Title: Keyword guessing on multi-user searchable encryption

Authors: Zhen Li; Minghao Zhao; Han Jiang; Qiuliang Xu

Addresses: School of Computer Science and Technology, Shandong University, Jinan 25010, China; School of Computer Science and Technology, Shandong University of Finance and Economics, Jinan 250014, China ' School of Computer Science and Technology, Shandong University, Jinan 25010, China ' School of Computer Science and Technology, Shandong University, Jinan 25010, China ' School of Computer Science and Technology, Shandong University, Jinan 25010, China

Abstract: Multi-user searchable encryption enables the client to perform keyword search over encrypted data while supporting authorisation management. Most of these schemes are constructed using public key encryption. However, public key encryption with keyword search is vulnerable to keyword guessing attack. Consequently, a secure channel is necessarily involved for secret information transformation, which leads to extra severe burden. This vulnerability is recognised in traditional searchable encryption, but it is still undecided whether it also exists in multi-user setting. In this paper, we firstly point out that keyword guessing attack is also a problem in multi-user searchable encryption without the supposed secure channel. By an in-depth investigation of some schemes proposed recently and simulating the keyword guessing attack on them, we present that none of these schemes can resist this attack. We make a comprehensive security definition and propose some open problems.

Keywords: cloud computing; keyword guessing; searchable encryption; multi-user.

DOI: 10.1504/IJHPCN.2019.099744

International Journal of High Performance Computing and Networking, 2019 Vol.14 No.1, pp.60 - 68

Received: 21 May 2016
Accepted: 08 Jan 2017
Published online: 21 May 2019 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article