Paper 2023/533
Injection-Secure Structured and Searchable Symmetric Encryption
Abstract
Recent work on dynamic structured and searchable symmetric encryption has focused on achieving the notion of forward-privacy. This is mainly motivated by the claim that forward-privacy protects against adaptive file injection attacks (Zhang, Katz, Papamanthou, Usenix Security, 2016). In this work, we revisit the notion of forward-privacy in several respects. First, we observe that forward-privacy does not necessarily guarantee security against adaptive file injection attacks if a scheme reveals other leakage patterns like the query equality. We then propose a notion of security called correlation security which generalizes forward privacy. We then show how correlation security can be used to formally define security against different kinds of injection attacks. We then propose the first injection-secure multi-map encryption encryption scheme and use it as a building block to design the first injection-secure searchable symmetric encryption (SSE) scheme; which solves one of the biggest open problems in the field. Towards achieving this, we also propose a new fully-dynamic volume-hiding multi-map encryption scheme which may be of independent interest.
Metadata
- Available format(s)
-
PDF
- Category
- Cryptographic protocols
- Publication info
- Preprint.
- Keywords
- encrypted searchstructured encryptionsearchable symmetric encryption
- Contact author(s)
-
gamjad @ google com
seny @ brown edu
tarik moataz @ mongodb com - History
- 2023-04-13: approved
- 2023-04-13: received
- See all versions
- Short URL
- https://ia.cr/2023/533
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2023/533,
author = {Ghous Amjad and Seny Kamara and Tarik Moataz},
title = {Injection-Secure Structured and Searchable Symmetric Encryption},
howpublished = {Cryptology {ePrint} Archive, Paper 2023/533},
year = {2023},
url = {https://eprint.iacr.org/2023/533}
}
