Paper 2023/1105

MAPLE: A Metadata-Hiding Policy-Controllable Encrypted Search Platform with Minimal Trust

Tung Le, Virginia Tech
Thang Hoang, Virginia Tech
Abstract

Commodity encrypted storage platforms (e.g., IceDrive, pCloud) permit data store and sharing across multiple users while preserving data confidentiality. However, end-to-end encryption may not be sufficient since it only offers confidentiality when the data is at rest or in transit. Meanwhile, sensitive information can be leaked from metadata representing activities during data operations (e.g., query, processing). Recent encrypted search platforms such as DORY (OSDI’20) or DURASIFT (WPES’19) permit multi-user data query functionalities, while protecting metadata privacy. However, they either incur a high processing overhead or offer limited secu- rity/functionality, and require strong trust assumptions. We propose MAPLE, a new metadata-hiding encrypted search platform that offers query functionalities (search, update) on the shared data across multiple users with complex policy controls. MAPLE protects metadata privacy all the time during query processing, while achieving significantly (asymptotically) lower processing overhead than state-of-the-art platforms. The core technique of MAPLE is the design of oblivious data structures for search index and access control coupled with secure computation techniques to enable efficient query processing with a minimal trust. We fully implemented MAPLE and evaluated its performance on commodity cloud (Amazon EC2) under real settings. Experimental results showed that MAPLE achieved a concrete performance comparable with its counterparts, while offering provably stronger security guarantees and more diverse functionalities.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. The 23rd Privacy Enhancing Technologies Symposium (PETS 2023)
Keywords
oblivious accessaccess controlsearchable encryptionencrypted databasemulti-party computation
Contact author(s)
tungle @ vt edu
thanghoang @ vt edu
History
2023-07-17: approved
2023-07-15: received
See all versions
Short URL
https://ia.cr/2023/1105
License
Creative Commons Attribution-NonCommercial
CC BY-NC

BibTeX

@misc{cryptoeprint:2023/1105,
      author = {Tung Le and Thang Hoang},
      title = {{MAPLE}: A Metadata-Hiding Policy-Controllable Encrypted Search Platform with Minimal Trust},
      howpublished = {Cryptology {ePrint} Archive, Paper 2023/1105},
      year = {2023},
      url = {https://eprint.iacr.org/2023/1105}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.