一种基于多服务器的安全可搜索加密方法  

作　　者：吴凯 王海江 魏贵义[3] 陈力 WU Kai;WANG Haijiang;WEI Guiyi;CHEN Li(School of Mechanical and Energy Engineering,ZhejiangUniversity of Science and Technology,Hangzhou 310023,Zhejiang,China;School of Information and Electronic Engineering,ZhejiangUniversity of Science and Technology,Hangzhou 310023,Zhejiang,China;School of Computer andInformation Engineering,Zhejiang Gongshang University,Hangzhou 310018,Zhejiang,China)

机构地区：[1]浙江科技学院机械与能源工程学院,杭州310023 [2]浙江科技学院信息与电子工程学院,杭州310023 [3]浙江工商大学计算机与信息工程学院,杭州310018

出　　处：《浙江科技学院学报》2020年第6期523-530,共8页Journal of Zhejiang University of Science and Technology

基　　金：浙江省自然科学基金项目(LQ20F020010)。

摘　　要：为了解决在群协作中传统可搜索加密机制存在服务器叛逆的问题,提出了一种基于多服务器的安全可搜索加密方法。本方法利用多服务器的协同遍历计算,通过群组密钥协商和双线性配对的算法来提高可搜索加密的安全性。首先采用群组密钥协商协议构造出密钥,对群共享文件和关键字加密;然后通过私钥与关键字间的哈希运算产生搜索令牌;最后通过多服务器的双线性配对算法完成对加密关键字的检索,实现可搜索加密。安全性分析表明,本方法能够实现安全的可搜索加密和叛逆者追踪,同时可保证关键字与搜索令牌的安全,防止隐私数据泄露。困难性假设证明显示,基于多服务器的安全可搜索加密方法能够提高可搜索加密的安全性,具备抵御服务器叛逆风险的能力。In group collaboration,a secure searchable encryption method based on multiple servers was proposed to solve the risk of server rebellion in the traditional searchable encryption mechanism.This method applied multi-server collaborative traversal calculations to improve the security of searchable encryption through group key agreement and bilinear pairing algorithms.Firstly,the group shared files and the keywords were encrypted to construct the key by using the group key agreement protocol.Then,the hash calculation of the private key and the keywords was used to generate a search token.Finally,the multi-server bilinear pairing algorithm was employed to complete retrieval of the encrypted keywords and achieve secure searchable encryption.Security analysis shows that this method can achieve secure searchable encryption and trace traitors,ensure the security and privacy of keywords and search tokens,and prevent privacy data from disclosing.The results show that the secure searchable encryption method based on multi-server can improve the security of searchable encryption and has the ability to resist the risk of server rebellion.

关 键 词：群协作 群组密钥协商 双线性配对 可搜索加密 叛逆者可追踪 

分 类 号：TN918.1[电子电信—通信与信息系统]