面向云存储的多源数据安全查询机制和算法研究

项目名称： 面向云存储的多源数据安全查询机制和算法研究

项目编号： No.61472125

项目类型： 面上项目

立项/批准年度： 2015

项目学科： 自动化技术、计算机技术

项目作者： 林亚平

作者单位： 湖南大学

项目金额： 80万元

中文摘要： 本项目面向半诚实但好奇的云存储环境，依据多源数据应用场景的需求，研究基于隐私和完整性保护的多源数据安全查询机制，并提出相关模型和算法。结合云端服务器存在好奇性的特点，研究多源数据的隐私保护问题，提出基于非对称标量积加密函数模型的隐私保护方案，保证云端服务器的数据安全且支持多源关键字查询；针对半诚实云端服务器返回不完整查询结果的问题，提出基于Merkle哈希树的完整性保护方案，检测云端服务器的自私行为；针对云端服务器处理海量数据时的查询效率问题，提出基于链式布鲁姆过滤器二叉树查询结构，避免现有查询方案中关键字枚举对性能的影响，有效提升云端服务器的处理能力。最后形成支持隐私和完整性保护的安全查询机制。项目将以Amazon EC2云计算平台中的实际数据对提出的算法和机制进行评测。该课题的研究，对提高云存储数据查询的安全有效性，推动云计算的应用具有重要意义。

中文关键词： 云存储；关键字查询；隐私保护；完整性保护；半诚实但好奇

英文摘要： This project researches privacy and ingtegrity preserving multi-source data search mechanisms based on the semi-honest but curious cloud storage platform. According to the demands for the setting of multi data sources, the related schemes and techniques are proposed. Combining with the characteristics of curious cloud server, the project researches privacy preserving problem of multi source data, and develops a privacy preserving scheme based on asymmetric scalar product encryption function model, which guarantees the security of data on cloud server and supports multi-source keyword search; To solve the problem of incomplete search results returned from the semi-honest cloud server, the project exploits the integrity preserving scheme based on Merkle hash tree, which can detect the selfish behavior of cloud server; To solve the efficiency issues in massive data search on cloud server, the project proposes linked bloom filter binary tree, which avoids the inefficiency caused by keyword enumeration in existing search schemes, and improves the processing capability of cloud server. Furthermore, the project constructs a secure search mechanism supporting privacy and integrity preserving based on the aforementioned techniques. The proposed algorithms and mechanisms would be evaluated on the Amazon EC2 platform. The research results of this project will improve the security and efficiency of search techniques in cloud storage, and contribute to the applications of cloud computing.

英文关键词： cloud storage;keyword search;privacy preserving;integrity preserving;semi-honest but curious