| With the highly developed Internet technology and support from national policies,the society’s demand for privacy information security is gradually increasing.In order to deal with massive Internet data,cloud servers have been introduced to provide data storage and sharing services.However,since cloud servers are semi-trusted entities,privacy protection and retrieval of data on the cloud are the focus of cryptography algorithm design.Among various existing cryptographic systems,attribute-based searchable encryption schemes not only enable fine-grained access control of data but also provide retrieval services of ciphertexts.In order to reduce the computing costs of data users and cloud servers,the concept of edge computing emerged.Combined with various outsourcing decryption,multi-stage encryption,and equivalence testing techniques,more functionalities are added to traditional attribute-based encryption schemes to meet the requirements of the rapidly developing practical Internet application environment.This paper aims to study the application of attribute-based searchable encryption schemes in mobile edge computing environments for privacy protection and efficient retrieval of data.Three attribute-based searchable encryption schemes are proposed by combining outsourcing decryption,offline/online encryption,and equivalence testing techniques.The details are as follows:(1)Construct an efficient attribute-based searchable encryption scheme that supports keyword search and delegates the search task to a powerful cloud server.Data owners and users generate keyword indices and search traps respectively without relying on online trusted authorities.In this scheme,data users blind their keys and send them to the cloud server for partial decryption of ciphertexts to reduce the computing cost of lightweight devices.(2)Construct an attribute-based encryption scheme with keyword equivalence testing,which combines the idea of public key encryption with equality test(PKE-ET)and ciphertext-policy attribute-based encryption(CP-ABE)for outsourced decryption and search functions in cloud-assisted networks.The scheme allows the cloud server to perform equivalence testing on uploaded ciphertexts to determine whether two different users encrypt the same plaintext and have the same identity.In the process of ciphertext retrieval and testing,the cloud server cannot obtain any encrypted messages.(3)Construct an attribute-based searchable encryption scheme that combines online/offline encryption and outsourcing decryption techniques in the context of industrial Internet.This scheme uses a reusable data ciphertext pool to reduce the computing cost of data owners in the encryption phase and outsources various data stored in the industrial cloud to edge servers to reduce the computing and cost overhead of resource-constrained devices.In the searchable phase,the ciphertexts are retrieved and matched by the designated industrial cloud server role to enhance the security and accuracy of ciphertext search.After multiple analyses and research,it is proven to be more suitable for the encrypted environment required by actual industrial IoT. |
PDF Full Text Request