高级检索
    惠榛, 冯登国, 张敏, 洪澄. 一种可抵抗统计攻击的安全索引[J]. 计算机研究与发展, 2017, 54(2): 295-304. DOI: 10.7544/issn1000-1239.2017.20150751
    引用本文: 惠榛, 冯登国, 张敏, 洪澄. 一种可抵抗统计攻击的安全索引[J]. 计算机研究与发展, 2017, 54(2): 295-304. DOI: 10.7544/issn1000-1239.2017.20150751
    Hui Zhen, Feng Dengguo, Zhang Min, Hong Cheng. A Secure Index Against Statistical Analysis Attacks[J]. Journal of Computer Research and Development, 2017, 54(2): 295-304. DOI: 10.7544/issn1000-1239.2017.20150751
    Citation: Hui Zhen, Feng Dengguo, Zhang Min, Hong Cheng. A Secure Index Against Statistical Analysis Attacks[J]. Journal of Computer Research and Development, 2017, 54(2): 295-304. DOI: 10.7544/issn1000-1239.2017.20150751

    一种可抵抗统计攻击的安全索引

    A Secure Index Against Statistical Analysis Attacks

    • 摘要: 现有的大部分可检索加密方案建立的安全索引面临着统计攻击的威胁.为了抵抗统计攻击,部分方案设计出关键词/文档一一对应的陷门,以检索时多次的陷门计算为代价保证安全性,但是这样又导致检索速度过于慢而无法接受.为此,研究了针对密文的安全检索方案,在克服已有方案缺点的同时保证对于统计攻击的安全性.该方案使用Bloom过滤器为文档的关键词构造索引.为了确保检索效率,对于相同的关键词构造唯一对应的陷门.通过增加伪造的文档索引,并且在索引中进行插值来确保每个关键词在文档集合中出现的次数相似,从而达到语义安全并且能够抵抗统计攻击.在实现中,对索引进行倒排进一步提高检索效率.证明了本方案的安全性,且采用实验验证了其有效性和高效性.

       

      Abstract: Most of current searchable encryption schemes suffer from the threat of statistical analysis attacks. Some related works design their keyword/document trapdoors in a one-to-one method to avoid the threat, but it could lead to a severe overhead in searching cost. In the present paper, we design an efficient secure index to defend against a kind of statistical analysis attack. This scheme uses a Bloom filter to build indexes for each document. In order to save searching cost, one unique trapdoor is built for one word. To satisfy the security requirement, this scheme treats indexes of all documents as a matrix, and then adopts forged indexes and interpolation to make sure the frequencies of different words are closed and all indexes in the matrix are indistinguishable between each other. As a result, a particular word in the matrix cannot be recognized, thus the statistical analysis attack is resisted. In implementation, this scheme uses inverted indexes to further improve querying performance. The scheme is proved to be semantic security. Experimental results show that the querying performance of our scheme is double of Z-IDX at large dataset and words cannot be recognized based on their frequencies.

       

    /

    返回文章
    返回