Authors:
Kaoutar Elkhiyaoui
;
Melek Önen
and
Refik Molva
Affiliation:
EURECOM, France
Keyword(s):
Privacy Preserving Keyword Search, Delegation, Cloud.
Related
Ontology
Subjects/Areas/Topics:
Applied Cryptography
;
Cryptographic Techniques and Key Management
;
Data and Application Security and Privacy
;
Data Engineering
;
Data Protection
;
Databases and Data Security
;
Information and Systems Security
;
Privacy
;
Privacy Enhancing Technologies
;
Security and Privacy for Big Data
;
Security and Privacy in IT Outsourcing
;
Security and Privacy in the Cloud
Abstract:
In this paper, we address the problem of privacy preserving delegated word search in the cloud. We consider a scenario where a data owner outsources its data to a cloud server and delegates the search capabilities to a set of third party users. In the face of semi-honest cloud servers, the data owner does not want to disclose any information about the outsourced data; yet it still wants to benefit from the highly parallel cloud environment. In addition, the data owner wants to ensure that delegating the search functionality to third parties does not allow these third parties to jeopardize the confidentiality of the outsourced data, neither does it prevent the data owner from efficiently revoking the access of these authorized parties. To these ends, we propose a word search protocol that builds upon techniques of keyed hash functions, oblivious pseudo-random functions and Cuckoo hashing to construct a searchable index for the outsourced data, %of distinct words in the encrypted outso
urced data, and uses private information retrieval of short information to guarantee that word search queries do not reveal any
information about the data to the cloud server. Moreover, we combine attribute-based encryption and oblivious pseudo-random functions to achieve an efficient revocation of authorized third parties. The proposed scheme is suitable for the cloud as it can be easily parallelized.
(More)