A significant amount of electronic health records (EHRs) have been kept in the cloud due to the quick development of healthcare information systems. However, storing EHRs in the cloud may raise security and data privacy issues. Because of the privacy of a patient's medical data, storing it on a cloud server requires encryption. Public-key encryption with keyword search (PEKS) solves the problem of retrieval on ciphertext, thus avoiding the problem of plaintext information leakage. However, most PEKS schemes are susceptible to inside keyword guessing attacks (KGA). Besides, transmitting the trapdoor to the cloud server requires a secure channel, which is impractical in healthcare information systems. Roughly speaking, PEKS does not protect the privacy of trapdoor and it is expensive to establish secure channels. In this paper, we propose a secure-channel free public key authenticated encryption with multi-keyword search (SCF-PAEMKS) scheme. The proposed SCF-PAEMKS scheme supports c
With the outbreak of e-mail message leakage events, such as the Hillary Clinton's Email Controversy, privacy and security of sensitive e-mail information have become users' primary concern. Encrypted email seems to be a viable solution for providing security, but it will greatly limit their operations. Public encryption with keyword search (PEKS) scheme is a popular technology to incorporate security protection and favorable operability functions together, which can play an important role in searching over encrypted email in a cloud server. In this paper, we propose a practical PEKS scheme named as public-key multi-keyword searchable encryption with hidden structures (PMSEHS). It could enable e-mail receivers to do the multi-keyword and boolean search in the large encrypted email database as fast as possible, without revealing more information to the cloud server. We also give comparative experiments, which demonstrate that our scheme has a higher efficiency in multi-keyword
Abstract
As cloud storage has been widely adopted in various applications, how to protect data privacy while allowing efficient data search and retrieval in a distributed environment remains a challenging research problem. Existing searchable encryption schemes are still inadequate on desired functionality and security/privacy perspectives. Specifically, supporting multi-keyword search under the multi-user setting, hiding search pattern and access pattern, and resisting keyword guessing attacks (KGA) are the most challenging tasks. In this article, we present a new searchable encryption scheme that addresses the above problems simultaneously, which makes it practical to be adopted in distributed systems. It not only enables multi-keyword search over encrypted data under a multi-writer/multi-reader setting but also guarantees the data and search pattern privacy. To prevent KGA, our scheme adopts a multi-server architecture, which accelerates search response, shares the workload, and