可搜索加密及其驱动的SQL隐私数据库设计  被引量：1

作　　者：陆海 薛显斌 朱岩[1] 陈娥 韩皓庭 孟疏桐 林鸿杰 LU Hai;XUE Xianbin;ZHU Yan;CHEN Cecilia E;HAN Haoting;MENG Shutong;LIN Hongjie(School of Computer and Communication Engineering,University of Science and Technology Beijing,Beijing 100083,China;North Navigation Control Technology Co.Ltd.,Beijing 102600,China)

机构地区：[1]北京科技大学计算机与通信工程学院,北京100083 [2]北方导航控制技术股份有限公司,北京102600

出　　处：《工程科学学报》2024年第11期2085-2098,共14页Chinese Journal of Engineering

基　　金：国家自然科学基金资助项目(61972032);科技部国家重点技术研发计划资助项目(2018YFB1402702)。

摘　　要：隐私数据库是促进国家大数据战略与数据要素市场发展中构建数据开放、共享及治理体系的重要手段,而可搜索加密作为实现隐私数据库的重要密码技术,仍存在缺乏灵活检索机制及抗量子安全等问题,也难以适配关系数据库中的结构化查询语言(SQL)查询机制.在对可搜索加密技术现状分析基础上,本文设计了可适配关系数据库SQL查询语言的隐私数据库架构,客户端引入隐私SQL引擎将索引和数据字段转变为密文状态;用户发起查询请求时,该引擎可依据查询策略生成查询凭证,隐私数据库进而依据凭证对密态索引进行密码化检索,匹配成功的密态数据字段可由用户私钥进行解密.进一步,本文在格密码体制下利用理想格上短整数解(R-SIS)和带误差学习(R-LWE)困难问题,设计了检索策略的属性基可搜索加密(RPABSE)方案用以支持上述隐私数据库密码系统的构建.该方案将查询策略与查询凭证相绑定,确保密文数据的索引可依据查询策略进行细粒度密码化检索;同时,引入小策略矩阵(SPM)来优化安全查询策略生成,降低索引匹配过程中累积误差.由安全性证明可知,查询凭证满足在选择策略攻击下的不可伪造性(EU-CPA),所提系统满足在带有策略和标识查询的选择明文攻击下的语义安全性(IND-PIQ-CPA).In the era of national big data strategies and burgeoning data markets,privacy-preserving databases play a crucial role in establishing an environment that is open,shared,and governed.Central to the construction of such databases is searchable encryption(SE),a fundamental cryptographic technology that enables efficient searching within encrypted data without the need for decryption.Among various SE schemes,attribute-based SE(ABSE)provides advantages in access control,data authenticity,and retrieval efficiency.However,a substantial limitation of most current ABSE implementations is their inability to support flexible SQL query methods in relational databases,as well as more granular query policies.Moreover,the reliance on traditional algebraic structures,such as bilinear pairing,renders these systems susceptible to quantum computing attacks.To address these challenges,this study presents a novel architecture for privacy-preserving databases that accommodates the SQL query language used in relational databases.This architecture is divided into two parts:clients and cloud outsourcing services.Within this framework,all data are in a ciphertext form outside of client access,and the data table in the cloud-based privacy-preserving database comprises four types of fields:public,encrypted index,encrypted data,and confidential fields.Upon receiving an SQL query from a user,the privacy-preserving SQL engine translates it into a private SQL language.This enables cryptographic retrieval of the encrypted index fields by converting the SQL query policy into several query credentials linked with the policy.These credentials facilitate the retrieval of encrypted data fields from the database,matching their index with the policy.The retrieved encrypted data fields can then be decrypted using the user’s private key at the client’s end for confirming the user’s identity.To provide cryptographic support for this privacy-preserving database architecture,we propose a retrieval-policy ABSE(RP-ABSE)scheme built upon a key-policy a

关 键 词：隐私数据库 安全查询策略 属性基可搜索加密 理想格 小策略矩阵 

分 类 号：TP39[自动化与计算机技术—计算机应用技术]