Title: Revocable key aggregate searchable encryption with user privacy and anonymity

Authors: Mukti Padhya; Devesh C. Jinwala

Addresses: Department of Computer Engineering, Sardar Vallabhbhai National Institute of Technology (SVNIT), Surat, India ' Department of Computer Engineering, Sardar Vallabhbhai National Institute of Technology (SVNIT), Surat, India

Abstract: The KASE schemes allow fine-grained delegation of search rights over a selected dataset using an aggregate key. However, when the existing KASE schemes are deployed in real-time applications, the support of revocation of delegated rights is highly required to manage users' access control. Therefore, in this paper we propose two solutions for the fine-grained revocation of delegated rights considering two different scenarios. First, we present a basic scheme that supports fine-grained revocation of the delegated rights on document level, instead of coarse-grained all-or-nothing access. Then, the user is not allowed to search the document by the old trapdoor if his search privileges are revoked on that document. Under a multi-user setting, we propose an advance scheme that can make the fine-grained revocation of the delegated rights on the user level. The proposed approaches also preserve users' privacy and anonymity. We present the schemes' correctness proof, formal security analysis, and performance analysis, which confirm that they are provably secure and practically efficient.

Keywords: revocation; user privacy; anonymity; searchable encryption; data sharing; data retrieval; cloud server.

DOI: 10.1504/IJICS.2022.126751

International Journal of Information and Computer Security, 2022 Vol.19 No.1/2, pp.1 - 33

Received: 30 Aug 2019
Accepted: 18 Jan 2020
Published online: 04 Nov 2022 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article