Ahsan, Muhammad A. Manazir and Idris, Mohd Yamani Idna and Wahab, Ainuddin Wahid Abdul and Ali, Ihsan and Khan, Nawsher and Al-Garwi, Mohammed Ali and Rahman, Atiq Ur (2018) Searching on Encrypted E-Data Using Random Searchable Encryption (RanSCrypt) Scheme. Symmetry, 10 (5). p. 161. ISSN 2073-8994, DOI https://doi.org/10.3390/sym10050161.
Full text not available from this repository.Abstract
Cloud computing is intensifying the necessity for searchable encryption (SE) for data protection in cloud storage. SE encrypts data to preserve its confidentiality while offering a secure search facility on the encrypted data. Typical index-based SEs in data sharing scenarios can effectively search secure keyword indexes. However, due to the smaller size of the keyword space, SEs using a public key are susceptible to a Keyword Guessing Attack (KGA) and other statistical information leakage. In this paper, for secure search in a data sharing scenario, we propose Random Searchable enCryption (RanSCrypt) that adds randomness to a transformed keyword to increase its space and aspires to make it irreversible. At the core of the mechanism, two keywords are garbled with randomness, still enabling another party to determine if the two garbled keywords (RanSCrypt's terms REST and Trapdoor) are the same or not without knowing the actual keywords. As SE in a public key setting suffers from vulnerability to KGA, RanSCrypt transfers into a symmetric key setting with minimum overhead and without losing the features of a data sharing scenario. RanSCrypt also adulterates the search result to add perplexity and provides full control of access only to the data receiver. The receiver can cull out the erroneous results from the search result locally. Finally, we introduce a new type of attack on SE, namely, the Keyword Luring Attack (KLA), and show that RanSCrypt is safe from KLA attack due to adulteration of the result. Our security analysis proves RanSCrypt is invulnerable against KGA and leaks no information.
Item Type: | Article |
---|---|
Funders: | University of Malaya Research Grant (UMRG) scheme (RP036 (A, B, C)-15AET), Postgraduate Research Grant (PG035-2016A) |
Uncontrolled Keywords: | searchable encryption; random searchable encryption; RanSCrypt; keyword guessing attack; KGA; statistical attack; secure search; keyword indistinguishability |
Subjects: | Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
Divisions: | Faculty of Computer Science & Information Technology |
Depositing User: | Ms. Juhaida Abd Rahim |
Date Deposited: | 27 Sep 2019 03:56 |
Last Modified: | 27 Sep 2019 03:56 |
URI: | http://eprints.um.edu.my/id/eprint/22615 |
Actions (login required)
View Item |