Cryptology ePrint Archive: Report 2021/716

SSE and SSD: Page-Efficient Searchable Symmetric Encryption

Angèle Bossuat and Raphael Bost and Pierre-Alain Fouque and Brice Minaud and Michael Reichle

Abstract: Searchable Symmetric Encryption (SSE) enables a client to outsource a database to an untrusted server, while retaining the ability to securely search the data. The performance bottleneck of classic SSE schemes typically does not come from their fast, symmetric cryptographic operations, but rather from the cost of memory accesses. To address this issue, many works in the literature have considered the notion of locality, a simple design criterion that helps capture the cost of memory accesses in traditional storage media, such as Hard Disk Drives. A common thread among many SSE schemes aiming to improve locality is that they are built on top of new memory allocation schemes, which form the technical core of the constructions. The starting observation of this work is that for newer storage media such as Solid State Drives (SSDs), which have become increasingly common, locality is not a good predictor of practical performance. Instead, SSD performance mainly depends on page efficiency, that is, reading as few pages as possible. We define this notion, and identify a simple memory allocation problem, Data-Independent Packing (DIP), that captures the main technical challenge required to build page-efficient SSE. As our main result, we build a page-efficient and storage-efficient data-independent packing scheme, and deduce the Tethys SSE scheme, the first SSE scheme to achieve at once O(1) page efficiency and O(1) storage efficiency. The technical core of the result is a new generalization of cuckoo hashing to items of variable size. Practical experiments show that this new approach achieves excellent performance.

Category / Keywords: cryptographic protocols / symmetric searchable encryption, provable security, implementation, bin packing

Original Publication (with minor differences): IACR-CRYPTO-2021

Date: received 28 May 2021, last revised 21 Oct 2021

Contact author: raphael_bost at alumni brown edu, brice minaud at ens fr

Available format(s): PDF | BibTeX Citation

Note: Fixed missing references to appendices.

Version: 20211021:154932 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]