Systems and methods for enabling searchable encryption
First Claim
1. A broker system enabling searchable encryption of encrypted documents stored by a client on one or more storage providers, the broker system comprising:
- a broker server in communication with the client and the one or more storage providers, the broker server including at least one processor and a memory allowing the broker server to transfer the encrypted documents between the client and the one or more storage providers and to maintain, through the at least one processor, a first translation table indicating the encrypted documents that are transferred to each storage provider of the one or more storage providers;
wherein the broker server stores, in the memory, information for at least one encrypted index for the encrypted documents anda plurality of test functions for searchable encryption mechanisms, including a first test function for a searchable encryption mechanism used to encrypt the at least one encrypted index; and
wherein the at least one processor of the broker server responds to queries of the encrypted documents from the client that encrypted the documents stored by the broker server on the one or more storage providers by selecting the first test function from the plurality of test functions based on information provided by the client and applying the first test function to the queries and the at least one encrypted index.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method for enabling searchable encryption of encrypted documents stored by a client on one or more storage providers includes a broker server in communication with the client and the one or more storage providers. The broker server is adapted to transfer the encrypted documents between the client and the one or more storage providers and to maintain information indicating where the encrypted documents are transferred. The broker server further stores information for at least one encrypted index for the encrypted documents and a test function for a searchable encryption mechanism used to encrypt the at least one encrypted index.
-
Citations
20 Claims
-
1. A broker system enabling searchable encryption of encrypted documents stored by a client on one or more storage providers, the broker system comprising:
-
a broker server in communication with the client and the one or more storage providers, the broker server including at least one processor and a memory allowing the broker server to transfer the encrypted documents between the client and the one or more storage providers and to maintain, through the at least one processor, a first translation table indicating the encrypted documents that are transferred to each storage provider of the one or more storage providers; wherein the broker server stores, in the memory, information for at least one encrypted index for the encrypted documents and a plurality of test functions for searchable encryption mechanisms, including a first test function for a searchable encryption mechanism used to encrypt the at least one encrypted index; and wherein the at least one processor of the broker server responds to queries of the encrypted documents from the client that encrypted the documents stored by the broker server on the one or more storage providers by selecting the first test function from the plurality of test functions based on information provided by the client and applying the first test function to the queries and the at least one encrypted index. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computerized method for enabling searchable encryption of encrypted documents stored on at least one storage provider by a client, the computerized method comprising:
-
receiving, at a broker server, the encrypted documents, at least one encrypted index for the encrypted documents, the encrypted index being encrypted by a searchable encryption mechanism, and identification of the searchable encryption mechanism used to encrypt the encrypted index; sending the encrypted documents to the at least one storage provider; maintaining, at the broker server, a translation table indicating the encrypted documents that are transferred to each storage provider of the at least one storage provider; storing, at the broker server, information relating to the at least one encrypted index and a plurality of test functions for searchable encryption mechanisms, including a first test function for the searchable encryption mechanism used to encrypt the encrypted index; and responding, by the broker server, to a query of the encrypted documents from the client that encrypted the documents stored by the broker server on the at least one storage provider by selecting the first test function from the plurality of test functions based on information provided by the client and applying the first test function to the query and the at least one encrypted index. - View Dependent Claims (9, 10, 11, 12, 13, 14, 20)
-
-
15. A non-transitory, tangible computer-readable medium storing instructions adapted to be executed by a computer processor at a broker server to enable searchable encryption of encrypted documents stored on at least one storage provider by a client to perform a method comprising:
-
receiving, at a broker server, the encrypted documents, at least one encrypted index for the encrypted documents, the encrypted index being encrypted by a searchable encryption mechanism, and identification of the searchable encryption mechanism used to encrypt the encrypted index; sending the encrypted documents to a storage provider of the at least one storage provider; maintaining, at the broker server, a translation table indicating the encrypted documents that are transferred to each storage provider of the at least one storage provider; storing, at the broker server, information relating to the at least one encrypted index and a plurality of test functions for searchable encryption mechanisms, including a first test function for the searchable encryption mechanism used to encrypt the encrypted index; and responding, by the broker server, to a query of the encrypted documents from the client that encrypted the documents stored by the broker server on the at least one storage provider by selecting the first test function from the plurality of test functions based on information provided by the client and applying the first test function to the query and the at least one encrypted index. - View Dependent Claims (16, 17, 18, 19)
-
Specification