Paper 2024/573

Tokenised Multi-client Provisioning for Dynamic Searchable Encryption with Forward and Backward Privacy

Arnab Bag, Indian Institute of Technology Kharagpur
Sikhar Patranabis, IBM Research India
Debdeep Mukhopadhyay, Indian Institute of Technology Kharagpur
Abstract

Searchable Symmetric Encryption (SSE) has opened up an attractive avenue for privacy-preserved processing of outsourced data on the untrusted cloud infrastructure. SSE aims to support efficient Boolean query processing with optimal storage and search overhead over large real databases. However, current constructions in the literature lack the support for multi-client search and dynamic updates to the encrypted databases, which are essential requirements for the widespread deployment of SSE on real cloud infrastructures. Trivially extending a state-of-the-art single client dynamic construction, such as ODXT (Patranabis et al., NDSS’21), incurs significant leakage that renders such extension insecure in practice. Currently, no SSE construction in the literature offers efficient multi-client query processing and search with dynamic updates over large real databases while maintaining a benign leakage profile. This work presents the first dynamic multi-client SSE scheme Nomos supporting efficient multi-client conjunctive Boolean queries over an encrypted database. Precisely, Nomos is a multi-reader-single-writer construction that allows only the gate-keeper (or the data-owner) - a trusted entity in the Nomos framework, to update the encrypted database stored on the adversarial server. Nomos achieves forward and type-II backward privacy of dynamic SSE constructions while incurring lesser leakage than the trivial extension of ODXT to a multi- client setting. Furthermore, our construction is practically efficient and scalable - attaining linear encrypted storage and sublinear search overhead for conjunctive Boolean queries. We provide an experimental evaluation of software implementation over an extensive real dataset containing millions of records. The results show that Nomos performance is comparable to the state-of-the-art static conjunctive SSE schemes in practice.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Preprint.
Keywords
Searchable EncryptionDynamic Searchable EncryptionMulti-clientSSE
Contact author(s)
amiarnabbolchi @ gmail com
sikharpatranabis @ gmail com
debdeep mukhopadhyay @ gmail com
History
2024-04-16: approved
2024-04-15: received
See all versions
Short URL
https://ia.cr/2024/573
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/573,
      author = {Arnab Bag and Sikhar Patranabis and Debdeep Mukhopadhyay},
      title = {Tokenised Multi-client Provisioning for Dynamic Searchable Encryption with Forward and Backward Privacy},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/573},
      year = {2024},
      url = {https://eprint.iacr.org/2024/573}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.