The paper proposes SecGraph, an SGX-based efficient and confidentiality-preserving graph search scheme. The key highlights are:
SecGraph uses a proxy-token generation method to reduce the communication cost of search operations by leveraging the trusted computing power of SGX. This avoids the need for two search roundtrips between the client and server required by the prior PeGraph scheme.
SecGraph employs an LDCF-encoded XSet data structure to transform the expensive exponentiation modulo operations in PeGraph into efficient membership checks within the storage-constrained SGX enclave, reducing the computation cost.
SecGraph introduces a new dynamic version of TSet called Twin-TSet to enable encrypted search over dynamic graphs, which PeGraph cannot support.
The paper also presents two optimized schemes, SecGraph-G and SecGraph-P, that further improve performance through fingerprint grouping and parallel membership checking, respectively.
Security analysis shows that SecGraph achieves confidentiality preservation, forward security, and Type-III backward security.
Experimental results demonstrate that SecGraph, SecGraph-G, and SecGraph-P yield up to 208x, 572x, and 3,331x improvements in search time compared to PeGraph. The communication cost in PeGraph is also up to 540x larger than that in SecGraph.
A otro idioma
del contenido fuente
arxiv.org
Ideas clave extraídas de
by Qiuhao Wang,... a las arxiv.org 03-29-2024
https://arxiv.org/pdf/2403.19531.pdfConsultas más profundas