Security indexing system based on SGX

An indexing system and security technology, which is applied in the field of SGX-based security indexing system, can solve the problems of huge single keyword index results and difficulty in accurately locating files, etc.

What is AI technical title?
AI technical title is built by PatSnap AI team. It summarizes the technical point description of the patent document.
An indexing system and security technology, which is applied in the field of SGX-based security indexing system, can solve the problems of huge single keyword index results and difficulty in accurately locating files, etc.

CN110069946AActive Publication Date: 2019-07-30NORTHEASTERN UNIV

3 Cites 8 Cited by

Image

Smart Image Click on the blue labels to locate them in the text.

Viewing Examples

Smart Image

Examples

Experimental program

Comparison scheme

Effect test

Embodiment Construction

[0058] The present invention will be further elaborated below in conjunction with the accompanying drawings of the description.

[0059] A kind of security index system based on SGX of the present invention comprises the following steps:

[0060] 1) The system is divided into five roles: user, system client, verification platform, untrusted SGX server and trusted SGX enclave in the server;

[0061] 2) The user expands the data value by using the index key and stores it in a pseudo-random position; the key is inserted into the B+ tree used to construct the index relationship, and the B+ tree and the expanded data value are assigned to the random position of the corresponding value Leaves add pointers for linking;

[0062] 3) Use the SGX authentication function on the client to authenticate the enclave, and provide the client to the enclave through a secure connection;

[0063] 4) The client sends the index query to the server, and uses the key for random encryption for all in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine

Login to View More

PUM

Login to View More

Abstract

The invention discloses a security indexing system based on SGX. The security index system comprises the following steps: enabling a user to expand a data value by using an index keyword; inserting the key into a B + tree, and linking the B + tree with the expanded data value; providing the client to the enclave through secure connection at the client; enabling the client to send an indexing queryto the server; loading the B + tree structure from the untrusted storage into an enclave memory by the enclave, and decrypting the B + tree structure; enabling the tree to traverse from the root node, obtain a node indexing algorithm from the untrusted storage, and finally reache a group of leaf nodes to store a pointer; and obtaining the encrypted value from the untrusted storage by using the pointer, sending the encrypted value to the client, and decrypting the received file by using the client. According to the invention, the balance among the security, the performance and the function isrealized, the performance and the storage are greatly improved, and the index time also has great advantages even if complex indexing is carried out on big data.

Description

technical field [0001] The invention relates to a security index technology for encrypted data, in particular to an SGX-based security index system. Background technique [0002] With the rapid development of computer technology and Internet applications, the speed of data and applications is increasing exponentially, and people's demand for data storage is also increasing. Driven by this background, cloud storage services are welcomed by more and more users due to their advantages such as convenient use and cost saving. But in this way, the user loses absolute control over the data, which inevitably arouses the user's concern about its security. Currently, the mainstream method to ensure data confidentiality is to encrypt data. [0003] The amount of data stored in the cloud is often large, so an important way to retrieve data is through keyword indexing. However, encrypted data increases the difficulty of keyword indexing. At the same time, the way of specifying plainte...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine

Login to View More

Application Information

Patent Timeline

30 Jul 2019

Publication

CN110069946A

IPC: G06F21/62; G06F21/60

CPC: G06F21/6227; G06F21/602

Inventors: 张源境; 付奎源