TY - JOUR
T1 - A pairing-free certificateless authenticated searchable encryption with multi-trapdoor indistinguishability (MTP-IND) guarantees
AU - Senouci, Mohammed Raouf
AU - Senouci, Abdelkader
AU - Li, Fagen
N1 - Funding information: This work is supported by the Sichuan Science and Technology Program (grant no. 2022ZHCG0037)
PY - 2024/3/1
Y1 - 2024/3/1
N2 - With the rapid growth of the internet of things (IoT), resource-constrained devices have become an integral part of our daily lives. Public key encryption with keyword search (PEKS) enables users to search over encrypted data without revealing sensitive information. However, the computational and memory constraints of these devices pose challenges for implementing PEKS. Additionally, most of the existing schemes are either vulnerable to attacks like keyword guessing attacks, or they rely on bilinear-pairing operations that make them inefficient for resource-constrained devices, or both. To address these issues, we propose a lightweight and pairing-free certificateless authenticated searchable encryption scheme with multi-trapdoor guarantees for resource-constrained devices. Our scheme embeds a shared key in the ciphertext and in the trapdoor that is computable by both the sender and the receiver to ensure authentication and protection against keyword guessing attacks. We also make the trapdoor generation probabilistic to eliminate the need for a secure channel when transmitting the trapdoor, hence, achieving multi-trapdoor indistinguishability. Furthermore, we employ regular cryptography operations instead of bilinear-pairing operations to support deployment on resource-constrained devices. Our scheme is efficient, secure, and outperforms other compared schemes in terms of security guarantees, computational costs, and communication overhead.
AB - With the rapid growth of the internet of things (IoT), resource-constrained devices have become an integral part of our daily lives. Public key encryption with keyword search (PEKS) enables users to search over encrypted data without revealing sensitive information. However, the computational and memory constraints of these devices pose challenges for implementing PEKS. Additionally, most of the existing schemes are either vulnerable to attacks like keyword guessing attacks, or they rely on bilinear-pairing operations that make them inefficient for resource-constrained devices, or both. To address these issues, we propose a lightweight and pairing-free certificateless authenticated searchable encryption scheme with multi-trapdoor guarantees for resource-constrained devices. Our scheme embeds a shared key in the ciphertext and in the trapdoor that is computable by both the sender and the receiver to ensure authentication and protection against keyword guessing attacks. We also make the trapdoor generation probabilistic to eliminate the need for a secure channel when transmitting the trapdoor, hence, achieving multi-trapdoor indistinguishability. Furthermore, we employ regular cryptography operations instead of bilinear-pairing operations to support deployment on resource-constrained devices. Our scheme is efficient, secure, and outperforms other compared schemes in terms of security guarantees, computational costs, and communication overhead.
KW - Authenticated encryption
KW - Certificateless searchable encryption
KW - Keyword guessing attack
KW - Multi-trapdoor indistinguishability
KW - Pairing-free
KW - Resource-constrained devices
UR - http://www.scopus.com/inward/record.url?scp=85182868492&partnerID=8YFLogxK
U2 - 10.1007/s11235-023-01095-1
DO - 10.1007/s11235-023-01095-1
M3 - Article
AN - SCOPUS:85182868492
SN - 1018-4864
VL - 85
SP - 443
EP - 460
JO - Telecommunication Systems
JF - Telecommunication Systems
IS - 3
ER -