1 Pseudorandom-Permutation Index. 2 Outline Introduction Goh’s Z-IDX PRP-Index Secure game.

Slides:

Advertisements

Similar presentations

Higher Order Universal One-Way Hash Functions Deukjo Hong Graduate School of Information Security, Center for Information Security Technologies, Korea.

Advertisements

Probabilistic Public Key Encryption with Equality Test Duncan S. Wong Department of Computer Science City University of Hong Kong Joint work with Guomin.

Efficient Information Retrieval for Ranked Queries in Cost-Effective Cloud Environments Presenter: Qin Liu a,b Joint work with Chiu C. Tan b, Jie Wu b,

CSC 774 Advanced Network Security

Introduction to Practical Cryptography Lecture 9 Searchable Encryption.

1 Searchable Symmetric Encryption: Improved Definitions and Efficient Constructions Reza Curtmola Juan Garay Seny Kamara Rafail Ostrovsky Johns Hopkins.

Searchable Symmetric Encryption :Improved Definitions and Efficient Constructions Reza Curtmola Juan Garay Seny Kamara Rafail Ostrovsky.

New Efficient Searchable Encryption Schemes from Bilinear Pairings Author:Chunxiang Gu and Yuefei Zhu International Journal of Network Security, 2007 Presenter:

INTRODUCTION PROBLEM FORMULATION FRAMEWORK AND PRIVACY REQUIREMENTS FOR MRSE PRIVACY-PRESERVING AND EFFICIENT MRSE PERFORMANCE ANALYSIS RELATED WORK CONCLUSION.

1 IDENTITY BASED ENCRYPTION SECURITY NOTIONS AND NEW IBE SCHEMES FOR SAKAI KASAHARA KEY CONSTRUCTION N. DENIZ SARIER.

A PASS Scheme in Clouding Computing - Protecting Data Privacy by Authentication and Secret Sharing Jyh-haw Yeh Dept. of Computer Science Boise State University.

CS7380: Privacy Aware Computing Oblivious RAM 1. Motivation  Starting from software protection Prevent from software piracy A valid method is using hardware.

Public Key Encryption That Allows PIR Queries Dan Boneh, Eyal Kushilevitz, Rafail Ostrovsky, William E. Skeith III Presenter: 紀汶承.

1 Efficient Conjunctive Keyword-Searchable Encryption,2007 Author: Eun-Kyung Ryu and Tsuyoshi Takagi Presenter: 顏志龍.

1 適用於搜尋加密文件之有效率關鍵字索引架構. 2 Outline 緒論 - 加密搜尋相關研究 PRP-Index 及 P-Index 錯誤率分析比較與實際例子安全分析結論.

1 Efficient Conjunctive Keyword Search on Encrypted Data Storage System Author ： Jin Wook Byun Dong Hoon Lee Jongin Lim Presentered by Chia Jui Hsu Date.

Identity Based Encryption

1 Identity-Based Encryption form the Weil Pairing Author ： Dan Boneh Matthew Franklin Presentered by Chia Jui Hsu Date ：

Practical Techniques for Searches on Encrypted Data Author: Dawn Xiaodong Song, David Wagner, Adrian Perrig Presenter: 紀銘偉.

1 Queries on Encrypted Data Dan Boneh Brent Waters Stanford UniversitySRI.

Efficient Conjunctive Keyword-Searchable Encryption,2007 Author: Eun-Kyung Ryu and Tsuyoshi Takagi Presenter: 顏志龍.

Reza Curtmola Juan Garay Seny Kamara Rafail Ostrovsky

1 Conjunctive, Subset, and Range Queries on Encrypted Data Dan Boneh Brent Waters Stanford University SRI International.

Practical Techniques for Searches on Encrypted Data Author:Dawn Xiaodong Song, David Wagner, Adrian Perrig Presenter: 紀汶承.

1 Intro To Encryption Exercise 4. 2 Defining Pseudo-Random Permutation Let A be alg. with oracle to a function from {0,1} k to {0,1} k Notation: let A.

Strongly Secure Certificateless Encryption Alexander W. Dent Information Security Group

1 Secure Indexes Author ： Eu-Jin Goh Presented by Yi Cheng Lin.

1 Pseudorandom-Permutation Index. 2 Outline Introduction Goh’s Z-IDX PRP-Index Secure game.

Improved Searchable Public Key Encryption with Designated Tester Author : Hyun Sook Rhee, Jong Hwan Park, Willy Susilo, Dong Hoon Lee Presenter: Li-Tzu.

Efficient Search on Encrypted Data. Outline SWP Linear Scan SWP encrypted index Goh Bloom Filter Hybird scheme Discussion.

Main task -write me a program

Building an Encrypted and Searchable Audit Log 11th Annual Network and Distributed Security Symposium (NDSS '04); 2004 February 5-6; San Diego; CA. Presented.

Public Key Encryption that Allows PIR Queries Dan Boneh 、 Eyal Kushilevitz 、 Rafail Ostrovsky and William E. Skeith Crypto 2007.

Practical Techniques for Searches on Encrypted Data Yongdae Kim Written by Song, Wagner, Perrig.

CS555Topic 211 Cryptography CS 555 Topic 21: Digital Schemes (1)

1 Hierarchical Identity-Based Encryption with Constant Size Ciphertext Dan Boneh, Xavier Boyen and Eu-Jin Goh Eurocrypt 2005 投影片製作：張淑慧.

1 CPS216: Advanced Database Systems Notes 04: Operators for Data Access Shivnath Babu.

Ryan Henry I 538 /B 609 : Introduction to Cryptography.

Privacy-Preserving Optimal Meeting Location Determination on Mobile Devices Igor Bilogrevic, Member, IEEE, Murtuza Jadliwala, Member, IEEE, Vishal Joneja,

Cryptography for Cloud Storage Service Kaoru Kurosawa Ibaraki University, Japan CRYPTOLOGY 2012, 4-6 June, Langkawi, Malaysia.

How to Update Documents Verifiably in Searchable Symmetric Encryption Kaoru Kurosawa and Yasuhiro Ohtaki Ibaraki University, Japan.

Cryptographic Attacks on Scrambled LZ-Compression and Arithmetic Coding By: RAJBIR SINGH BIKRAM KAHLON.

CS555Spring 2012/Topic 111 Cryptography CS 555 Topic 11: Encryption Modes and CCA Security.

Public Key Encryption with keyword Search Author: Dan Boneh Rafail Ostroversity Giovanni Di Crescenzo Giuseppe Persiano Presenter: 陳昱圻.

XOR-Based Meaningful Visual Secret Sharing by Generalized Random Grids Xiaotian Wu, Lu Dai, Duanhao Ou, Wei Sun 報告者：李宏恩.

1 Common Secure Index for Conjunctive Keyword-Based Retrieval over Encrypted Data Peishun Wang, Huaxiong Wang, and Josef Pieprzyk: SDM LNCS, vol.

多媒體網路安全實驗室 Certificateless multi-proxy signature Date:2011/04/08 報告人：向峻霈出處 : Zhengping Jin, Qiaoyan Wen: Computer Communications, pp ,2011.

Secure Conjunctive Keyword Search Over Encrypted Data Philippe Golle Jessica Staddon Palo Alto Research Center Brent Waters Princeton University.

1 Lossy Trapdoor Functions and Their Applications Brent Waters SRI International Chris Peikert SRI International.

Identity based signature schemes by using pairings Parshuram Budhathoki Department of Mathematical Science FAU 02/21/2013 Cyber Security Seminar, FAU.

A new provably secure certificateless short signature scheme Authors: K.Y. Choi, J.H. Park, D.H. Lee Source: Comput. Math. Appl. (IF:1.472) Vol. 61, 2011,

Internet Key Exchange IKE ● RFC 2409 ● Services – Constructs shared authenticated keys – Establishes shared security parameters – Common SAs between IPSec.

多媒體網路安全實驗室 Practical Searching Over Encrypted Data By Private Information Retrieval Date： Reporter: Chien-Wen Huang 出處: GLOBECOM 2010, 2010 IEEE.

Chapter 15 A External Methods. © 2004 Pearson Addison-Wesley. All rights reserved 15 A-2 A Look At External Storage External storage –Exists beyond the.

Public Key Encryption with Keyword Search

Presented By Amarjit Datta

Tae-Joon Kim Jong yun Jun

1/28 Chosen-Ciphertext Security from Identity- Based Encryption Jonathan Katz U. Maryland Ran Canetti, Shai Halevi IBM.

Onlinedeeneislam.blogspot.com1 Design and Analysis of Algorithms Slide # 1 Download From

Keyword search on encrypted data. Keyword search problem  Linux utility: grep  Information retrieval Basic operation Advanced operations – relevance.

Dan Boneh Public Key Encryption from trapdoor permutations Constructions Online Cryptography Course Dan Boneh Goal: construct chosen-ciphertext secure.

Public Key Encryption with Conjunctive Keyword Search and Its Extension to a Multi-user System Source: Pairing 2007, LNCS 4575, pp.2-22, 2007 Author: Yong.

SSE-2 Step1: keygen(1 k ):s {0,1} k,output K=s Step2:Buildindex(K,D): 建立 table T, p=word bit+max bit R 假設 w 1 出現在 D 1,D 3 T[π s (w 1 ||1)]=D 1 T[π s (w.

Starter Complete the Word Search. CG3.7 Algorithms (The Insertion Sort (Chapter 46) & Algorithm Testing)

Searchable Encryption in Cloud

CPS216: Data-intensive Computing Systems

Inverted Indexing for Text Retrieval

J. Byun et al. In Secure Data Management, LNCS 4165,

Verifiable Attribute Based Keyword Search with Fine-Grained Owner-Enforced Search Authorization in the Cloud They really need a shorter title.

RANDOM NUMBERS SET # 1:

Presentation transcript:

1 Pseudorandom-Permutation Index

2 Outline Introduction Goh’s Z-IDX PRP-Index Secure game

3 Introduction Keyword index is a data structure that allows us to search in constant time for documents containing specified keywords Unfortunately, standard index constructions are not designed for encrypted documents, because they may leak some information about the document.

4 Parameter e: pseudo random permutation f: pseudo random function Key: k D w : (w 1, w 2,.., w n ) D id : document’s identifier

5 Goh ’ s Z-IDX

6 Bloom Filter

7 PRP-Index1&2 ‘water’ trapdoor: t 1 = E k (‘water’) codeword: x 1 =e(t 1, D id ) key: y 1 =f(D id, t 1 ) 1. sorted sequence2. hash(collision) BuildIndex (D, Key) SearchIndex (trapdoor, Index)

8 PRP-Index1 x 4 : (1, 4) Search time: O(log n) x 3 <x 4 <x 1 <x 5 <x 6

9 PRP-Index2 h(x4)h(x4) x 4 : (1, 4) ….. m 用 f id (E k (w 4 )) 加密 null s

10 PRP-Index3 ‘water’ trapdoor: t 1 = E k (‘water’) codeword: x 1 =f(D id, t 1 ) key: y 1 =e(t 1, D id ) 3. hash + sequence pointer BuildIndex (D, Key) SearchIndex (trapdoor, Index)

11 PRP-Index3 h(x4)h(x4) x 4 : (1, 4) E y 4 (1, 2) E y 4 (4)E y 4 (-1) s ….. m

12 ɛ -IND-CKA Encryption 1. The challenger C runs the KeyGen(s) algorithm to generate key k. 2. Attacker A can ask C for the E k (W) for any keyword W {0, 1}* of his choice. 3. A sends W 0, W 1 on which it wants to challenge. 唯一的限制是 step2 時不能對 W 0, W 1 做 query. C gives A E k ( W b ), where b {0, 1}. 4. A can continue to ask for trapdoors for any keyword as long as W ≠ W 0, W Then, A outputs b’ {0, 1} and wins the game if b=b’. Adv A (s)=|Pr[b=b’ ]-1/2| < ɛ 12

13 ɛ -IND-CKA Index 1. The challenger C runs the KeyGen(s) algorithm to generate key k. 2. Attacker A can ask C for the Buildindex(D, k) and trapdoor E k (W) where D is document and W {0, 1}* of his choice. 3. A sends D 0, D 1 on which it wants to challenge. 唯一的限制是 step2 時不能對中的 keyword 做 trapdoor query. C gives A the = Buildindex(D b, k), where b {0, 1}. 13

14 ɛ -IND-CKA Index 4. A can continue to ask for trapdoors for any keyword as long as W 5. Then, A outputs b’ {0, 1} and wins the game if b = b’. Adv A (s)=|Pr[b=b’ ] - 1/2| < ɛ

15 ɛ -IND-CKA Index If the encrypted function E is a ɛ -IND-CKA encryption, then PRP-Index is a ɛ -IND-CKA Index