Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud Storage
In cloud storage, selectively sharing encrypted data is becoming increasingly important. One key design challenge is the management of encryption keys. Traditionally, a large quantity of encryption keys have to be managed by the data owner, and an equally large number of keyword trapdoors must be se...
| Published in: | IEEE Access |
|---|---|
| Main Authors: | , , , |
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2019-01-01
|
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/8894101/ |
| _version_ | 1852819520705527808 |
|---|---|
| author | Yanqing Yao Zhengde Zhai Jianwei Liu Zhoujun Li |
| author_facet | Yanqing Yao Zhengde Zhai Jianwei Liu Zhoujun Li |
| author_sort | Yanqing Yao |
| collection | DOAJ |
| container_title | IEEE Access |
| description | In cloud storage, selectively sharing encrypted data is becoming increasingly important. One key design challenge is the management of encryption keys. Traditionally, a large quantity of encryption keys have to be managed by the data owner, and an equally large number of keyword trapdoors must be sent to the cloud for the purpose of searching over the shared data, which are cumbersome in terms of secure communication and management. Recently, key-aggregate (searchable) encryption schemes have been introduced to alleviate the problem. However, they were only designed under the Bilinear Diffie-Hellman Exponent assumption in the prior works. Lattice-based key-aggregate (searchable) encryption schemes are valuable, because they have security against quantum computing attacks, average-case to worse-case equivalence as well as simplicity and potential efficiency. Here we propose a key-aggregate encryption scheme and a key-aggregate searchable encryption scheme which are both based on a lattice problem (i.e., the Learning with Errors problem). Some key techniques are employed during the construction of the schemes. A basis delegation algorithm is designed to generate the aggregate key without increasing the lattice dimension. The encryption algorithms of the two schemes are trickily devised to make the encrypted files decryptable or searchable. To overcome the problem of general matrix multiplication failing to satisfy commutative law, a hash function is designed by using diagonalizable matrices to make the encrypted file decryptable and the trapdoor adjustable. We present the schemes' correctness proof, formal security analysis as well as performance analysis, which confirm that they are provably secure and practically efficient. To the best of our knowledge, the former is the first lattice-based key-aggregate encryption scheme and the latter is the first lattice-based key-aggregate searchable encryption scheme. We also demonstrate their application to cloud storage for searchable group data sharing by combining the two schemes. |
| format | Article |
| id | doaj-art-e7680b4cd03645d2b1914c2baf8e4286 |
| institution | Directory of Open Access Journals |
| issn | 2169-3536 |
| language | English |
| publishDate | 2019-01-01 |
| publisher | IEEE |
| record_format | Article |
| spelling | doaj-art-e7680b4cd03645d2b1914c2baf8e42862025-08-19T20:32:50ZengIEEEIEEE Access2169-35362019-01-01716454416455510.1109/ACCESS.2019.29521638894101Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud StorageYanqing Yao0https://orcid.org/0000-0001-5071-4907Zhengde Zhai1Jianwei Liu2Zhoujun Li3https://orcid.org/0000-0002-9603-9713Key Laboratory of Aerospace Network Security, Ministry of industry and information technology, School of Cyberspace Science and Technology, Beihang University, Beijing, ChinaAnt Financial Services Group, Beijing, ChinaKey Laboratory of Aerospace Network Security, Ministry of industry and information technology, School of Cyberspace Science and Technology, Beihang University, Beijing, ChinaState Key Laboratory of Software Development Environment, Beihang University, Beijing, ChinaIn cloud storage, selectively sharing encrypted data is becoming increasingly important. One key design challenge is the management of encryption keys. Traditionally, a large quantity of encryption keys have to be managed by the data owner, and an equally large number of keyword trapdoors must be sent to the cloud for the purpose of searching over the shared data, which are cumbersome in terms of secure communication and management. Recently, key-aggregate (searchable) encryption schemes have been introduced to alleviate the problem. However, they were only designed under the Bilinear Diffie-Hellman Exponent assumption in the prior works. Lattice-based key-aggregate (searchable) encryption schemes are valuable, because they have security against quantum computing attacks, average-case to worse-case equivalence as well as simplicity and potential efficiency. Here we propose a key-aggregate encryption scheme and a key-aggregate searchable encryption scheme which are both based on a lattice problem (i.e., the Learning with Errors problem). Some key techniques are employed during the construction of the schemes. A basis delegation algorithm is designed to generate the aggregate key without increasing the lattice dimension. The encryption algorithms of the two schemes are trickily devised to make the encrypted files decryptable or searchable. To overcome the problem of general matrix multiplication failing to satisfy commutative law, a hash function is designed by using diagonalizable matrices to make the encrypted file decryptable and the trapdoor adjustable. We present the schemes' correctness proof, formal security analysis as well as performance analysis, which confirm that they are provably secure and practically efficient. To the best of our knowledge, the former is the first lattice-based key-aggregate encryption scheme and the latter is the first lattice-based key-aggregate searchable encryption scheme. We also demonstrate their application to cloud storage for searchable group data sharing by combining the two schemes.https://ieeexplore.ieee.org/document/8894101/Cloud storagesearchable data sharingkey-aggregate encryptionkey-aggregate searchable encryptionlattice-based problemthe learning with errors problem |
| spellingShingle | Yanqing Yao Zhengde Zhai Jianwei Liu Zhoujun Li Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud Storage Cloud storage searchable data sharing key-aggregate encryption key-aggregate searchable encryption lattice-based problem the learning with errors problem |
| title | Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud Storage |
| title_full | Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud Storage |
| title_fullStr | Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud Storage |
| title_full_unstemmed | Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud Storage |
| title_short | Lattice-Based Key-Aggregate (Searchable) Encryption in Cloud Storage |
| title_sort | lattice based key aggregate searchable encryption in cloud storage |
| topic | Cloud storage searchable data sharing key-aggregate encryption key-aggregate searchable encryption lattice-based problem the learning with errors problem |
| url | https://ieeexplore.ieee.org/document/8894101/ |
| work_keys_str_mv | AT yanqingyao latticebasedkeyaggregatesearchableencryptionincloudstorage AT zhengdezhai latticebasedkeyaggregatesearchableencryptionincloudstorage AT jianweiliu latticebasedkeyaggregatesearchableencryptionincloudstorage AT zhoujunli latticebasedkeyaggregatesearchableencryptionincloudstorage |