Efficient Multikeyword Searchable and Verifiable Data Sharing for Cloud-Edge Collaboration Intelligent Transportation Systems

IF 8.9 1区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Internet of Things Journal Pub Date : 2025-01-16 DOI:10.1109/JIOT.2025.3529934

Peng Liu;Qian He;Yiting Chen;Shan Jiang

{"title":"Efficient Multikeyword Searchable and Verifiable Data Sharing for Cloud-Edge Collaboration Intelligent Transportation Systems","authors":"Peng Liu;Qian He;Yiting Chen;Shan Jiang","doi":"10.1109/JIOT.2025.3529934","DOIUrl":null,"url":null,"abstract":"Intelligent transportation systems (ITSs) are essential for the development of future smart cities. They can improve traffic management, mitigate urban congestion, and provide extensive social services by disseminating traffic data collected from vehicles. To facilitate the exchange of sensory data with other vehicles and alleviate the local storage load, sensory data from vehicles is frequently uploaded to cloud or edge servers. However, current ITS data sharing frameworks exhibit certain security vulnerabilities. In particular, they are unable to support secure multikeyword searches or ensure verifiable retrieval of encrypted information. Moreover, some of the schemes cannot ensure the integrity of the retrieved data. Therefore, we propose an efficient multikeyword searchable and verifiable data sharing (EMKV-ABSE) for cloud-edge collaboration ITS. EMKV-ABSE integrates a multikeyword attribute-based searchable encryption (ABSE) scheme and a tamper-proof consortium blockchain (BC). In EMKV-ABSE, we store the keyword indexes and ciphertext hashes of the shared data on the BC, which can ensure the integrity and authenticity of the data. Meanwhile, to avoid security and trust issues associated with central search cloud servers, smart contracts are utilized to perform multikeyword searches and verify retrieval results. Furthermore, the EMKV-ABSE scheme outsources the complex computational tasks in encryption and decryption to edge servers, which realizes lightweight computation for resource-constrained users. The security analysis proves that EMKV-ABSE satisfies the indistinguishability under the chosen plaintext attack (IND-CPA) and the chosen keyword attack (IND-CKA) in the standard model. Performance evaluation shows the efficiency and practicability of our scheme.","PeriodicalId":54347,"journal":{"name":"IEEE Internet of Things Journal","volume":"12 11","pages":"15869-15882"},"PeriodicalIF":8.9000,"publicationDate":"2025-01-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet of Things Journal","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10843398/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Intelligent transportation systems (ITSs) are essential for the development of future smart cities. They can improve traffic management, mitigate urban congestion, and provide extensive social services by disseminating traffic data collected from vehicles. To facilitate the exchange of sensory data with other vehicles and alleviate the local storage load, sensory data from vehicles is frequently uploaded to cloud or edge servers. However, current ITS data sharing frameworks exhibit certain security vulnerabilities. In particular, they are unable to support secure multikeyword searches or ensure verifiable retrieval of encrypted information. Moreover, some of the schemes cannot ensure the integrity of the retrieved data. Therefore, we propose an efficient multikeyword searchable and verifiable data sharing (EMKV-ABSE) for cloud-edge collaboration ITS. EMKV-ABSE integrates a multikeyword attribute-based searchable encryption (ABSE) scheme and a tamper-proof consortium blockchain (BC). In EMKV-ABSE, we store the keyword indexes and ciphertext hashes of the shared data on the BC, which can ensure the integrity and authenticity of the data. Meanwhile, to avoid security and trust issues associated with central search cloud servers, smart contracts are utilized to perform multikeyword searches and verify retrieval results. Furthermore, the EMKV-ABSE scheme outsources the complex computational tasks in encryption and decryption to edge servers, which realizes lightweight computation for resource-constrained users. The security analysis proves that EMKV-ABSE satisfies the indistinguishability under the chosen plaintext attack (IND-CPA) and the chosen keyword attack (IND-CKA) in the standard model. Performance evaluation shows the efficiency and practicability of our scheme.

查看原文本刊更多论文

云边缘协作智能交通系统的高效多关键字可搜索和可验证数据共享

智能交通系统对未来智慧城市的发展至关重要。它们可以改善交通管理，缓解城市拥堵，并通过传播从车辆收集的交通数据提供广泛的社会服务。为了方便与其他车辆交换传感数据并减轻本地存储负载，来自车辆的传感数据经常被上传到云或边缘服务器。然而，当前的智能交通数据共享框架存在一定的安全漏洞。特别是，它们无法支持安全的多关键字搜索或确保加密信息的可验证检索。此外，有些方案不能保证检索数据的完整性。因此，我们提出了一种高效的多关键字可搜索和可验证数据共享（EMKV-ABSE），用于云边缘协作ITS。EMKV-ABSE集成了一个基于多关键字属性的可搜索加密（ABSE）方案和一个防篡改联盟区块链（BC）。在EMKV-ABSE中，我们将共享数据的关键字索引和密文哈希值存储在BC上，保证了数据的完整性和真实性。同时，为了避免与中央搜索云服务器相关的安全和信任问题，利用智能合约执行多关键字搜索并验证检索结果。此外，EMKV-ABSE方案将加密和解密中的复杂计算任务外包给边缘服务器，为资源受限的用户实现了轻量级计算。安全性分析证明，EMKV-ABSE满足标准模型中所选明文攻击（IND-CPA）和所选关键字攻击（IND-CKA）下的不可分辨性。性能评估表明了该方案的有效性和实用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Internet of Things Journal Computer Science-Information Systems

CiteScore

17.60

自引率

13.20%

发文量

1982

期刊介绍： The EEE Internet of Things (IoT) Journal publishes articles and review articles covering various aspects of IoT, including IoT system architecture, IoT enabling technologies, IoT communication and networking protocols such as network coding, and IoT services and applications. Topics encompass IoT's impacts on sensor technologies, big data management, and future internet design for applications like smart cities and smart homes. Fields of interest include IoT architecture such as things-centric, data-centric, service-oriented IoT architecture; IoT enabling technologies and systematic integration such as sensor technologies, big sensor data management, and future Internet design for IoT; IoT services, applications, and test-beds such as IoT service middleware, IoT application programming interface (API), IoT application design, and IoT trials/experiments; IoT standardization activities and technology development in different standard development organizations (SDO) such as IEEE, IETF, ITU, 3GPP, ETSI, etc.