An Efficient Attribute-Based Multikeyword Searchable Encryption With Access Policy Hiding in IoT Using Blockchain

IF 8.9 1区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Internet of Things Journal Pub Date : 2025-06-02 DOI:10.1109/JIOT.2025.3575802

Ziheng Yan;Bo Zhang

{"title":"An Efficient Attribute-Based Multikeyword Searchable Encryption With Access Policy Hiding in IoT Using Blockchain","authors":"Ziheng Yan;Bo Zhang","doi":"10.1109/JIOT.2025.3575802","DOIUrl":null,"url":null,"abstract":"With the rapid development of the Internet of Things (IoT), data is experiencing exponential growth. To ensure security and privacy, more data is being stored encrypted. Consequently, performing secure and efficient encrypted data search has become a critical challenge. Attribute-based searchable encryption (ABSE) provides fine-grained access control and encrypted search capabilities, making it an effective solution to this problem. However, the high computational overhead of bilinear pairing operations results in increased query latency, imposing a significant burden on resource-constrained IoT devices. Moreover, the security of access policy remains a critical challenge, as improper handling can lead to leakage of user privacy. In this article, we propose an efficient attribute-based multikeyword searchable encryption with access policy hiding in IoT using blockchain. Our scheme adopts an attribute bloom filter for access policy protection and query prefiltering, enabling the rapid elimination of invalid requests that do not satisfy the access policy. This reduces the computational burden of bilinear pairing operations and improves search efficiency. The filtered requests are processed by a cloud server to perform access policy verification and multikeyword search. Additionally, our scheme employs the Interplanetary File System (IPFS) for large-scale encrypted data storage, further enhancing storage efficiency. The blockchain ensures the traceability and tamper resistance of search records, thereby enhancing security. Security analysis and performance evaluation validate the effectiveness and practicality of our scheme, making it suitable for IoT environments.","PeriodicalId":54347,"journal":{"name":"IEEE Internet of Things Journal","volume":"12 15","pages":"32148-32160"},"PeriodicalIF":8.9000,"publicationDate":"2025-06-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet of Things Journal","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/11021452/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

With the rapid development of the Internet of Things (IoT), data is experiencing exponential growth. To ensure security and privacy, more data is being stored encrypted. Consequently, performing secure and efficient encrypted data search has become a critical challenge. Attribute-based searchable encryption (ABSE) provides fine-grained access control and encrypted search capabilities, making it an effective solution to this problem. However, the high computational overhead of bilinear pairing operations results in increased query latency, imposing a significant burden on resource-constrained IoT devices. Moreover, the security of access policy remains a critical challenge, as improper handling can lead to leakage of user privacy. In this article, we propose an efficient attribute-based multikeyword searchable encryption with access policy hiding in IoT using blockchain. Our scheme adopts an attribute bloom filter for access policy protection and query prefiltering, enabling the rapid elimination of invalid requests that do not satisfy the access policy. This reduces the computational burden of bilinear pairing operations and improves search efficiency. The filtered requests are processed by a cloud server to perform access policy verification and multikeyword search. Additionally, our scheme employs the Interplanetary File System (IPFS) for large-scale encrypted data storage, further enhancing storage efficiency. The blockchain ensures the traceability and tamper resistance of search records, thereby enhancing security. Security analysis and performance evaluation validate the effectiveness and practicality of our scheme, making it suitable for IoT environments.

查看原文本刊更多论文

基于区块链的物联网访问策略隐藏的高效属性多关键字可搜索加密

随着物联网（IoT）的快速发展，数据正在经历指数级增长。为了确保安全和隐私，更多的数据被加密存储。因此，执行安全高效的加密数据搜索已成为一个关键的挑战。基于属性的可搜索加密（ABSE）提供了细粒度的访问控制和加密搜索功能，使其成为解决此问题的有效方案。然而，双线性配对操作的高计算开销导致查询延迟增加，给资源受限的物联网设备带来了巨大的负担。此外，访问策略的安全性仍然是一个严峻的挑战，因为处理不当可能导致用户隐私泄露。在本文中，我们提出了一种高效的基于属性的多关键字可搜索加密，并使用区块链在物联网中隐藏访问策略。我们的方案采用属性布隆过滤器进行访问策略保护和查询预过滤，能够快速消除不满足访问策略的无效请求。这减少了双线性配对运算的计算负担，提高了搜索效率。过滤后的请求由云服务器进行访问策略验证和多关键字搜索。此外，我们的方案采用星际文件系统（IPFS）进行大规模加密数据存储，进一步提高了存储效率。区块链保证了搜索记录的可追溯性和抗篡改性，从而增强了安全性。安全性分析和性能评估验证了该方案的有效性和实用性，使其适合物联网环境。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Internet of Things Journal Computer Science-Information Systems

CiteScore

17.60

自引率

13.20%

发文量

1982

期刊介绍： The EEE Internet of Things (IoT) Journal publishes articles and review articles covering various aspects of IoT, including IoT system architecture, IoT enabling technologies, IoT communication and networking protocols such as network coding, and IoT services and applications. Topics encompass IoT's impacts on sensor technologies, big data management, and future internet design for applications like smart cities and smart homes. Fields of interest include IoT architecture such as things-centric, data-centric, service-oriented IoT architecture; IoT enabling technologies and systematic integration such as sensor technologies, big sensor data management, and future Internet design for IoT; IoT services, applications, and test-beds such as IoT service middleware, IoT application programming interface (API), IoT application design, and IoT trials/experiments; IoT standardization activities and technology development in different standard development organizations (SDO) such as IEEE, IETF, ITU, 3GPP, ETSI, etc.