• •    

基于可拆分倒排索引的密文检索方案

孙晓玲,沈焱萍,杨秋格,杨光,陈涛   

  1. 防灾科技学院
  • 收稿日期:2021-01-20 修回日期:2021-03-18 发布日期:2021-03-18
  • 通讯作者: 孙晓玲

A Searchable Encryption Scheme Based on Splitting Inverted Index

  • Received:2021-01-20 Revised:2021-03-18 Online:2021-03-18
  • Contact: Xiao-Ling SUN

摘要: 为解决云环境下加密数据的快速检索问题,提出一种高效的适用于批量数据处理场合的密文检索方案。该方案基于key-value结构的集合存储方式构建两个倒排索引表If和Iw,文件索引表If是由客户端创建的文件-关键词映射表,用以存储文件标识符及其唯一关键词密文集合,搜索索引表Iw为关键词-文件映射表,用于存储关键词的搜索凭证及其所在文件的标识符集合。Iw是在用户检索过程中由云端根据搜索凭证和文件索引表If逐渐建立的,该方法有效分摊了搜索索引表Iw的建立时间和存储空间,且key-value结构支持索引表一次性合并和拆分,可快速实现文件的批量添加和删除,测试结果表明,该方案大大提高了文件更新的效率,适用于批量数据处理。通过泄露函数证明其满足自适应动态选择关键词攻击下的不可区分性安全标准。

关键词: 云计算, 可搜索加密, 倒排索引表, 索引表合并和拆分, 动态更新

Abstract: For retrieving encrypted data in cloud storage environment, the research presents an efficient searchable encryption scheme for bulk data. The scheme builds two indexes using key-value structure, one is file-word index If which stores the file identifier and its unique keywords’ ciphertext, another is word-file index Iw which stores the search token of keyword and the identifier of files that contain the keyword. Iw is learned from the search token and If during every search time, it amortizes the initial computing time and the storage space of Iw, and the key-value structure index can quickly add and delete files in batch, testing results show that the improved scheme greatly improves the update efficiency and is suitable for big data processing. Even under updates, the scheme meet the adopted indistinguishability against chosen keyword attack security standard.

Key words: cloud computing, searchable encryption, inverted index, index combining and splitting , dynamic update

中图分类号: