Abstract
Searchable Encryption (SE) makes it possible for users to outsource an encrypted database and search operations to cloud service providers without leaking the content of data or queries to them. A number of SE schemes have been proposed in the literature; however, most of them leak a significant amount of information that could lead to inference attacks. To minimise information leakage, there are a number of solutions, such as Oblivious Random Access Memory (ORAM) and Private Information Retrieval (PIR). Unfortunately, existing solutions are prohibitively costly and impractical. A practical scheme should support not only a lightweight user client but also a flexible key management mechanism for multi-user access. In this position paper, we briefly analyse several leakage-based attacks, and identify a set of requirements for a searchable encryption system for cloud database storage to be secure against these attacks while ensuring usability of the system. We also discuss several possible solutions to fulfil the identified requirements.
Original language | English |
---|---|
Title of host publication | Information Security and Privacy |
Subtitle of host publication | 22nd Australasian Conference, ACISP 2017 Auckland, New Zealand, July 3–5, 2017 Proceedings, Part I |
Editors | Josef Pieprzyk, Suriadi Suriadi |
Place of Publication | Cham Switzerland |
Publisher | Springer |
Pages | 266-281 |
Number of pages | 16 |
ISBN (Electronic) | 9783319600550 |
ISBN (Print) | 9783319600543 |
DOIs | |
Publication status | Published - 2017 |
Externally published | Yes |
Event | Australasian Conference on Information Security and Privacy 2017 - Massey University, Auckland, New Zealand Duration: 3 Jul 2017 → 5 Jul 2017 Conference number: 22nd http://acisp.massey.ac.nz/ https://link.springer.com/book/10.1007/978-3-319-60055-0 (Proceedings) |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Publisher | Springer |
Volume | 10342 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Conference
Conference | Australasian Conference on Information Security and Privacy 2017 |
---|---|
Abbreviated title | ACISP 2017 |
Country/Territory | New Zealand |
City | Auckland |
Period | 3/07/17 → 5/07/17 |
Internet address |