Forward-Private Dynamic Searchable Symmetric Encryption with Efficient Search

Dynamic Searchable Symmetric Encryption (DSSE) allows to delegate keyword search and le update over an encrypted database via encrypted indexes, and therefore provides opportunities to mitigate the data privacy and utilization dilemma in cloud storage platforms. Despite its merits, recent works have shown that e cient DSSE schemes are vulnerable to statistical attacks due to the lack of forward-privacy, whereas forward-private DSSE schemes su ers from practicality concerns as a result of their extreme computation overhead. Due to signi cant practical impacts of statistical attacks, there is a critical need for new DSSE schemes that can achieve the forward-privacy in a more practical and e cient manner. We propose a new DSSE scheme that we refer to as Forward-private Sublinear DSSE (FS-DSSE). FS-DSSE harnesses special secure update strategies and a novel caching strategy to reduce the computation cost of repeated queries. Therefore, it achieves forward-privacy, sublinear search complexity, low end-to-end delay, and parallelization capability simultaneously. We fully implemented our proposed method and evaluated its performance on a real cloud platform. Our experimental evaluation results showed that the proposed scheme is highly secure and highly e cient compared with state-of-the-art DSSE techniques. Speci cally, FS-DSSE is one to three magnitude of times faster than forward-secure DSSE counterparts.