Paper 2024/1302
RABAEKS: Revocable Attribute-based Authenticated Encrypted Search over Lattice for Multi-receiver Cloud Storage
Abstract
With the widespread development of cloud storage, searching over the encrypted data (without decryption) has become a crucial issue. Public key authenticated encryption with keyword search (PAEKS) retrieves encrypted data, and resists inside keyword guessing attacks (IKGAs). Most PAEKS schemes cannot support access control in multi-receiver models. To address this concern, attribute-based authenticated encryption with keyword search (ABAEKS) has been studied. However, the access privilege for the ciphertext may change, and the conventional cryptographic primitives are not resistant to quantum computing attacks, which exhibits a limited applicability and poor security for cloud storage. In this paper, we propose RABAEKS, the first post-quantum revocable attribute-based authenticated encrypted search scheme for multi-receiver cloud storage. Our design enables cloud server enforces the access control of data receivers in the search process. For practical consideration, we further introduce a revocation mechanism of data receivers, which makes the access control more dynamic. We then define and rigorously analyze the security our scheme. Through the performance evaluations and comparisons, our computational overhead of ciphertext generation, trapdoor generation and search algorithm are at least 20×, 1.67× and 1897× faster than prior arts, respectively, which is practical for cloud storage.
Metadata
- Available format(s)
- Category
- Public-key cryptography
- Publication info
- Preprint.
- Keywords
- Cloud storageauthenticated searchable encryptionrevocationaccess control
- Contact author(s)
-
caoyibo @ bupt edu cn
syxu2 @ cs hku hk
flyover100 @ 163 com
smyiu @ cs hku hk - History
- 2024-08-23: approved
- 2024-08-21: received
- See all versions
- Short URL
- https://ia.cr/2024/1302
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2024/1302, author = {Yibo Cao and Shiyuan Xu and Xiu-Bo Chen and Siu-Ming Yiu}, title = {{RABAEKS}: Revocable Attribute-based Authenticated Encrypted Search over Lattice for Multi-receiver Cloud Storage}, howpublished = {Cryptology {ePrint} Archive, Paper 2024/1302}, year = {2024}, url = {https://eprint.iacr.org/2024/1302} }