Multi-user cloud-based secure keyword search

Shabnam Kasra Kermanshahi, Joseph K. Liu, Ron Steinfeld

    Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

    8 Citations (Scopus)


    We propose a multi-user Symmetric Searchable Encryption (SSE) scheme based on the single-user Oblivious Cross Tags (OXT) protocol (Cash et al., CRYPTO 2013). The scheme allows any user to perform a search query by interacting with the server and any θ−1 ‘helping’ users, and preserves the privacy of database content against the server even assuming leakage of up to θ − 1 users’ keys to the server (for a threshold parameter θ), while hiding the query from the θ − 1 ‘helping users’. To achieve the latter query privacy property, we design a new distributed key-homomorphic pseudorandom function (PRF) that hides the PRF input (search keyword) from the ‘helping’ key share holders. By distributing the utilized keys among the users, the need of constant online presence of the data owner to provide services to the users is eliminated, while providing resilience against user key exposure.

    Original languageEnglish
    Title of host publicationInformation Security and Privacy
    Subtitle of host publication22nd Australasian Conference, ACISP 2017, Auckland, New Zealand, July 3–5, 2017, Proceedings, Part I
    EditorsJosef Pieprzyk, Suriadi Suriadi
    Place of PublicationCham, Switzerland
    Number of pages21
    ISBN (Electronic)9783319600550
    ISBN (Print)9783319600543
    Publication statusPublished - 2017
    EventAustralasian Conference on Information Security and Privacy 2017 - Massey University, Auckland, New Zealand
    Duration: 3 Jul 20175 Jul 2017
    Conference number: 22

    Publication series

    NameLecture Notes in Computer Science
    ISSN (Print)0302-9743
    ISSN (Electronic)1611-3349


    ConferenceAustralasian Conference on Information Security and Privacy 2017
    Abbreviated titleACISP 2017
    CountryNew Zealand
    OtherThe 22nd Australasian Conference on Information Security and Privacy (ACISP) will be held in Auckland New Zealand on 3-5 July 2017, organised by Massey University in collaboration with other New Zealand universities. ACISP has been running annually since 1996. Now in its 22nd year, is an established key forum for international researchers and industry experts to present and discuss the latest research, trends, breakthroughs, and challenges in the domain of information security and privacy.
    Internet address


    • Cloud storage
    • Multi-user
    • Query privacy
    • Searchable encryption

    Cite this

    Kasra Kermanshahi, S., Liu, J. K., & Steinfeld, R. (2017). Multi-user cloud-based secure keyword search. In J. Pieprzyk, & S. Suriadi (Eds.), Information Security and Privacy: 22nd Australasian Conference, ACISP 2017, Auckland, New Zealand, July 3–5, 2017, Proceedings, Part I (pp. 227-247). (Lecture Notes in Computer Science ; Vol. 10342). Springer.