FAST SEARCHABLE ENCRYPTION METHOD
First Claim
1. A method for searchable encryption, comprising:
- setting one or more file locator generation keys;
generating one or more keyword item set locators by mapping a string containing at least a keyword to a unique value;
generating one or more file locators by encrypting file acquisition information of each of a plurality of files with at least one file locator generation key; and
forming an encrypted index by one or more keyword item sets each being identified by a keyword item set locator and containing at least one or more file locators of the files associated with the corresponding keyword.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides a method, apparatus and system for fast searchable encryption. The data owner encrypts files and stores the ciphertext to the server. The data owner generates an encrypted index according to each keyword of the files, and stores the encrypted index to the server. The index is composed of keyword item sets each being identified by a keyword item set locator and containing at least one or more file locators of the files associated with the corresponding keyword. Each file locator contains ciphertext of information for retrieval of an encrypted file and only with the correct file locator decryption key can the ciphertext be decrypted. Data owner issues a keyword item set locator as well as file locator decryption key to a searcher to enable the searcher to search on the encrypted index and retrieve files related to a certain keyword.
158 Citations
42 Claims
-
1. A method for searchable encryption, comprising:
-
setting one or more file locator generation keys; generating one or more keyword item set locators by mapping a string containing at least a keyword to a unique value; generating one or more file locators by encrypting file acquisition information of each of a plurality of files with at least one file locator generation key; and forming an encrypted index by one or more keyword item sets each being identified by a keyword item set locator and containing at least one or more file locators of the files associated with the corresponding keyword. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. An apparatus for searchable encryption, comprising:
-
an encryption/decryption setting unit configured to set one or more file locator generation keys; a keyword item set locator generation unit configured to generate one or more keyword item set locators by mapping a string containing at least a keyword to a unique value; and a file locator generation unit configured to generate one or more file locators by encrypting file acquisition information of each of a plurality of files with at least one file locator generation key; and an index forming unit configured to form an encrypted index by one or more keyword item sets each being identified by a keyword item set locator and containing at least one or more file locators of the files associated with the corresponding keyword. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A method used in encrypted file search, comprising:
-
storing an encrypted index comprising one or more keyword item sets, each keyword item set being identified by a keyword item set locator and containing at least one or more file locators each accompanied by an index locator; receiving an index locating indicator; and deleting a file locator from a keyword item set if the index locator accompanying the file locator equals to a value calculated by mapping a string containing at least the file locator, the keyword item set locator identifying the keyword item set and the received index locating indicator. - View Dependent Claims (28, 29, 30)
-
-
31. An apparatus used in encrypted file search, comprising:
-
a storage unit configured to store an encrypted index comprising one or more keyword item sets, each keyword item set being identified by a keyword item set locator and containing at least one or more file locators each accompanied by an index locator; and an index updating unit configured to delete a file locator from a keyword item set if the index locator accompanying the file locator equals to a value calculated by mapping a string containing at least the file locator, the keyword item set locator identifying the keyword item set, and a received index locating indicator. - View Dependent Claims (32, 33, 34)
-
-
35. A method for encrypted file search, comprising:
-
receiving a keyword item set locator and a file locator decryption key; retrieving one or more file locators with the keyword item set locator; decrypting each file locator with the file locator decryption key to derive one or more encrypted resource identifiers and corresponding file decryption keys; retrieving one or more encrypted files identified by the one or more encrypted resource identifier; and decrypting each encrypted file with the corresponding file decryption key. - View Dependent Claims (36, 37, 38)
-
-
39. An apparatus for encrypted file search, comprising:
-
a search request unit configured to generate a search request containing at least a keyword item set locator; a file locator decryption unit configured to decrypt one or more file locators with a file locator decryption key to derive one or more encrypted resource identifiers and corresponding file decryption keys; a file acquisition unit configured to retrieve one or more encrypted files identified by the one or more encrypted resource identifier; and a file decryption unit configured to decrypt each encrypted file with the corresponding file decryption key. - View Dependent Claims (40, 41, 42)
-
Specification