去同步化攻击下数据库密文可验证检索模型  被引量：2

作　　者：孙亚楠[1] 陈微[1] SUN Ya-nan;CHEN Wei(College of Computer Science and Technology,Beihua University,Jilin Jilin 132012,China)

机构地区：[1]北华大学计算机科学技术学院,吉林吉林132012

出　　处：《计算机仿真》2021年第12期122-125,154,共5页Computer Simulation

摘　　要：针对数据库密文检索的效率不佳和隐私泄露问题,提出了基于扩展关键词的密文可验证检索模型,同时设计了去同步化攻击协议。根据哈希函数与双线性映射得到随机种子,结合其它初始化参量构造客户端属性密钥,对检索数据进行加密,按照规则存储到字典中,形成加密索引。为避免服务器猜测引发查询信息泄露,设计了扩展关键词陷门,利用陷门标识符判断客户端需要的验证数据,并通过扩展关键词的加密集合与验证集合实现密文的可验证检索。最后设计了去同步化攻击协议,采用双随机数策略,在协议被拦截时,通过双边校验计算完成验证。仿真结果表明,扩展关键词密文可验证检索模型结合去同步化攻击协议,显著提升了数据库密文检索的效率,可验证性也明显提高了检索的安全性,有效适用于大数据与云计算应用场合。In order to solve the problem of low efficiency and privacy leakage of database ciphertext retrieval, aciphertext verifiable retrieval model based on extended keywords is proposed, and a desynchronization attack protocolis designed. According to the hash function and bilinear mapping, the random seed was obtained. Combined with oth-er initialization parameters, the client attribute key was constructed, the retrieved data was encrypted, stored in thedictionary according to the rules, and the encrypted index was formed. In order to avoid query information leakagecaused by server guessing, an extended keyword trapdoor was designed. The trapdoor identifier was used to judge theverification data needed by the client, and the verifiable retrieval of ciphertext was realized through the encryption setand verification set of extended keywords. At last, the desynchronization attack protocol was designed, which adoptedthe double random number strategy. When the protocol was intercepted, it was verified by bilateral verification calcu-lation. The simulation results show that the extended keyword ciphertext verifiable retrieval model combined with de-synchronization attack protocol significantly improves the efficiency of database ciphertext retrieval, and the verifiabil-ity also significantly improves the security of retrieval, which is effectively applicable to big data and cloud computingapplications.

关 键 词：数据库密文 可验证检索 去同步化攻击 扩展关键词 双随机数 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]