Distributed Searchable Symmetric Encryption

C.T. Bösch; Andreas Peter; Bram Leenders; Hoon Wei Lim; Qiang Tang; Huaxiong Wang; Pieter H. Hartel; Willem Jonker

doi:10.1109/PST.2014.6890956

Distributed Searchable Symmetric Encryption

C.T. Bösch, Andreas Peter, Bram Leenders, Hoon Wei Lim, Qiang Tang, Huaxiong Wang, Pieter H. Hartel, Willem Jonker

Databases (Former)

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

28 Citations (Scopus)

210 Downloads (Pure)

Abstract

Searchable Symmetric Encryption (SSE) allows a client to store encrypted data on a storage provider in such a way, that the client is able to search and retrieve the data selectively without the storage provider learning the contents of the data or the words being searched for. Practical SSE schemes usually leak (sensitive) information during or after a query (e.g., the search pattern). Secure schemes on the other hand are not practical, namely they are neither efficient in the computational search complexity, nor scalable with large data sets. To achieve efficiency and security at the same time, we introduce the concept of distributed SSE (DSSE), which uses a query proxy in addition to the storage provider. We give a construction that combines an inverted index approach (for efficiency) with scrambling functions used in private information retrieval (PIR) (for security). The proposed scheme, which is entirely based on XOR operations and pseudo-random functions, is efficient and does not leak the search pattern. For instance, a secure search in an index over one million documents and 500 keywords is executed in less than 1 second.

Original language	Undefined
Title of host publication	Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014
Place of Publication	USA
Publisher	IEEE
Pages	330-337
Number of pages	8
ISBN (Print)	978-1-4799-3502-4
DOIs	https://doi.org/10.1109/PST.2014.6890956
Publication status	Published - Jul 2014
Event	Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014, Toronto, Canada: Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014 - USA Duration: 1 May 2014 → …

Publication series

Name
Publisher	IEEE

Conference

Conference	Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014, Toronto, Canada
City	USA
Period	1/05/14 → …

Keywords

SCS-Cybersecurity
Practical Efficiency
EWI-24734
METIS-304098
Search Pattern Hiding
Searchable Encryption
Semi-Honest Model
IR-91056

Access to Document

10.1109/PST.2014.6890956

Cite this

@inproceedings{330ddd7e1bb84eedaecdad66048262aa,

title = "Distributed Searchable Symmetric Encryption",

abstract = "Searchable Symmetric Encryption (SSE) allows a client to store encrypted data on a storage provider in such a way, that the client is able to search and retrieve the data selectively without the storage provider learning the contents of the data or the words being searched for. Practical SSE schemes usually leak (sensitive) information during or after a query (e.g., the search pattern). Secure schemes on the other hand are not practical, namely they are neither efficient in the computational search complexity, nor scalable with large data sets. To achieve efficiency and security at the same time, we introduce the concept of distributed SSE (DSSE), which uses a query proxy in addition to the storage provider. We give a construction that combines an inverted index approach (for efficiency) with scrambling functions used in private information retrieval (PIR) (for security). The proposed scheme, which is entirely based on XOR operations and pseudo-random functions, is efficient and does not leak the search pattern. For instance, a secure search in an index over one million documents and 500 keywords is executed in less than 1 second.",

keywords = "SCS-Cybersecurity, Practical Efficiency, EWI-24734, METIS-304098, Search Pattern Hiding, Searchable Encryption, Semi-Honest Model, IR-91056",

author = "C.T. B{\"o}sch and Andreas Peter and Bram Leenders and Lim, {Hoon Wei} and Qiang Tang and Huaxiong Wang and Hartel, {Pieter H.} and Willem Jonker",

note = "eemcs-eprint-24734 ; Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014, Toronto, Canada ; Conference date: 01-05-2014",

year = "2014",

month = jul,

doi = "10.1109/PST.2014.6890956",

language = "Undefined",

isbn = "978-1-4799-3502-4",

publisher = "IEEE",

pages = "330--337",

booktitle = "Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014",

address = "United States",

}

Bösch, CT, Peter, A, Leenders, B, Lim, HW, Tang, Q, Wang, H, Hartel, PH & Jonker, W 2014, Distributed Searchable Symmetric Encryption. in Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014. IEEE, USA, pp. 330-337, Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014, Toronto, Canada, USA, 1/05/14. https://doi.org/10.1109/PST.2014.6890956

TY - GEN

T1 - Distributed Searchable Symmetric Encryption

AU - Bösch, C.T.

AU - Peter, Andreas

AU - Leenders, Bram

AU - Lim, Hoon Wei

AU - Tang, Qiang

AU - Wang, Huaxiong

AU - Hartel, Pieter H.

AU - Jonker, Willem

N1 - eemcs-eprint-24734

PY - 2014/7

Y1 - 2014/7

N2 - Searchable Symmetric Encryption (SSE) allows a client to store encrypted data on a storage provider in such a way, that the client is able to search and retrieve the data selectively without the storage provider learning the contents of the data or the words being searched for. Practical SSE schemes usually leak (sensitive) information during or after a query (e.g., the search pattern). Secure schemes on the other hand are not practical, namely they are neither efficient in the computational search complexity, nor scalable with large data sets. To achieve efficiency and security at the same time, we introduce the concept of distributed SSE (DSSE), which uses a query proxy in addition to the storage provider. We give a construction that combines an inverted index approach (for efficiency) with scrambling functions used in private information retrieval (PIR) (for security). The proposed scheme, which is entirely based on XOR operations and pseudo-random functions, is efficient and does not leak the search pattern. For instance, a secure search in an index over one million documents and 500 keywords is executed in less than 1 second.

AB - Searchable Symmetric Encryption (SSE) allows a client to store encrypted data on a storage provider in such a way, that the client is able to search and retrieve the data selectively without the storage provider learning the contents of the data or the words being searched for. Practical SSE schemes usually leak (sensitive) information during or after a query (e.g., the search pattern). Secure schemes on the other hand are not practical, namely they are neither efficient in the computational search complexity, nor scalable with large data sets. To achieve efficiency and security at the same time, we introduce the concept of distributed SSE (DSSE), which uses a query proxy in addition to the storage provider. We give a construction that combines an inverted index approach (for efficiency) with scrambling functions used in private information retrieval (PIR) (for security). The proposed scheme, which is entirely based on XOR operations and pseudo-random functions, is efficient and does not leak the search pattern. For instance, a secure search in an index over one million documents and 500 keywords is executed in less than 1 second.

KW - SCS-Cybersecurity

KW - Practical Efficiency

KW - EWI-24734

KW - METIS-304098

KW - Search Pattern Hiding

KW - Searchable Encryption

KW - Semi-Honest Model

KW - IR-91056

U2 - 10.1109/PST.2014.6890956

DO - 10.1109/PST.2014.6890956

M3 - Conference contribution

SN - 978-1-4799-3502-4

SP - 330

EP - 337

BT - Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014

PB - IEEE

CY - USA

T2 - Twelfth Annual International Conference on Privacy, Security and Trust, PST 2014, Toronto, Canada

Y2 - 1 May 2014

ER -