VCLPKES: Verifiable Certificateless Public Key Searchable Encryption Scheme for Industrial Internet of Things

Nowadays the data of the industrial Internet of Things (IIOT) have been stored in cloud servers. The security and privacy of stored data have been hot research topics. The technique of public key searchable encryption (PKSE) may contribute to protect the privacy of industrial data. It is extremely significant how to use PKSE to encrypted data and retrieve the encrypted data without revealing users’ private information. Meanwhile, most of the existing PKSE schemes do not consider the identity verification of the data owner who may upload bad ciphertext if he is malicious. In this paper, we firstly analyze the security of a certificateless searchable encryption scheme in the IIOT environment (Ma et al. scheme), and propose a feasible attack to demonstrate that their scheme is not secure. Through this attack, Type I adversary $A_{\mathrm {I}}$ can forge the trapdoor value for all keywords. Then we proposed a verifiable certificateless public key searchable encryption (VCLPKSE) scheme. The scheme not only overcomes the security issue of Ma et al. scheme, but also offers the authentications of data owners and data users. Via the authentication mechanism, data owners could not repudiate the fact they uploaded the ciphertext. Finally, we proved that the VCLPKSE scheme satisfies the ciphertext indistinguishability, trapdoor indistinguishability and unforgeability in the random oracle model. Meanwhile, we also do the simulation experiment to demonstrate the scheme’s efficiency.

[1]  Mahmoud Salmasizadeh,et al.  A Key-Policy Attribute-Based Temporary Keyword Search scheme for Secure Cloud Storage , 2020, IEEE Transactions on Cloud Computing.

[2]  Jiguo Li,et al.  Searchable ciphertext‐policy attribute‐based encryption with revocation in cloud storage , 2017, Int. J. Commun. Syst..

[3]  Sherali Zeadally,et al.  Certificateless Public Key Authenticated Encryption With Keyword Search for Industrial Internet of Things , 2018, IEEE Transactions on Industrial Informatics.

[4]  Wang Baomin,et al.  An Efficient Scheme of Multi-user Searchable Encryption with Keyword in Cloud Storage , 2013, CloudCom 2013.

[5]  Debiao He,et al.  Certificateless searchable public key authenticated encryption with designated tester for cloud-assisted medical Internet of Things , 2019, Ann. des Télécommunications.

[6]  Chien-Ming Chen,et al.  Security Analysis and Enhancement of a Certificateless Searchable Public Key Encryption Scheme for IIoT Environments , 2019, IEEE Access.

[7]  Mohammad S. Obaidat,et al.  Design of a Certificateless Designated Server Based Searchable Public Key Encryption Scheme , 2017, ICMC.

[8]  Jiguo Li,et al.  KSF-OABE: Outsourced Attribute-Based Encryption with Keyword Search Function for Cloud Storage , 2017, IEEE Transactions on Services Computing.

[9]  Xinyi Huang,et al.  Dual trapdoor identity-based encryption with keyword search , 2017, Soft Comput..

[10]  Dawn Xiaodong Song,et al.  Practical techniques for searches on encrypted data , 2000, Proceeding 2000 IEEE Symposium on Security and Privacy. S&P 2000.

[11]  Kenli Li,et al.  A multi-user searchable encryption scheme with keyword authorization in a cloud storage , 2017, Future Gener. Comput. Syst..

[12]  Yang Lu,et al.  SCF-PEPCKS: Secure Channel Free Public Key Encryption With Privacy-Conserving Keyword Search , 2019, IEEE Access.

[13]  Jianhua Chen,et al.  Certificateless searchable public key encryption scheme for mobile healthcare system , 2017, Comput. Electr. Eng..

[14]  Guofeng Wang,et al.  IDCrypt: A Multi-User Searchable Symmetric Encryption Scheme for Cloud Applications , 2018, IEEE Access.

[15]  Jianhua Chen,et al.  Certificateless Searchable Public Key Encryption Scheme for Industrial Internet of Things , 2018, IEEE Transactions on Industrial Informatics.

[16]  Yang Lu,et al.  Privacy-Preserving and Pairing-Free Multirecipient Certificateless Encryption With Keyword Search for Cloud-Assisted IIoT , 2020, IEEE Internet of Things Journal.

[17]  Aytac Azgin,et al.  CLKS: Certificateless Keyword Search on Encrypted Data , 2015, NSS.

[18]  Rafail Ostrovsky,et al.  Public Key Encryption with Keyword Search , 2004, EUROCRYPT.

[19]  Guang Gong,et al.  Verifiable symmetric searchable encryption for semi-honest-but-curious cloud servers , 2012, 2012 IEEE International Conference on Communications (ICC).

[20]  Joonsang Baek,et al.  Public Key Encryption with Keyword Search Revisited , 2008, ICCSA.

[21]  Jin Li,et al.  Verifiable searchable encryption with aggregate keys for data sharing system , 2018, Future Gener. Comput. Syst..

[22]  Mohsen Guizani,et al.  File-Centric Multi-Key Aggregate Keyword Searchable Encryption for Industrial Internet of Things , 2018, IEEE Transactions on Industrial Informatics.

[23]  Rafail Ostrovsky,et al.  Searchable symmetric encryption: improved definitions and efficient constructions , 2006, CCS '06.

[24]  Andrés Mejías,et al.  Controlled and Secure Access to Promote the Industrial Internet of Things , 2018, IEEE Access.

[25]  Jiguo Li,et al.  Constructing certificateless encryption with keyword search against outside and inside keyword guessing attacks , 2019, China Communications.

[26]  Peng Changgen,et al.  Certificateless public key encryption with keyword search , 2014, China Communications.