基于随机函数的非线性映射保序加密方案

doi:10.11772/j.issn.1001-9081.2020020167

计算机应用 ›› 2020, Vol. 40 ›› Issue (10): 2986-2991.DOI: 10.11772/j.issn.1001-9081.2020020167

基于随机函数的非线性映射保序加密方案

徐衍胜¹, 张游杰²

1. 山西军跃迈科信息安全技术有限公司, 太原 030006;
2. 太原鹏跃电子科技有限公司, 太原 030032

收稿日期:2020-02-21 修回日期:2020-05-17 出版日期:2020-10-10 发布日期:2020-05-21
通讯作者: 张游杰
作者简介:徐衍胜(1975-),男,山东济宁人,工程师,硕士,主要研究方向:计算机信息系统软件、信息系统集成、信息系统实施与应用;张游杰(1973-),男,山西交城人,研究员级高级工程师,CCF会员,主要研究方向:计算机信息系统软件、信息系统集成、网络空间安全。

Order preserving encryption scheme of nonlinear mapping based on random function

XU Yansheng¹, ZHANG Youjie²

1. Shanxi JunyueMaike Information Security Technology Company Limited, Taiyuan Shanxi 030006, China;
2. Taiyuan Pengyue Electronic Technology Company Limited, Taiyuan Shanxi 030032, China

Received:2020-02-21 Revised:2020-05-17 Online:2020-10-10 Published:2020-05-21

摘要/Abstract

摘要： 针对现有保序加密方案在安全性、高效性和易用性方面难以兼顾的问题，提出一种基于随机函数的非线性映射保序加密方案。该方案将明文空间看作一个等差递增数列，基于密钥将数列中每一个元素都映射到一个单独的密文空间。该密钥通过一个非均匀分布的随机数发生函数来生成，而密文空间的构造利用计算机程序来实现。在加密时，只需从对应的密文空间中随机选取一个值即可作为其密文。分析和实验结果表明，所提方案达到了等序明文不可区分（IND-OCPA）安全，并能有效防止统计攻击；其每十万个数据的平均加密时间为30 ms~50 ms，加密效率较高；该方案不需要复杂的参数预设，且可以采用任何计算机语言实现，具有良好的易用性。

关键词: 保序加密, 非线性映射, 随机函数, 统计攻击, IND-OCPA安全

Abstract: To solve the problem that the existing order preserving encryption schemes are difficult to give consideration to security, efficiency and ease of use at the same time, an order preserving encryption scheme of non-linear mapping based on random function was proposed. In the scheme, the plaintext space was considered as an increasing arithmetic sequence, and each element of the sequence was mapped to a separate ciphertext space based on the key. The key was generated by a random number generating function with non-uniform distribution, and the ciphertext space was constructed by a computer program. During encrypting, the value randomly selected from the corresponding ciphertext space was able to be used as the ciphertext. Analysis and experimental results show that the proposed scheme achieves INDistinguishability under Ordered Chosen Plaintext Attack (IND-OCPA) safety and can effectively prevent statistical attacks; it has the average encryption time per 100 000 data of from 30 ms to 50 ms, resulting in high encryption efficiency; the complex parameter presets are not required in the scheme, and the scheme can be implemented in any computer language, so that it is easy to use.

Key words: order preserving encryption, nonlinear mapping, random function, statistical attack, INDistinguishability under Ordered Chosen Plaintext Attack (IND-OCPA) safety

中图分类号:

TP309.7

徐衍胜, 张游杰. 基于随机函数的非线性映射保序加密方案[J]. 计算机应用, 2020, 40(10): 2986-2991.

XU Yansheng, ZHANG Youjie. Order preserving encryption scheme of nonlinear mapping based on random function[J]. Journal of Computer Applications, 2020, 40(10): 2986-2991.

参考文献

[1] 林闯, 苏文博, 孟坤, 等. 云计算安全:架构、机制与模型评价[J]. 计算机学报,2013,36(9):1765-1784.(LIN C,SU W B,MENG K,et al. Cloud Computing security:architecture,mechanism and modeling[J]. Chinese Journal of Computers,2013,36(9):1765-1784.)
[2] 林子雨, 赖永炫, 林琛, 等. 云数据库研究[J]. 软件学报,2012, 23(5):1148-1166.(LIN Z Y,LAI Y X,LIN C,et al. Research on cloud databases[J]. Journal of Software,2012,23(5):1148-1166.)
[3] BEHERA A,RATHA B K,SETHI S. Green cloud computing:a survey[J]. International Journal of Science Engineering and Advance Technology,2016,4(12):763-767.
[4] 季一木, 朱瞳晖, 柴博周, 等. 云环境下用户隐私混合加密方案及其性能分析[J]. 重庆邮电大学学报(自然科学版),2015,27(5):631-638.(JI Y M,ZHU T H,CHAI B Z,et al. Hybrid encryption scheme and performance analysis for user's privacy in cloud[J]. Journal of Chongqing University of Posts and Telecommunications (Natural Science Edition),2015,27(5):631-638.)
[5] AGRAWAL R,KIERNAN J,SRIKANT R,et al. Order preserving encryption for numeric data[C]//Proceedings of the 2004 ACM SIGMOD International Conference on Management of Data. New York:ACM,2004:563-574.
[6] 郁鹏, 潘森杉, 张建明. 云环境下基于非线性映射的保序加密方案[J]. 江苏大学学报(自然科学版),2018,39(2):185-193. (YU P,PAN S S,ZHANG J M. Order preserving encryption scheme based on nonlinear mapping in cloud environment[J]. Journal of Jiangsu University(Natural Science Edition),2018,39(2):185-193.)
[7] 黄保华, 王添晶, 贾丰玮. 数据库中数值型数据的加密存储与查询方法[J]. 计算机工程,2016,42(7):123-128.(HUANG B H, WANG T J,JIA F W. Encrypting storage and query method for numeric data in database[J]. Computer Engineering,2016,42(7):123-128.)
[8] 周艺华, 吉文, 杨宇光. 基于f-mOPE的数据库密文检索方案[J]. 电子与信息学报,2019,41(8):1793-1799.(ZHOU Y H,JI W, YANG Y G. Database ciphertext retrieval scheme based on f-mOPE[J]. Journal of Electronics and Information Technology,2019,41(8):1793-1799.)
[9] BOLDYREVA A,CHENETTE N,O'NEILL A. Order-preserving encryption revisited:improved security analysis and alternative solutions[C]//Proceedings of the 31st Annual Cryptology Conference,LNCS 6841. Berlin:Springer,2011:578-595.
[10] KRENDELEV S F,YAKOVLEV M,USOLTSEVA M. Orderpreserving encryption schemes based on arithmetic coding and matrices[C]//Proceedings the 2014 Federated Conference on Computer Science and Information Systems. Piscataway:IEEE, 2014:891-899.
[11] MARTÍNEZ S,MIRET J M,TOMÀS R,et al. Securing databases by using diagonal-based order preserving symmetric en-cryption[J]. Applied Mathematics and Information Sciences,2014,8(5):2085-2094.
[12] 沈楠, 贾春福, 梁爽, 等. 基于保序加密的网格化位置隐私保护方案[J]. 通信学报,2017,38(7):78-88.(SHEN N,JIA C F, LIANG S,et al. Approach of location privacy protection based on order preserving encryption of the grid[J]. Journal on Communications,2017,38(7):78-88.)
[13] 李陶深, 周雄, 黄汝维. 云环境下支持多用户的保序加密方案[J]. 广西大学学报(自然科学版),2018,43(3):1044-1052. (LI T S,ZHOU X,HUANG R W. Proxy encryption fuzzy retrieval algorithm based on local sensitive hashing in cloud computing[J]. Journal of Guangxi University(Natural Science Edition),2018, 43(3):1044-1052.)
[14] BOLDYREVA A,CHENETTE N,LEE Y,et al. Order preserving symmetric encryption[C]//Proceedings of the 28th Annual International Conference on the Theory and Applications of Cryptographic Techniques,LNCS 5479. Berlin:Springer,2009:224-241.
[15] LIU D,WANG S. Nonlinear order preserving index for encrypted database query in service cloud environments[J]. Concurrency and Computation:Practice and Experience,2013,25(13):1967-1984.

基于随机函数的非线性映射保序加密方案

Order preserving encryption scheme of nonlinear mapping based on random function

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 7

编辑推荐

Metrics

[1]	欧阳宁, 曾梦萍, 林乐平. 基于并列卷积神经网络的超分辨率重建[J]. 计算机应用, 2017, 37(4): 1174-1178.
[2]	王洁, 卢建朱, 曾小飞. 可及时确定受攻击节点的无线传感器网络数据聚合方案[J]. 计算机应用, 2016, 36(9): 2432-2437.
[3]	张琪, 梁向前, 位书敏. 基于伪随机函数的移动射频识别认证协议[J]. 计算机应用, 2015, 35(4): 977-980.
[4]	刘乐鹏张雪峰. 基于混沌和位运算的图像加密算法[J]. 计算机应用, 2013, 33(04): 1070-1073.
[5]	张利远张恩. 基于中国剩余定理的可验证理性秘密共享方案[J]. 计算机应用, 2012, 32(11): 3143-3146.
[6]	贺可鑫何小海陶青川王宇. 基于RBF神经网络的COSM图像复原算法[J]. 计算机应用, 2009, 29(1): 78-80,8.
[7]	晋良念欧阳缮李民政. 基于模糊核LVQ的Sammon非线性映射算法[J]. 计算机应用, 2007, 27(3): 553-555.