Time Controlled Expressive Predicate Query With Accountable Anonymity

Yang Yang; Chunming Rong; Xianghan Zheng; Hongju Cheng; Victor Chang; Xiangyang Luo; Zuoyong Li

doi:10.1109/tsc.2022.3162285

Time Controlled Expressive Predicate Query With Accountable Anonymity

Yang Yang, Chunming Rong, Xianghan Zheng, Hongju Cheng, Victor Chang, Xiangyang Luo, Zuoyong Li

Research output: Contribution to journal › Article › peer-review

Abstract

Many existing searchable encryption schemes are inflexible in retrieval patterns. The data usage authorization is almost permanent valid as long as the user is not revoked. This “all-or-nothing” authorization mode is not compatible with the “pay-as-you-use” commercial billing model. In this article, we propose a new notion called time controlled expressive predicate query with accountable anonymity. It realizes time controlled data query, where a time server issues time token to authorize search privilege in designated time period. The data users can anonymously query on encrypted data and the anonymity is accountable in a way that the trusted authority is able to deanonymize data users if they misbehave in the system. The underlying techniques are anonymous credential, Pederson commitment and non-interactive zero-knowledge proof. We firstly design an efficient expressive predicate query (EPQ) scheme, which is proved secure to protect the privacy of expressive search predicate. Based on EPQ, we present a concrete system instantiation, which realizes key-escrow free and time token nontransferability. The formal definition and security models are given out. The system is formally proved indistinguishable against chosen keyword-set attacks, unforgeable of time tokens and accountable of anonymous users. The comparison and experiment results demonstrate its scalability and efficiency.

Original language	English
Pages (from-to)	1444-1457
Number of pages	14
Journal	IEEE Transactions on Services Computing
Volume	16
Issue number	2
DOIs	https://doi.org/10.1109/tsc.2022.3162285
Publication status	Published - 1 Apr 2023

Bibliographical note

Funding Information:
This work was supported in part by National Natural Science Foundation of China under Grants 61872091, U1804263, 62172435, and 61972187, in part by Fujian Provincial Key Laboratory of Information Processing and Intelligent Control (Minjiang University) under Grant MJUKF-IPIC201906, in part by Science Foundation of Fujian Province of China under Grants 2019J01245 and 2020J02024, in part by Zhongyuan Science and Technology Innovation Leading Talent Project under Grant 214200510019, in part by Fuzhou Science and Technology Project under Grant 2020-RC-186, in part by Key-Area Research and Development Program of Guangdong Province under Grant 2020B0101090005.

Publisher Copyright:
© 2008-2012 IEEE.

Keywords

Searchable encryption
accountable
anonymity
expressive keyword search
time control
zero-knowledge proof

Access to Document

10.1109/tsc.2022.3162285

Cite this

@article{286d1400a76248b2b96d53015712e265,

title = "Time Controlled Expressive Predicate Query With Accountable Anonymity",

abstract = "Many existing searchable encryption schemes are inflexible in retrieval patterns. The data usage authorization is almost permanent valid as long as the user is not revoked. This “all-or-nothing” authorization mode is not compatible with the “pay-as-you-use” commercial billing model. In this article, we propose a new notion called time controlled expressive predicate query with accountable anonymity. It realizes time controlled data query, where a time server issues time token to authorize search privilege in designated time period. The data users can anonymously query on encrypted data and the anonymity is accountable in a way that the trusted authority is able to deanonymize data users if they misbehave in the system. The underlying techniques are anonymous credential, Pederson commitment and non-interactive zero-knowledge proof. We firstly design an efficient expressive predicate query (EPQ) scheme, which is proved secure to protect the privacy of expressive search predicate. Based on EPQ, we present a concrete system instantiation, which realizes key-escrow free and time token nontransferability. The formal definition and security models are given out. The system is formally proved indistinguishable against chosen keyword-set attacks, unforgeable of time tokens and accountable of anonymous users. The comparison and experiment results demonstrate its scalability and efficiency.",

keywords = "Searchable encryption, accountable, anonymity, expressive keyword search, time control, zero-knowledge proof",

author = "Yang Yang and Chunming Rong and Xianghan Zheng and Hongju Cheng and Victor Chang and Xiangyang Luo and Zuoyong Li",

note = "Funding Information: This work was supported in part by National Natural Science Foundation of China under Grants 61872091, U1804263, 62172435, and 61972187, in part by Fujian Provincial Key Laboratory of Information Processing and Intelligent Control (Minjiang University) under Grant MJUKF-IPIC201906, in part by Science Foundation of Fujian Province of China under Grants 2019J01245 and 2020J02024, in part by Zhongyuan Science and Technology Innovation Leading Talent Project under Grant 214200510019, in part by Fuzhou Science and Technology Project under Grant 2020-RC-186, in part by Key-Area Research and Development Program of Guangdong Province under Grant 2020B0101090005. Publisher Copyright: {\textcopyright} 2008-2012 IEEE.",

year = "2023",

month = apr,

day = "1",

doi = "10.1109/tsc.2022.3162285",

language = "English",

volume = "16",

pages = "1444--1457",

journal = "IEEE Transactions on Services Computing",

issn = "1939-1374",

publisher = "IEEE",

number = "2",

}

TY - JOUR

T1 - Time Controlled Expressive Predicate Query With Accountable Anonymity

AU - Yang, Yang

AU - Rong, Chunming

AU - Zheng, Xianghan

AU - Cheng, Hongju

AU - Chang, Victor

AU - Luo, Xiangyang

AU - Li, Zuoyong

N1 - Funding Information: This work was supported in part by National Natural Science Foundation of China under Grants 61872091, U1804263, 62172435, and 61972187, in part by Fujian Provincial Key Laboratory of Information Processing and Intelligent Control (Minjiang University) under Grant MJUKF-IPIC201906, in part by Science Foundation of Fujian Province of China under Grants 2019J01245 and 2020J02024, in part by Zhongyuan Science and Technology Innovation Leading Talent Project under Grant 214200510019, in part by Fuzhou Science and Technology Project under Grant 2020-RC-186, in part by Key-Area Research and Development Program of Guangdong Province under Grant 2020B0101090005. Publisher Copyright: © 2008-2012 IEEE.

PY - 2023/4/1

Y1 - 2023/4/1

N2 - Many existing searchable encryption schemes are inflexible in retrieval patterns. The data usage authorization is almost permanent valid as long as the user is not revoked. This “all-or-nothing” authorization mode is not compatible with the “pay-as-you-use” commercial billing model. In this article, we propose a new notion called time controlled expressive predicate query with accountable anonymity. It realizes time controlled data query, where a time server issues time token to authorize search privilege in designated time period. The data users can anonymously query on encrypted data and the anonymity is accountable in a way that the trusted authority is able to deanonymize data users if they misbehave in the system. The underlying techniques are anonymous credential, Pederson commitment and non-interactive zero-knowledge proof. We firstly design an efficient expressive predicate query (EPQ) scheme, which is proved secure to protect the privacy of expressive search predicate. Based on EPQ, we present a concrete system instantiation, which realizes key-escrow free and time token nontransferability. The formal definition and security models are given out. The system is formally proved indistinguishable against chosen keyword-set attacks, unforgeable of time tokens and accountable of anonymous users. The comparison and experiment results demonstrate its scalability and efficiency.

AB - Many existing searchable encryption schemes are inflexible in retrieval patterns. The data usage authorization is almost permanent valid as long as the user is not revoked. This “all-or-nothing” authorization mode is not compatible with the “pay-as-you-use” commercial billing model. In this article, we propose a new notion called time controlled expressive predicate query with accountable anonymity. It realizes time controlled data query, where a time server issues time token to authorize search privilege in designated time period. The data users can anonymously query on encrypted data and the anonymity is accountable in a way that the trusted authority is able to deanonymize data users if they misbehave in the system. The underlying techniques are anonymous credential, Pederson commitment and non-interactive zero-knowledge proof. We firstly design an efficient expressive predicate query (EPQ) scheme, which is proved secure to protect the privacy of expressive search predicate. Based on EPQ, we present a concrete system instantiation, which realizes key-escrow free and time token nontransferability. The formal definition and security models are given out. The system is formally proved indistinguishable against chosen keyword-set attacks, unforgeable of time tokens and accountable of anonymous users. The comparison and experiment results demonstrate its scalability and efficiency.

KW - Searchable encryption

KW - accountable

KW - anonymity

KW - expressive keyword search

KW - time control

KW - zero-knowledge proof

UR - https://ieeexplore.ieee.org/document/9748077

UR - http://www.scopus.com/inward/record.url?scp=85127503796&partnerID=8YFLogxK

U2 - 10.1109/tsc.2022.3162285

DO - 10.1109/tsc.2022.3162285

M3 - Article

SN - 1939-1374

VL - 16

SP - 1444

EP - 1457

JO - IEEE Transactions on Services Computing

JF - IEEE Transactions on Services Computing

IS - 2

ER -

Time Controlled Expressive Predicate Query With Accountable Anonymity

Abstract

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this