We propose a general solution to the problem of efficient substring search over encrypted data. The solution enhances existing “keyword” searchable encryption schemes by allowing searching for any part of encrypted keywords without requiring one to store all possible combinations of substrings from a given dictionary. The proposed technique is based on the idea of letter orthogonalization that allows testing of string membership by performing efficient inner products. We first propose SED-1, the base protocol for substring search. We then identify some attacks on SED-1 that demonstrate the complexity of the substring search problem under different threat scenarios. This leads us to propose our second and main protocol SED-2. The protocol is also efficient in that the search complexity is linear in the size of the keyword dictionary. We run several experiments on a sizeable real world dataset to evaluate the performance of our protocol.
M.Abdalla, M.Bellare, D.Catalano, E.Kiltz, T.Kohno, T.Lange, J.Malone-Lee, G.Neven, P.Paillier and H.Shi, Searchable encryption revisited: Consistency properties, relation to anonymous IBE, and extensions, Journal of Cryptology21(3) (2008), 350–391. doi:10.1007/s00145-007-9006-6.
2.
M.Bellare, A.Boldyreva and A.O’Neill, Deterministic and efficiently searchable encryption, in: Proceedings of the 27th Annual International Cryptology Conference, Santa Barbara, California, USA, 2007.
3.
D.Bindel, J.Demmel, W.Kahan and O.Marques, On computing givens rotations reliably and efficiently, ACM Transactions on Mathematical Software (TOMS)28(2) (2002), 206–238. doi:10.1145/567806.567809.
4.
D.Boneh, G.Di Crescenzo, R.Ostrovsky and G.Persiano, Public key encryption with keyword search, in: Proceedings of the 24th International Conference on the Theory and Applications of Cryptographic Techniques, Interlaken, Switzerland, 2004.
5.
D.Boneh and B.Waters, Conjunctive, subset, and range queries on encrypted data, in: Proceedings of the 4th Theory of Cryptography Conference, Amsterdam, The Netherlands, 2007.
6.
CALO Project, Enron Email Dataset, Available at http://www.cs.cmu.edu/~enron/, Last accessed 11/11/2013.
7.
D.Cash, P.Grubbs, J.Perry and T.Ristenpart, Leakage-abuse attacks against searchable encryption, in: Proceeding of the 22th ACM Conference on Computer and Communications Security, Denver, CO, USA, 2015.
8.
D.Cash, J.Jaeger, S.Jarecki, C.Jutla, H.Krawczyk, M.Rosu and M.Steiner, Dynamic searchable encryption in very-large databases: Data structures and implementation, in: Network and Distributed System Security Symposium (NDSS’14), 2014.
9.
D.Cash, S.Jarecki, C.Jutla, H.Krawczyk, M.Rosu and M.Steiner, Highly-scalable searchable symmetric encryption with support for Boolean queries, in: Advances in Cryptology – CRYPTO’13, Springer, 2013.
10.
M.Chase and S.Kamara, Structured encryption and controlled disclosure, in: Advances in Cryptology – ASIACRYPT’10, Lecture Notes in Computer Science, Vol. 6477, Springer, 2010, pp. 577–594.
11.
M.Chase and E.Shen, Substring-searchable symmetric encryption, PoPETs2015(2) (2015), 263–281.
12.
W.Cheney and D.R.Kincaid, Linear Algebra: Theory and Applications, Jones and Bartlett, 2009.
13.
R.Curtmola, J.A.Garay, S.Kamara and R.Ostrovsky, Searchable symmetric encryption: Improved definitions and efficient constructions, in: Proceedings of the 13th ACM Conference on Computer and Communications Security, Alexandria, Virginia, USA, 2006.
14.
G.Di Crescenzo and V.Saraswat, Public key encryption with searchable keywords based on Jacobi symbols, in: Proceedings of the 8th International Conference on Cryptology in India, Chennai, India, 2007.
15.
S.Faber, S.Jarecki, H.Krawczyk, Q.Nguyen, M.Rosu and M.Steiner, Rich queries on encrypted data: Beyond exact matches, in: 20th European Symposium on Research in Computer Security ESORICS’15, Vienna, Austria, 2015, pp. 21–25.
O.Goldreich and R.Ostrovsky, Software protection and simulation on oblivious RAMs, J. ACM1996.
18.
A.S.Householder, Unitary triangularization of a nonsymmetric matrix, Journal of the ACM (JACM)5(4) (1958), 339–342. doi:10.1145/320941.320947.
19.
S.Jarecki, C.Jutla, H.Krawczyk, M.Rosu and M.Steiner, Outsourced symmetric private information retrieval, in: Proceeding of the 20th ACM Conference on Computer and Communications Security, Berlin, Germany, 2013.
20.
JSci – A Science API for Java, Available at http://jsci.sourceforge.net/, Last accessed 12/11/2013.
21.
S.Kamara and C.Papamanthou, Parallel and dynamic searchable symmetric encryption, in: Proceedings of the 17th International Conference Financial Cryptography and Data Security, Okinawa, Japan, 2013.
22.
S.Kamara, C.Papamanthou and T.Roeder, Dynamic searchable symmetric encryption, in: Proceedings of the ACM Conference on Computer and Communications Security, Raleigh, NC, USA, 2012.
23.
T.Moataz and E.Blass, Oblivious substring search with updates, IACR Cryptology ePrint Archive2015 (2015), 722.
24.
T.Moataz and A.Shikfa, Boolean symmetric searchable encryption, in: Proceedings of the 8th ACM Symposium on Information, Computer and Communications Security, Hangzhou, China, 2013.
25.
V.Pappas, B.Vo, F.Krell, S.A.Choi, V.Kolesnikov, A.Keromytis and T.Malkin, Blind Seer: A Scalable Private DBMS, Manuscript, 2013.
26.
E.Shi, J.Bethencourt, H.T.H.Chan, D.X.Song and A.Perrig, Multi-dimensional range query over encrypted data, in: Proceedings of the 28th IEEE Symposium on Security and Privacy, Berkley, California, USA, 2007, pp. 350–364.
27.
D.X.Song, D.Wagner and A.Perrig, Practical techniques for searches on encrypted data, in: Proceedings of the 21st IEEE Symposium on Security and Privacy, Berkeley, California, USA, 2000.
28.
E.Stefanov, M.van Dijk, E.Shi, C.W.Fletcher, L.Ren, X.Yu and S.Devadas, Path ORAM: An extremely simple oblivious RAM protocol, in: Proceeding of the 20th ACM Conference on Computer and Communications Security, November, Berlin, Germany, 2013.
