摘要
聚焦移动社交网络特征和用户隐私保护的多元需求,本文首次提出一种支持K-近邻搜索的移动社交网络隐私保护方案.方案首先构建融合细粒度访问控制的位置隐私安全模型,在此模型下设计面向移动终端的轻量级位置加密算法,并基于同态加密机制以及安全多方计算思想设计位置密文重加密协议以及K-近邻搜索协议,从而构建安全可信的协同搜索架构,保证服务提供商在无需解密位置的前提下,对用户与好友之间距离进行安全计算并排序,在保护用户位置隐私的同时满足其近邻搜索服务的可用性;除此之外,为了满足细粒度访问控制,方案提出基于公钥广播加密的好友动态管理机制,用户无需为原有好友更新各自的密钥集合的情况下即可赋予或移除好友搜索其位置的权力,实现常数级好友身份认证.安全性方面,方案在随机预言模型下满足自适应L-语义安全性以及撤销安全性.性能方面,与单服务器架构的相关工作相比,本方案降低了用户与服务器之间通信代价的同时,减少了向服务器泄露的位置信息与搜索模式,实现移动社交网络隐私性与可用性的有效平衡.
Focusing on the features of MSNs(Mobile Social Networks)and the diversified demands of user privacy protection,we propose a privacy-preserving K-nearest-neighbor(KNN)search scheme over MSNs.First,we construct a location-privacy security model that incorporates access control,and design a lightweight location encryption algorithm for mobile terminals;we also propose a location re-encryption protocol and an encrypted KNN search protocol based on secure multi-party computation and homomorphic encryption mechanism,which achieves accurate nearby friends retrieving while preventing the geo-location and the distance order from revealing them to the servers.To satisfy the fine-grained access control requirement,we propose a lightweight dynamic friend management mechanism based on public-key broadcast encryption that enables the user to grant or remove the revoked friend’s search right of his location without updating the key sets for his original friends,which achieves constant-time friend identity authentication.In terms of security,our scheme satisfies adaptive L-semantic security and revocation security under the random oracle model.In terms of performance,compared with the works with the single server architecture,our scheme not only reduces the communication cost between users and the server,but also reduces the leakage of the location information and search model,which achieves the trade-off of the location availability and privacy.
作者
李宇溪
周福才
徐紫枫
LI Yu-Xi;ZHOU Fu-Cai;XU Zi-Feng(School of Computer Science and Engineering,Northeastern University,Shenyang 110819;Software College,Northeastern University,Shenyang 110819)
出处
《计算机学报》
EI
CAS
CSCD
北大核心
2021年第7期1481-1500,共20页
Chinese Journal of Computers
基金
国家自然科学基金(61772127,61532007,61472184)资助。
关键词
移动社交网络
隐私保护
协同架构
密文搜索
安全多方计算
同态加密
mobile social networks
privacy-preserving
collaboration architecture
encrypted search
secure multi-party computation
homomorphic encryption
