where n is the number of encrypted data. According to our performance analysis, the overall computation time is reduced by 80% on average. Lastly, we provide a formal security definition of SGX-based forward private PEKS, as well as a rigorous security proof of the proposed scheme.
Highlights
Data outsourcing to cloud service providers is beneficial in terms of data management, but raises data security and privacy concerns
Public key encryption with keyword search (PEKS) solves this dilemma, in which data senders are allowed to encrypt data using a public key such that the ciphertexts are searchable only by a data receiver whose secret key is associated with the public key [1]
We propose SPEKS, a forward private Software Guard Extension (SGX)-based public key encryption with keyword search scheme
Summary
Data outsourcing to cloud service providers is beneficial in terms of data management, but raises data security and privacy concerns. We propose SPEKS, a forward private SGX-based public key encryption with keyword search scheme. To the best of our knowledge, it is the first SGX-based PEKS that achieves forward privacy in a multi-user setting. The proposed scheme uses a search counter to achieve forward privacy by unlinking the current data status with the previous queries. Both the data receiver and the cloud server share the same search counter, which is updated per each data update. We propose a forward secure public key encryption with keyword search using Intel SGX, the first. SGX-based PEKS scheme that achieves forward privacy in multi-user settings. According to the experiment with implementations, our scheme is significantly more efficient the previous schemes without security degradation
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
