Paper 2021/953

State-free End-to-End Encrypted Storage and Chat Systems based on Searchable Encryption

Keita Emura, National Institute of Information and Communications Technology
Ryoma Ito, National Institute of Information and Communications Technology
Sachiko Kanamori, National Institute of Information and Communications Technology
Ryo Nojima, National Institute of Information and Communications Technology
Yohei Watanabe, National Institute of Information and Communications Technology
Abstract

Searchable symmetric encryption (SSE) has attracted significant attention because it can prevent data leakage from external devices, e.g., clouds. SSE appears to be effective to construct such a secure system; however, it is not trivial to construct such a system from SSE in practice because other parts must be designed, e.g., user login management, defining the keyword space, and sharing secret keys among multiple users who usually do not have public key certificates. In this paper, we describe the implementation of two systems based upon the state-free dynamic SSE (DSSE) (Watanabe et al., IEICE Transactions 2022), i.e., a secure storage system (for a single user) and a chat system (for multiple users). In addition to the DSSE protocol, we employ a secure multipath key exchange (SMKEX) protocol (Costea et al., CCS 2018), which is secure against some classes of unsynchronized active attackers. It allows the chat system users without certificates to share a secret key of the DSSE protocol in a secure manner. To realize end-to-end encryption, the shared key must be kept secret; thus, we must consider how to preserve the secret on, for example, a user's local device. However, this requires additional security assumptions, e.g., tamper resistance, and it seems difficult to assume that all users have such devices. Thus, we propose a secure key agreement protocol by employing the SMKEX and login information (password) that does not require an additional tamper-resistant device. Combining the proposed key agreement protocol with the underlying state-free DSSE protocol allow users who know the password to use the systems from multiple devices. We also consider a kind of explainability of the system. That is, usually, general users are not aware of the underlying DSSE and thus such secure systems should be used without recognizing the underlying cryptographic tools. On the other hand, it is highly desirable to easily explain how to encrypt data, how to preserve encrypted data on external storages, and so on, even for general users. Thus, we also implement a concierge functionality that visualizes DSSE-related data processing.

Note: An extended abstract appeared at 24th International Conference on Enterprise Information Systems (ICEIS 2022). In this full version, we improve the search complexity and re-implement our systems (Section 4). Moreover, we implement a concierge functionality that visualizes DSSE-related data processing (Section 5).

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. ICEIS 2022
Keywords
Dynamic searchable symmetric encryption Secure multipath key exchange State free Secure storage Secure Chat Implementation
Contact author(s)
k-emura @ nict go jp
History
2022-12-01: last of 3 revisions
2021-07-22: received
See all versions
Short URL
https://ia.cr/2021/953
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2021/953,
      author = {Keita Emura and Ryoma Ito and Sachiko Kanamori and Ryo Nojima and Yohei Watanabe},
      title = {State-free End-to-End Encrypted Storage and Chat Systems based on Searchable Encryption},
      howpublished = {Cryptology ePrint Archive, Paper 2021/953},
      year = {2021},
      note = {\url{https://eprint.iacr.org/2021/953}},
      url = {https://eprint.iacr.org/2021/953}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.