支持多用户场景的区块链可搜索加密新方案  

作　　者：周让 杨可 汪小芬[2] 曹晟[2] 张晓均 张小松[2,4] ZHOU Rang;YANG Ke;WANG Xiao-Fen;CAO Sheng;ZHANG Xiao-Jun;ZHANG Xiao-Song(College of Computer Science and Cyber Security,Chengdu University of Technology,Chengdu 610059,China;School of Computer Science and Engineering,University of Electronic Science and Technology of China,Chengdu 611731,China;School of Computer Science,Southwest Petroleum University,Chengdu 610500,China;Cyberspace Security Research Center,Peng Cheng Laboratory,Shenzhen 518055,China)

机构地区：[1]成都理工大学计算机与网络安全学院,成都610059 [2]电子科技大学网络空间安全研究中心,计算机科学与工程学院,成都611731 [3]西南石油大学计算机科学学院,成都610500 [4]鹏城实验室网络空间安全研究中心,深圳518055

出　　处：《密码学报》2023年第5期1083-1098,共16页Journal of Cryptologic Research

基　　金：国家自然科学基金(62102048,U19A2066,62372092);四川省自然科学基金(2023NSFSC1399);四川省重点研发计划(2023YFG0118)。

摘　　要：在传统可搜索加密中,数据存储通常会面临可能存在的恶意篡改,就需要添加额外的计算步骤来实现对返回结果的完整性验证,以确保所获得的数据是精准的.为了降低这方面的开销,研究者引入了区块链可搜索加密,通过区块链的共识、不可篡改等特性来解决传统可搜索加密所面临的难题.然而,现有的区块链可搜索加密方案主要面向单用户搜索场景进行设计,使其实际应用受到了极大的限制.接着,现有的区块链可搜索加密方案主要关注标签的安全性,而对搜索陷门的安全性关注较少,使得其面临被伪造的风险.为了应对这些需求,本文提出了一个支持多用户场景的区块链可搜索加密新方案,利用同态异或加密函数实现了多用户的权限控制管理,从而完成对多用户场景的支持,使其更加面向实际应用.通过引入对搜索陷门签名的方法,保障了搜索陷门的不可伪造性,提高了方案的整体安全性.此外,通过在智能合约上添加搜索结果存储列表的方式,来提升二次搜索的效率,改进方案的执行效率.评估分析表明,所提方案比同类型方案在搜索匹配方面执行效率更高.In traditional searchable encryption schemes,data storage usually faces the security threat of malicious tampering,and more computing steps have to be added to complete the data integrity verification on returned search results.In order to reduce the cost,the technology of searchable encryption on blockchain is introduced,which can solve the problems in traditional searchable encryption by the features of consensus and tamper-resistance.However,the existing searchable encryption schemes on blockchain are mainly designed for single-user,and they have significant limitations in the real applications.The current searchable encryption schemes on blockchain are mainly designed for the research point of security in index tag,rather than the search trapdoors,which suffer from the risk of forgery.Targeting at these requirements,in this paper,a new searchable encryption scheme on blockchain is presented for multi-user setting.In this scheme,the homomorphic-XOR function is adopted for the multi-users authority control management.From this,the function of multi-users data search is maintained,and the proposed scheme is more practical for real applications.Moreover,in this scheme,to enhance the security,the method of signature is used to maintain the unforgeability of search trapdoor.In addition,the way of search list storage on smart contract is implemented to improve the efficiency of second time search.The evaluation results show that the proposed scheme is more efficient than the schemes of the same type in search phase.

关 键 词：可搜索加密 多用户 陷门不可伪造性 区块链 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]