CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme

CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme

Searchable encryption provides an effective mechanism that achieves secure search over encrypted data. A popular application model of searchable encryption is that a data owner stores encrypted data to a server and the server can effectively perform keyword-based search over encrypted data according...

Full description

Bibliographic Details
Main Authors: Hui Yin, Jixin Zhang, Yinqiao Xiong, Lu Ou, Fangmin Li, Shaolin Liao, Keqin Li
Format: Article
Language:English
Published: IEEE 2019-01-01
Series:IEEE Access
Subjects:
Access control
attribute-based encryption
search authorization
searchable encryption
Online Access:https://ieeexplore.ieee.org/document/8600300/
id doaj-c919d3d3c00545679f14288b5b737e55
record_format Article
spelling doaj-c919d3d3c00545679f14288b5b737e552021-03-29T22:07:08ZengIEEEIEEE Access2169-35362019-01-0175682569410.1109/ACCESS.2018.28897548600300CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption SchemeHui Yin0Jixin Zhang1https://orcid.org/0000-0001-6890-8953Yinqiao Xiong2https://orcid.org/0000-0002-5402-8389Lu Ou3https://orcid.org/0000-0002-8441-781XFangmin Li4Shaolin Liao5https://orcid.org/0000-0002-4432-3448Keqin Li6https://orcid.org/0000-0001-5224-4048College of Computer Engineering and Applied Mathematics, Changsha University, Changsha, ChinaCollege of Computer Science and Electronic Engineering, Hunan University, Changsha, ChinaCollege of Computer Engineering and Applied Mathematics, Changsha University, Changsha, ChinaCollege of Computer Science and Electronic Engineering, Hunan University, Changsha, ChinaCollege of Computer Engineering and Applied Mathematics, Changsha University, Changsha, ChinaArgonne National Laboratory, Lemont, IL, USADepartment of Computer Science, The State University of New York, New Paltz, NY, USASearchable encryption provides an effective mechanism that achieves secure search over encrypted data. A popular application model of searchable encryption is that a data owner stores encrypted data to a server and the server can effectively perform keyword-based search over encrypted data according to a query trapdoor submitted by a data user, where the owner&#x2019;s data and the user&#x2019;s queries are kept secret in the server. Recently, many searchable encryptions have been proposed to achieve better security and performance, provide secure data updatable feature (<italic>dynamics</italic>), and search results verifiable capability (<italic>verifiability</italic>). However, most of the existing works endow the data user an unlimited search capacities and do not consider a data user&#x2019;s search permissions. In practical application, granting search privileges for data users is a very important measure to enforce data access control. In this paper, we propose an attribute-based searchable encryption scheme by leveraging the ciphertext-policy attribute-based encryption technique. Our scheme allows the data owner to conduct a fine-grained search authorization for a data user. The main idea is that a data owner encrypts an index keyword under a specified access policy, if and only if, a data user&#x2019;s attributes satisfy the access policy, the data user can perform search over the encrypted index keyword. We provide the detailed correctness analyses, performance analyses, and security proofs for our scheme. The extensive experiments demonstrate that our proposed scheme outperforms the similar work CP-ABKS proposed by Zheng on many aspects.https://ieeexplore.ieee.org/document/8600300/Access controlattribute-based encryptionsearch authorizationsearchable encryption
collection DOAJ
language English
format Article
sources DOAJ
author Hui Yin
Jixin Zhang
Yinqiao Xiong
Lu Ou
Fangmin Li
Shaolin Liao
Keqin Li
spellingShingle Hui Yin
Jixin Zhang
Yinqiao Xiong
Lu Ou
Fangmin Li
Shaolin Liao
Keqin Li
CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme
IEEE Access
Access control
attribute-based encryption
search authorization
searchable encryption
author_facet Hui Yin
Jixin Zhang
Yinqiao Xiong
Lu Ou
Fangmin Li
Shaolin Liao
Keqin Li
author_sort Hui Yin
title CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme
title_short CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme
title_full CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme
title_fullStr CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme
title_full_unstemmed CP-ABSE: A Ciphertext-Policy Attribute-Based Searchable Encryption Scheme
title_sort cp-abse: a ciphertext-policy attribute-based searchable encryption scheme
publisher IEEE
series IEEE Access
issn 2169-3536
publishDate 2019-01-01
description Searchable encryption provides an effective mechanism that achieves secure search over encrypted data. A popular application model of searchable encryption is that a data owner stores encrypted data to a server and the server can effectively perform keyword-based search over encrypted data according to a query trapdoor submitted by a data user, where the owner&#x2019;s data and the user&#x2019;s queries are kept secret in the server. Recently, many searchable encryptions have been proposed to achieve better security and performance, provide secure data updatable feature (<italic>dynamics</italic>), and search results verifiable capability (<italic>verifiability</italic>). However, most of the existing works endow the data user an unlimited search capacities and do not consider a data user&#x2019;s search permissions. In practical application, granting search privileges for data users is a very important measure to enforce data access control. In this paper, we propose an attribute-based searchable encryption scheme by leveraging the ciphertext-policy attribute-based encryption technique. Our scheme allows the data owner to conduct a fine-grained search authorization for a data user. The main idea is that a data owner encrypts an index keyword under a specified access policy, if and only if, a data user&#x2019;s attributes satisfy the access policy, the data user can perform search over the encrypted index keyword. We provide the detailed correctness analyses, performance analyses, and security proofs for our scheme. The extensive experiments demonstrate that our proposed scheme outperforms the similar work CP-ABKS proposed by Zheng on many aspects.
topic Access control
attribute-based encryption
search authorization
searchable encryption
url https://ieeexplore.ieee.org/document/8600300/
work_keys_str_mv AT huiyin cpabseaciphertextpolicyattributebasedsearchableencryptionscheme
AT jixinzhang cpabseaciphertextpolicyattributebasedsearchableencryptionscheme
AT yinqiaoxiong cpabseaciphertextpolicyattributebasedsearchableencryptionscheme
AT luou cpabseaciphertextpolicyattributebasedsearchableencryptionscheme
AT fangminli cpabseaciphertextpolicyattributebasedsearchableencryptionscheme
AT shaolinliao cpabseaciphertextpolicyattributebasedsearchableencryptionscheme
AT keqinli cpabseaciphertextpolicyattributebasedsearchableencryptionscheme
_version_ 1724192210362040320

Similar Items