CN106803784A - The multi-user based on lattice is fuzzy in secure multimedia cloud storage can search for encryption method - Google Patents

Abstract

Obscured the present invention relates to the multi-user based on lattice in a kind of secure multimedia cloud storage and can search for encryption method.The privacy semantic search of encryption data is realized by using semantic information.The search keyword of user's selection need not be identical with the keyword in outsourcing encrypting multimedia data；For the defect that single user application is only supported in existing scheme, this programme is introduced and can search for broadcast encryption method；The multimedia file of encryption can be by one group of users to share, without sharing respective private key；Each authorized user can generate the keyword trapdoor of oneself using exclusive private key；User is also used as data is activation person and uses group's public key to upload the multimedia document of encryption.This programme introduces the concept of rear quantum safety, and devise support semantic key words search can search for broadcast encryption scheme, and the program is constructed using lattice cryptographic technique and lattice Proxy Method；Based on the difficulty of LWE (error study) problem, scheme realizes the security that resistance quantum is attacked.

Description

The multi-user based on lattice is fuzzy in secure multimedia cloud storage can search for encryption method

Technical field

Obscured the present invention relates to the multi-user based on lattice in a kind of secure multimedia cloud storage and can search for encryption method.

Background technology

Cloud computing can provide high-quality service using shared resource, triggered and got over from personal, business and government Carry out more extensive concern.Local information can be with outsourcing storage to high in the clouds, so as to avoid buying and safeguard private storage device institute band The great expense incurred come, effectively reduces management cost.This new computation schema can make enterprise be absorbed in core business rather than base Infrastructure.By internet, consumer can whenever and wherever possible obtain calculating and storage service from cloud.

Because the multi-medium data of storage is deposited with plaintext version in multimedia cloud (MC), MC service provider's is interior Portion staff may be by the sensitive data of user (for example：Finance consults video, electronic health care image, commercial contract photo etc.) Third party is sold to obtain interests.Worry bottleneck as MC development of the user to personal information privacy.Traditional encryption method The confidentiality of the multimedia file of sensitivity can be ensured, but do not support Information retrieval queries.In the multi-medium data of encryption Middle support search inquiry is extremely important, and thus user can just search the text related to some themes from substantial amounts of encryption data Shelves.Traditional AES can not meet these requirements.

In the lot of challenges that MC is faced, the most urgent problem for hindering MC widespread deployments is safety and privacy concern. Kang et al. realizes Multimedia Compression by protecting the compression sensing method of privacy, using sparse coding and transmission cognitive method Transmit the multimedia file of compression.Troncoso et al. proposes a kind of safety signal treatment technology to realize supporting secret protection MC treatment.Diaz-Sanchez et al. devises a kind of new multimedia gateway to provide the secret protection of interoperability. Want et al. introduces safety and shares with digital watermarking algorithm to realize the safeguard protection to user data, and combining Reed-Shannon Encode to reduce error of transmission.Li et al. realizes the security service of MC using the access control mechanisms based on semanteme.Also someone Proposition protects MC using safe cross multimedia model (2SBM).Yang et al. proposes a kind of safety based on smart card to be recognized Agreement is demonstrate,proved to ensure the privacy of user and data.

Can search for encryption (SE) be it is a kind of for protect data privacy and simultaneously support to encrypted document information retrieval Important mechanisms.The user that can search for encryption system specifies the keyword for describing file and keyword is encrypted to ciphertext. In information retrieval process, searching request is submitted to MC servers by user, and the request is generated by the private key of keyword and user. After receiving request, the multimedia messages of MC whois lookups matching, then send it to user.In whole process, in order to Protecting the privacy of user, sensitive multimedia must maintain secrecy with the keyword specified to server in plain text.Up to the present, it is big absolutely Most existing SE schemes are all based on number theory problem construction.But fact proved：Multinomial quantum algorithm can be solved These are based on the difficult hypothesis of number theory.This means the SE schemes that these hypothesis are based in the quantum epoch can be cracked.

Baek et al. proposes a kind of public key SE schemes without safe lane based on Bilinear map., Zhang et al. in 2011 Propose support and be coupled keyword search public key SE schemes, but do not provide complete security proving.Xu et al. is by fuzzy pass Keyword search is introduced into public key SE systems.Cao et al. proposes multi-key word sorted search, and is devised using safe KNN algorithms Support that the public key SE schemes of connection keyword search, these schemes are all constructed in the Fundamentals of Mathematics of bilinear map.Hwang is carried Safe lane public key SE algorithms are gone out and have supported to be coupled keyword search.2005, Regev et al. proposed an anti-quantum and attacks The difficult hypothesis hit：Error learning assumption (LWE:Learning with errors), and first offer Security Proof The encryption system based on LWE.Gentry devises the identity base encipherment scheme based on LWE.Cash proposes lattice agency's Method, it can generate new short base by way of safety using to the short base for fixing.Hereafter, above two technology turns into Many based on lattice cipher systems basis, such as public key cryptography scheme, based on hierarchical identity encipherment scheme (HIBE) and other Cryptography scheme.2012, Zhang et al. propose it is a kind of can search for encipherment scheme based on lattice, but not to be system use for it Family generates public key and private key, and this is a fatal shortcoming.Gu and Hou have separately designed two lattices and can search for encipherment scheme, But the two schemes are all the conceptual designs of Gentry, therefore they are closely similar.Additionally, both schemes are all only applicable to Single user application scenarios.If data owner wishes to share keyword query authority with other users, data owner must Its private key must be shared with authorized user.Therefore, they are not the ideal schemes for supporting multi-user system.

Encipherment scheme is can search for for current multimedia cloud storage, search efficiency is low, be only applicable to single user, can not The problems such as resistance quantum is attacked, the present invention proposes one kind and can improve search efficiency, be attacked suitable for multi-user, resistance quantum New type of safe data retrieval scheme.

The content of the invention

Obscured it is an object of the invention to provide the multi-user based on lattice in a kind of secure multimedia cloud storage and can search for adding Decryption method, the method

To achieve the above object, the technical scheme is that：It is multiplex based on lattice in a kind of secure multimedia cloud storage Family is fuzzy to can search for encryption method, including four entities：Key generation centre KGC, multi-medium data sender, user's group and cloud Server, methods described is implemented as follows：

S1, when setting up system, it is the user's group generation public key pk in multimedia cloud that KGC performs KeyGen algorithms, and is every Position user's group membership's generation private key, is embodied as：KeyGen(N)→(pk,{sk₁,...,sk_N), wherein, N is that user is total Number, sk₁,...,sk_NThe private key of respectively N number of user；The identification presentation of user i is ID_i；

S2, in encrypting stage, multi-medium data sender will extract a keyword for describing multimedia file, while A user's group set is defined, specifies the user in set to be able to access that the multimedia file；Then, multi-medium data sender Perform BEKS algorithms generation encryption file；

S3, user input need the keyword of search and then generate corresponding trapdoor using private key, then by keyword trapdoor Cloud Server is sent to as searching request；

S4, cloud server perform Test algorithms to after information retrieval requests, find the multimedia file of matching；So Afterwards, Search Results will be returned to user.

In an embodiment of the present invention, to implement process as follows for the step S1,

Using total number of users N as input；

S11, selection are random

S12, according to TrapGen algorithms be latticeGenerationWith

S13, calculatingWith

S14, latticeShort base be B_i←SampleBasis(A_i',B₀, S={ 1 }, L (1))；

S15, be user's group return public key：Pk=(A₀, it is that user group membership returns to private key v)：(sk₁,...sk_N)= (B₁,...B_N)。

In an embodiment of the present invention, to implement process as follows for the step S2,

With user's group public key pk, search keyword KW ∈ { 0,1 }^*Gather with user(k≤N) makees It is input；

S21, BEKS algorithm search the lexcographical order TongYiCi CiLin Γ that WordNet storehouses create KW keywords_KW；

S22, calculatingWherein

S23, calculating

S24, randomly select vectorWith σ ∈ { 0,1 }；

S25, calculatingWherein x₁←χ^3km,x₂← χ；

S26, output ciphertext CT=(p, c, Q_S,σ)。

In an embodiment of the present invention, to implement process as follows for the step S3,

Using Trapdoor algorithms, with the private key sk of user i_i=B_iWith keyword KW as input；

S31, keyword KW is carried out using WordNet expand the synset Γ for obtaining it_KW；

S32, calculating

S33, latticeShort base T_KW,iBy T_KW,i←SampleBasis(Q_i,B_i, S={ 1 }, L (1)) and generation；

S34, return T_KW,iAs the trapdoor of keyword KW, wherein, | | T_KW,i||≤L(1)。

In an embodiment of the present invention, to implement process as follows for the step S4,

Using Test algorithms, using CT and S as input；

If S41, ID_i∈ S, calculate e ← GenSamplePre (Q_S,Q_i,T_KW,i, v, r (k+1)), wherein, e is obeyedDistribution；

S42, calculating η=c-e^Tp∈Z_q；

If the degree of S43, η close to 0 exceedes closeDegree, μ=0；Otherwise μ=1；

If S44, μ and σ are equal, return to 1 and represent, CT includes KW, if 0, CT of output does not include KW.

Compared to prior art, the invention has the advantages that：

(1) semantic key words search：This programme is searched for by the semantic key words that semantic information realizes encryption data；With The search keyword of family selection need not be identical with the keyword in outsourcing encrypting multimedia data；If search keyword There is semantic relation and the cryptography key word of outer APMB package between, then can retrieve the multimedia document of correlation；

(2) can search for broadcast enciphering：In this programme, the multimedia file of encryption can be shared by group user, without Share private key；Each authorized user can generate the keyword trapdoor of oneself using respective private key；User is also used as Data is activation person uploads the multimedia document of encryption using group's public key；

(3) quantum safety afterwards：What the support semantic key words that this programme realizes anti-quantum attack were searched for can search for broadcast Encipherment scheme；Specific algorithm make use of lattice Proxy Method, and the difficulty based on LWE problem realizes the work(that resistance quantum is attacked Energy.

Brief description of the drawings

Fig. 1 is the system framework framework of the inventive method.

Fig. 2 is the key generation process that the inventive method is used.

Fig. 3 is the ciphertext generating process that the inventive method is used.

Fig. 4 is that the trapdoor that the inventive method is used creates process.

Fig. 5 is the file retrieval process that the inventive method is used.

Specific embodiment

Below in conjunction with the accompanying drawings, technical scheme is specifically described.

As Figure 1-5, the multi-user based on lattice is fuzzy in a kind of secure multimedia cloud storage of the invention can search for adding Decryption method, including four entities：Key generation centre KGC, multi-medium data sender, user's group and Cloud Server, the side Method is implemented as follows：

S1, when setting up system, it is the user's group generation public key pk in multimedia cloud that KGC performs KeyGen algorithms, and is every Position user's group membership's generation private key, is embodied as：KeyGen(N)→(pk,{sk₁,...,sk_N), wherein, N is that user is total Number, sk₁,...,sk_NThe private key of respectively N number of user；The identification presentation of user i is ID_i；

Using total number of users N as input；

S11, selection are random

S12, according to TrapGen algorithms be latticeGenerationWith(||B₀||≤L)；

S13, calculatingWith

S14, latticeShort base be B_i←SampleBasis(A_i',B₀, S={ 1 }, L (1))；

S15, be user's group return public key：Pk=(A₀, it is that user group membership returns to private key v)：(sk₁,...sk_N)= (B₁,...B_N)。

S2, in encrypting stage, multi-medium data sender will extract a keyword for describing multimedia file, while A user's group set is defined, specifies the user in set to be able to access that the multimedia file；Then, multi-medium data sender Perform BEKS algorithms generation encryption file；

S21, BEKS algorithm search the lexcographical order TongYiCi CiLin Γ that WordNet storehouses create KW keywords_KW；

S22, calculatingWherein

S23, calculating

S24, randomly select vectorWith σ ∈ { 0,1 }；

S25, calculatingWherein x₁←χ^3km,x₂← χ；

S26, output ciphertext CT=(p, c, Q_S,σ)。

S3, user input need the keyword of search and then generate corresponding trapdoor using private key, then by keyword trapdoor Cloud Server is sent to as searching request；

Using Trapdoor algorithms, with the private key sk of user i_i=B_iWith keyword KW as input；

S31, keyword KW is carried out using WordNet expand the synset Γ for obtaining it_KW；

S32, calculating

S33, latticeShort base T_KW,iBy T_KW,i←SampleBasis(Q_i,B_i, S={ 1 }, L (1)) and generation；

S34, return T_KW,iAs the trapdoor of keyword KW, wherein, | | T_KW,i||≤L(1)。

S4, cloud server perform Test algorithms to after information retrieval requests, find the multimedia file of matching；So Afterwards, Search Results will be returned to user；

Using Test algorithms, using CT and S as input；

If S41, ID_i∈ S, calculate e ← GenSamplePre (Q_S,Q_i,T_KW,i, v, r (k+1)), wherein, e is obeyedDistribution；

S42, calculating η=c-e^Tp∈Z_q；

If the degree of S43, η close to 0 exceedes closeDegree, μ=0；Otherwise μ=1；

If S44, μ and σ are equal, return to 1 and represent, CT includes KW, if 0, CT of output does not include KW.

Hereinafter process is implemented for of the invention.

Fig. 1 is system framework of the invention, comprising four entities：Key generation centre (KGC), multi-medium data sends Side, user's group and Cloud Server, the multi-user based on lattice is fuzzy in secure multimedia cloud storage of the invention can search for encryption side Method is implemented as follows：

(1) once setting up, KGC can perform the user's group generation public key pk that KeyGen algorithms are multimedia cloud to system, be every Hyte member generation private key sk.Fig. 2 is the generating process of key of the present invention.KeyGen(N)→(pk,{sk₁,...,sk_N})：With The maximum N of user's set is used as input.The identification presentation of user i is ID_i。

1. select random

2. the TrapGen algorithms according to lemma 1 areGenerationWith(||B₀||≤L)。

3. calculateWith

4. lattice are calculatedShort base B_i←SampleBasis(A_i',B₀, S={ 1 }, L (1)).

5. for group returns to public key pk=(A₀, it is that user returns to private key (sk v)₁,...sk_N)=(B₁,...B_N)。

(2) in encrypting stage, data sender can extract a keyword for describing multimedia file, equally define one Individual user's set, these users can access these files.Then, data sender performs BEKS algorithms generation encryption file. These encryption files will be contracted out to multimedia cloud and be stored and processed.Fig. 3 is the generating process of ciphertext of the present invention.BEKS (pk,KW,S)→CT：With public key pk, keyword KW ∈ { 0,1 }^*With groups of users set(k≤N) makees It is input.

1.BEKS algorithms search WordNet storehouses to build the lexcographical order synset Γ of keyword KW_KW。

2. calculateWith

3, definition

4. vector is randomly selectedWith σ ∈ { 0,1 }.

5. calculateWhereinx₂←χ。

6. ciphertext CT=(p, c, Q are exported_S,σ)。

(3) group member defines its keyword to be searched for and then generates corresponding trapdoor using private key, then by key Word trapdoor is sent to Cloud Server as searching request.Fig. 4 is the establishment process of trapdoor of the present invention.Trapdoor(sk_i,i,KW) →T_KW,i：With the private key sk of user i_i=B_iWith keyword KW as input.

1. keyword KW is carried out using WordNet storehouses expanding the synset Γ for obtaining it_KW。

2. calculate

3. T is passed through_KW,i←SampleBasis(Q_i,B_i, S={ 1 }, L (1)) and generation latticeShort base T_KW,i。

4. algorithm returns to T_KW,iAs the trapdoor of keyword KW.According to theorem 1, it is known that | | T_KW,i||≤L(1)。

(4) multimedia Cloud Server performs testing algorithm by receive information retrieval request, finds the multimedia text of matching Part.Then, Search Results are sent to group user.Fig. 5 is the retrieving of document.Test(pk,CT,T_KW,i,i,S)→ 1or0：Using CT and S as input.

If 1. ID_i∈ S, calculate e ← GenSamplePre (Q_S,Q_i,T_KW,i,v,r(k+1)).According to theorem 2, e ObeyDistribution.

2. η=c-e is calculated^Tp∈Z_q。

If 3. degree of the η close to 0 exceedes closeDegree, μ=0.Otherwise μ=1.

If 4. μ and σ are equal, algorithm returns to 1, represents that CT includes KW.If output 0, represent that CT does not include KW.

In the above method, the WordNet that is related to, lattice and correlation theorem, lemma are explained as follows：

1、WordNet：

WordNet is an English glossary database.The synonym of English glossary is divided into different subsets by it.If two Individual word at least one common meaning, then they are considered as synonym.One synset of word and it is referred to as " synonym Collection ".Therefore, we can also regard WordNet as the integration of English dictionary and synonym.WordNet is noun, verb, Adjective and adverbial word construct synset, but have ignored preposition and determiner.Herein, we will be using WordNet structures Build the synset of keyword KW：It is made up of keyword KW and its synonym.Then the set is rearranged into dictionary suitable Sequence S'=(s₁,...,s_n) with convenient use.The synset Γ of KW_KW=(KW, S') is represented.

2nd, lattice：

A=[a₁,...,a_n] tie up lattice into, n by n Linear independent vectors and generated by matrix A, it is denoted as Λ={ Ac= ∑_{i∈{1,...,n}}c_ia_i,c_i∈ z }, define two kinds of modular latticesWithWherein q be prime number and| | A | | representing matrixs A most long lines Norm,Represent the Gram-Schmidt orthogonal matrixes of matrix A.

RⁿOn centered on c n dimension Gaussian function be：ρ_σ,c(x)=exp (- π | | x-c | |²/σ²) and ρ_σ,_c(Λ)=∑_x ρ_σ,c(x) (σ ＞ 0).The discrete Gaussian Profile of Λ is D_Λ,σ(x)=ρ_σ,c(x)/ρ_σ,c(Λ)。

Define 1：Assuming that n, m, q are positive integers.χ isOn distribution, fromIn randomly select s.Randomly selectWith x ∈ χ, A_s,χObey { A, A^TS+x (modq) } distribution.Prejudgementing character LWE (error study) problem should be by A_s,χ WithRandom sample in make a distinction.

Lemma 1：In the presence of a probabilistic polynomial time algorithm TrapGen, positive integer n, m, q (q >=2, m >=5nlgq) As input, outputSo that A be statisticallyIn it is equally distributed, B is lattice's Base, andProbability be n^ω(1)。

Define matrixAnd A*=[A₁,...A_k], whereinForS= {i₁,...,i_j, define A_SRepresentFollowing theorem can utilize latticeMiddle generation lattice

Theorem 1：Assuming that n, q, m, k (n, q >=2, m >=2nlgq) are positive integer, input matrixSet Base B_SWith an integerThen there is probabilistic polynomial Time algorithm SampleBasis output B ← SampleBasis (A, B_S, S, L), wherein B isBase, and

Theorem 2：Assuming that n, q, m, k (n, q >=2, m >=2nlgq) are positive integer, input matrixSet Base B_S, vectorAnd integerThen there is a probability many Item formula time algorithm GenSamplePre output e ← GenSamplePre (A, B_S, S, y, r), the distribution of wherein e is obeyed

The invention aims to：Using multimedia cloud, user can be stored in cloud the multimedia file of oneself, with Reduction is locally stored and maintained the inconvenience that multimedia file is brought.In order to ensure data safety and individual privacy, user can be by Part sensitive data, is then stored into Cloud Server after encryption.When these data are needed to use, user can be right using the present invention High in the clouds data carry out keyword retrieval.When authorized user wishes to search the document related to searching keyword semanteme, or When cannot be input into accurate keyword due to a variety of causes, it is also possible to match the document of semantic correlation.Meanwhile, the present invention is supported Multi-user's broadcast encryption mechanisms without shared key, additionally it is possible to resist quantum attack.

Above is presently preferred embodiments of the present invention, all changes made according to technical solution of the present invention, produced function work During with scope without departing from technical solution of the present invention, protection scope of the present invention is belonged to.

Claims (5)

1. the multi-user based on lattice is fuzzy in a kind of secure multimedia cloud storage can search for encryption method, it is characterised in that：Including Four entities：Key generation centre KGC, multi-medium data sender, user's group and Cloud Server, methods described implement as Under：

S1, when setting up system, it is the user's group generation public key pk in multimedia cloud that KGC performs KeyGen algorithms, and is every use Family group membership generates private key, is embodied as：KeyGen(N)→(pk,{sk₁,...,sk_N), wherein, N is total number of users, sk₁,...,sk_NThe private key of respectively N number of user；The identification presentation of user i is ID_i；

S2, in encrypting stage, multi-medium data sender will extract a keyword for describing multimedia file, at the same definition One user's group set, specifies the user in set to be able to access that the multimedia file；Then, multi-medium data sender performs BEKS algorithms generation encryption file；

S3, user input need the keyword of search and then generate corresponding trapdoor using private key, then using keyword trapdoor as Searching request is sent to Cloud Server；

S4, cloud server perform Test algorithms to after information retrieval requests, find the multimedia file of matching；Then, will Search Results will be returned to user.

2. the multi-user based on lattice is fuzzy in secure multimedia cloud storage according to claim 1 can search for encryption method, It is characterized in that：It is as follows that the step S1 implements process,

Using total number of users N as input；

S11, selection are random

S12, according to TrapGen algorithms be latticeGenerationWith

S13, calculatingWith

S14, latticeShort base be B_i←SampleBasis(A_i',B₀, S={ 1 }, L (1))；

S15, be user's group return public key：Pk=(A₀, it is that user group membership returns to private key v)：(sk₁,...sk_N)=(B₁, ...B_N)。

3. the multi-user based on lattice is fuzzy in secure multimedia cloud storage according to claim 2 can search for encryption method, It is characterized in that：It is as follows that the step S2 implements process,

With user's group public key pk, search keyword KW ∈ { 0,1 }^*Gather with userAs defeated Enter；

S21, BEKS algorithm search the lexcographical order TongYiCi CiLin Γ that WordNet storehouses create KW keywords_KW；

S22, calculatingWherein

S23, calculating

S24, randomly select vectorWith σ ∈ { 0,1 }；

S25, calculatingWherein x₁←χ^3km,x₂←χ；

S26, output ciphertext CT=(p, c, Q_S,σ)。

4. the multi-user based on lattice is fuzzy in secure multimedia cloud storage according to claim 3 can search for encryption method, It is characterized in that：It is as follows that the step S3 implements process,

Using Trapdoor algorithms, with the private key sk of user i_i=B_iWith keyword KW as input；

S31, keyword KW is carried out using WordNet expand the synset Γ for obtaining it_KW；

S32, calculating

S33, latticeShort base T_KW,iBy T_KW,i←SampleBasis(Q_i,B_i, S={ 1 }, L (1)) and generation；

S34, return T_KW,iAs the trapdoor of keyword KW, wherein, | | T_KW,i||≤L(1)。

5. the multi-user based on lattice is fuzzy in secure multimedia cloud storage according to claim 4 can search for encryption method, It is characterized in that：It is as follows that the step S4 implements process,

Using Test algorithms, using CT and S as input；

If S41, ID_i∈ S, calculate e ← GenSamplePre (Q_S,Q_i,T_KW,i, v, r (k+1)), wherein, e is obeyedDistribution；

S42, calculating η=c-e^Tp∈Z_q；

If the degree of S43, η close to 0 exceedes closeDegree, μ=0；Otherwise μ=1；

If S44, μ and σ are equal, return to 1 and represent, CT includes KW, if 0, CT of output does not include KW.