CN103873236B - One kind can search for encryption method and equipment - Google Patents

Abstract

The present invention announces one kind and can search for encryption method and equipment, obtains the identity of searcher or the identity of searcher place group by sender, and the systematic parameter of KMC；The identity according to described searcher for the sender or the identity of searcher place group, and described systematic parameter cryptography key word, and the key word ciphertext after encryption is uploaded to storage server.Pass through searcher simultaneously and query key is obtained from KMC according to the identity of searcher or the identity of searcher place group, query key according to key word and described acquisition generates query token, key word ciphertext after described query token inquires about encryption from storage server, and receive the data that described storage server returns.Thus realizing, in the case that the support and sender not needing expensive PKIX does not need to download public key, realizing can search for encryption technology.

Description

A searchable encryption method and device

technical field

The invention is applied in the field of encryption technology, and in particular relates to a searchable encryption method and device.

Background technique

In order to ensure semantic security, the encryption scheme often requires that the ciphertext distribution generated by the encryption algorithm and the uniform distribution on the ciphertext space are computationally indistinguishable (computationally indistinguishable means that for two probability distributions, there is no polynomial time algorithm that can distinguish them ). Therefore, for any effective algorithm, no meaningful semantic information can be obtained from the encrypted ciphertext, and the loss of semantic information makes it impossible to retrieve ciphertext data with the help of ordinary retrieval algorithms. In order to solve the problem of ciphertext retrieval, searchable encryption technology appears.

Searchable encryption does not need to decrypt the encrypted ciphertext data, but uses a detection algorithm to search, and the output is the result of whether the ciphertext contains the search keyword, which is generally 0 or 1. The development of searchable encryption includes three main historical stages. The first is symmetric key searchable encryption, which was proposed by Song et al. in 2000. Its application scenario is that the searcher and the encryptor are the same entity, and the data and keywords are encrypted using the symmetric cryptosystem and uploaded to the server, and then the ciphertext data is retrieved. The disadvantage is that users can only search encrypted data that they have encrypted and uploaded to the database.

In order to overcome this application limitation, Dan Boneh proposed Public Key Encryption with Keyword Search (PEKS) in 2004. The application scenario of the PEKS scheme is that multiple senders send keyword ciphertext and data ciphertext to the receiver. The receiver uses the private key to generate a search token, uploads it to the server, and the server runs the corresponding detection algorithm for keyword search. The receiver in this scheme can only be a single entity, and at the same time, each time the keyword detection algorithm runs, it can only realize the retrieval of one keyword, and cannot realize the retrieval of conjunction keywords (assuming that there are n keywords respectively W1 , W2,...,Wn, to search the ciphertext that contains keywords W1, and contains keywords W2,..., and contains keywords Wn, which is called conjunction keyword search), which is its functional bottleneck.

In 2007, Hwang and Lee proposed a solution to this problem, that is, multi-user Public Key Encryption with Conjunctive Keyword Search (mPECK), with multi-receiver conjunctive keyword search The retrieved public key encryption scheme. The scheme is based on public key cryptography, and requires the support of an online public key database or certificate library infrastructure. At the same time, the sender needs to query and download the public keys of all members of the group. According to each receiver's public key pair data For encryption, the recipient generates a search token to search the data according to his own private key. However, the maintenance and management cost of the public key database is very high, and the sender may waste network bandwidth and storage resources by querying and downloading public keys of multiple users.

Contents of the invention

The purpose of the embodiments of the present invention is to provide a searchable encryption method and device, which solves the need for online public key database or certificate library infrastructure support in the prior art based on public key searchable encryption technology, while the sender Need to query and download the public keys of all members of the group.

In a first aspect, a searchable encryption method includes:

Obtaining the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the identity information of the group in which the multiple searchers belong;

The keyword is encrypted according to the identity information of the searcher and the system parameters, and the encrypted keyword ciphertext is uploaded to the storage server.

With reference to the first aspect, in a first possible implementation manner of the first aspect, the encrypting keywords according to the identity information of the search party and the system parameters includes:

calculating a public key for encrypting the keyword according to the identity information of the searcher and the system parameters, and encrypting the keyword according to the calculated public key.

With reference to the first aspect or the first possible implementation of the first aspect, in the second possible implementation of the first aspect, the method further includes:

Encrypt plaintext data according to the identity information of the searcher and the system parameters, and upload the encrypted plaintext data to the storage server.

With reference to the second possible implementation of the first aspect, in a third possible implementation of the first aspect, the encrypting plaintext data according to the identity of the searcher and the system parameters includes:

calculating a public key for encrypting the plaintext data according to the identity information of the searcher and the system parameters, and encrypting the plaintext data according to the calculated public key.

With reference to the first aspect or the first possible implementation manner of the first aspect, in a fourth possible implementation manner of the first aspect, the method further includes:

Encrypt plaintext data according to the attributes of the searcher, and upload the encrypted ciphertext of the plaintext data to the storage server.

In a second aspect, an identity-based searchable encryption method includes:

Obtaining the query key from the key management center according to the identity information of the searcher, where the identity information of the searcher includes the identity information of the single searcher or the identity information of the group in which the plurality of searchers belong;

A query token is generated according to the keyword and the obtained query key, and the encrypted keyword ciphertext is queried from the storage server through the query token.

With reference to the second aspect, in the first possible implementation manner of the second aspect, the querying the encrypted keyword ciphertext from the storage server through the query token includes:

The file containing the encrypted keyword is queried from the storage server through the query token.

With reference to the second aspect or the first possible implementation of the second aspect, in the second possible implementation of the second aspect, the generating the query token according to the keyword and the obtained query key includes :

When obtaining the query key from the key management center according to the identity of the searcher's group, the searcher submits keywords to the searcher's group, and the searcher's group checks whether the searcher is a member of the group , if yes, the group of the searcher generates a query token according to the keyword and the query key, and returns the query token to the searcher.

In combination with the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect, in the third possible implementation of the second aspect, the query command The card queries the encrypted keyword ciphertext from the storage server, including:

Receive the ciphertext of the plaintext data encrypted according to the public key returned by the storage server.

With reference to the third possible implementation of the second aspect, in the fourth possible implementation of the second aspect, after the method receives the ciphertext of the plaintext data encrypted according to the public key returned by the storage server ,Also includes:

According to the query key, the ciphertext of the plaintext data encrypted according to the public key is decrypted to obtain decrypted plaintext data.

In combination with the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect or the fourth possible implementation of the second aspect Implementation manner, in a fifth possible implementation manner of the second aspect, the method further includes:

Obtain the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher.

With reference to the fifth possible implementation of the second aspect, in the sixth possible implementation of the second aspect, the querying the encrypted keyword ciphertext from the storage server through the query token includes:

Receive the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server.

With reference to the sixth possible implementation manner of the second aspect, in the seventh possible implementation manner of the second aspect, the method receives, at a step, the encrypted data returned by the storage server according to the preset searcher attribute After the ciphertext of the plaintext data, it also includes:

According to the data decryption key, the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server is decrypted to obtain the decrypted plaintext data.

In a third aspect, an encryption device, the device includes:

The first obtaining unit is configured to obtain the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the group information of the multiple searchers Identity Information;

An encryption uploading unit, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server.

With reference to the third aspect, in a first possible implementation manner of the third aspect, the encrypted upload unit is specifically configured to:

calculating a public key for encrypting the keyword according to the identity information of the searcher and the system parameters, and encrypting the keyword according to the calculated public key.

With reference to the third aspect or the first possible implementation manner of the third aspect, in a second possible implementation manner of the third aspect, the device further includes:

The first encryption unit is configured to encrypt plaintext data according to the identity information of the search party and the system parameters, and upload the encrypted plaintext data to the storage server.

With reference to the second possible implementation of the third aspect, in a third possible implementation of the third aspect, the first encryption unit is specifically configured to:

calculating a public key for encrypting the plaintext data according to the identity information of the searcher and the system parameters, and encrypting the plaintext data according to the calculated public key.

With reference to the third aspect or the first possible implementation manner of the third aspect, in a fourth possible implementation manner of the third aspect, the device further includes:

The second encryption unit is configured to encrypt the plaintext data according to the attribute of the searcher, and upload the ciphertext of the encrypted plaintext data to the storage server.

In a fourth aspect, a search device, the device includes:

The second acquiring unit is configured to acquire the query key from the key management center according to the identity information of the searcher, where the identity information of the searcher includes the identity information of the single searcher or the group to which the multiple searchers belong identity information;

The query receiving unit is configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token.

With reference to the fourth aspect, in a first possible implementation of the fourth aspect, the query receiving unit performs a step of querying the encrypted keyword ciphertext from the storage server through the query token, including:

The file containing the encrypted keyword is queried from the storage server through the query token.

With reference to the fourth aspect or the first possible implementation of the fourth aspect, in a second possible implementation of the fourth aspect, the query receiving unit executes the step of generating a query key based on keywords and the obtained query key Query tokens, including:

When obtaining the query key from the key management center according to the identity of the searcher's group, the searcher submits keywords to the searcher's group, and the searcher's group checks whether the searcher is a member of the group , if yes, the group of the searcher generates a query token according to the keyword and the query key, and returns the query token to the searcher.

With reference to the fourth aspect or the first possible implementation of the fourth aspect or the second possible implementation of the fourth aspect, in a third possible implementation of the fourth aspect, the query receiving unit includes :

Receive the ciphertext of the plaintext data encrypted according to the public key returned by the storage server.

With reference to the third possible implementation manner of the fourth aspect, in a fourth possible implementation manner of the fourth aspect, the device further includes a first decryption unit, and the first decryption unit is specifically configured to:

According to the query key, the ciphertext of the plaintext data encrypted according to the public key is decrypted to obtain decrypted plaintext data.

In combination with the fourth aspect or the first possible implementation of the fourth aspect or the second possible implementation of the fourth aspect or the third possible implementation of the fourth aspect or the fourth possible implementation of the fourth aspect Implementation manner, in a fifth possible implementation manner of the fourth aspect, the device further includes a third acquisition unit, and the third acquisition unit is specifically configured to:

Obtain the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher.

With reference to the fifth possible implementation of the fourth aspect, in a sixth possible implementation of the fourth aspect, the query receiving unit includes:

Receive the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server.

With reference to the sixth possible implementation manner of the fourth aspect, in a seventh possible implementation manner of the fourth aspect, the device further includes a second decryption unit, and the second decryption unit includes:

According to the data decryption key, the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server is decrypted to obtain the decrypted plaintext data.

Compared with the prior art, the embodiment of the present invention provides a searchable encryption method. The method obtains system parameters and private keys from the key management center, so that the key management center can work in an offline manner and also realize sending party encryption and search party search purposes. At the same time, the sender only needs to know the identity of the searcher or the searcher's group to realize the encryption method of keywords, so that the sender does not need to download multiple searcher identities or the public keys of the searcher's group, and does not need to publicize online. Key database support reduces network bandwidth and storage overhead. Since the query key corresponding to the sender's public key is generated by the key management center, the key management center can search all keyword ciphertext data and realize the centralized key custody function. This function is used in companies and some Government agencies are especially important. At the same time, through the above-mentioned one or more keywords, the searcher can search and query the one or more keywords in the storage server, and manage and control the searcher's query through the group where the searcher belongs, so as to realize Purpose of multi-user search.

Description of drawings

In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the following will briefly introduce the accompanying drawings that need to be used in the embodiments. Obviously, the accompanying drawings in the following description are only some embodiments of the present invention. For Those of ordinary skill in the art can also obtain other drawings based on these drawings without any creative effort.

FIG. 1 is a flowchart of a searchable encryption method provided by Embodiment 1 of the present invention;

Fig. 2 is a flow chart of a searchable encryption method provided by Embodiment 2 of the present invention;

Fig. 3 is a schematic diagram of a searchable encryption method provided by Embodiments 1 and 2 of the present invention;

FIG. 4 is a schematic diagram of a searchable encryption method provided by Embodiments 1 and 2 of the present invention;

FIG. 5 is a flow chart of a searchable encryption method provided by Embodiment 3 of the present invention;

FIG. 6 is a flowchart of a searchable encryption method provided by Embodiment 4 of the present invention;

Fig. 7 is a schematic diagram of a searchable encryption method provided by Embodiments 3 and 4 of the present invention;

FIG. 8 is a flow chart of a searchable encryption method provided in Embodiment 5 of the present invention;

FIG. 9 is a flow chart of a searchable encryption method provided by Embodiment 6 of the present invention;

Fig. 10 is a schematic diagram of a searchable encryption method provided by Embodiments 5 and 6 of the present invention;

Fig. 11 is a flowchart of a searchable encryption method provided by Embodiment 7 of the present invention;

Fig. 12 is a flowchart of a searchable encryption method provided by Embodiment 7 of the present invention;

Fig. 13 is a schematic diagram of a searchable encryption method provided by Embodiments 7 and 8 of the present invention;

FIG. 14 is a device structural diagram of an encryption device provided in Embodiment 9 of the present invention;

FIG. 15 is a device structure diagram of a search device provided in Embodiment 10 of the present invention;

Fig. 16 is a device structure diagram of an encryption device provided by Embodiment 11 of the present invention;

FIG. 17 is a device structure diagram of a search device provided in Embodiment 12 of the present invention;

Fig. 18 is a device structure diagram of an encryption device provided by Embodiment 13 of the present invention;

FIG. 19 is a device structure diagram of a search device provided by Embodiment 14 of the present invention;

Fig. 20 is a device structural diagram of an encryption device provided in Embodiment 15 of the present invention;

Fig. 21 is a device structural diagram of a search device provided by Embodiment 16 of the present invention.

detailed description

In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

The above descriptions are only preferred embodiments of the present invention, and are not intended to limit the present invention. Any modifications, equivalent replacements and improvements made within the spirit and principles of the present invention should be included in the protection of the present invention. within range.

Embodiment one

Referring to FIG. 1 , FIG. 1 is a flowchart of a searchable encryption method provided by Embodiment 1 of the present invention. As shown in Figure 1, the method includes the following steps:

Step 101, acquire the identity information of the searcher and the system parameters of the key management center, the searcher includes a single searcher or a group of multiple searchers, the identity information of the searcher includes the single searcher's Identity information or identity information of the group in which the plurality of searchers belong;

Wherein, the identity information of the searcher includes but not limited to the searcher's mobile phone number, job number, QQ number, Email and other information. The method of obtaining the identity information of the searcher includes but is not limited to obtaining through telephone inquiry or email inquiry. The identity information of the searcher's group includes, but is not limited to, the QQ group number and department name of the searcher's group. The method of obtaining the identity of the group where the searcher belongs includes, but is not limited to, obtaining through telephone inquiry or mail inquiry. The key management center is responsible for issuing the system parameters used to calculate the encrypted public key to the sender, and may further issue the private key corresponding to the encrypted public key, that is, the query key, to the searcher or the searcher's group, The system parameters include but are not limited to elliptic curve cryptographic parameter sets, mapping functions and mapping methods.

Specifically, the mapping parameters obtained from the identity are consistent, and the calculation method of the public key is obtained by multiplying the mapping parameters and the public key factor matrix, and the calculation method of the private key is obtained by multiplying the mapping parameters and the private key factor matrix , therefore, guarantees a one-to-one correspondence between public and private keys.

In this step, the key management center can work in an offline manner, that is, the time for sending the identity information and system parameters, and sending the query key is not limited, and the system parameters can be sent to the sender before going offline , and send the query key corresponding to the calculated encrypted public key to the searcher or the group to which the searcher belongs, or provide it online.

Step 102, encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server.

Specifically, encrypting keywords according to the identity information of the searcher and the system parameters includes:

According to the identity information of the searcher and the system parameters, an encryption public key used to encrypt the keyword is calculated, and the keyword is encrypted according to the calculated encryption public key.

In this step, the sender only needs to know the identity information of the searcher or the identity information of the searcher's group to encrypt keywords, so that the sender does not need to download the encrypted public key from the online public key database or certificate library. Reduced network bandwidth and storage overhead.

An embodiment of the present invention provides an identity-based searchable encryption method. In the method, the sender only needs to know the identity of the searcher or the group the searcher is in to implement the keyword encryption method, so that the sender does not need to download multiple The identity of the searcher or the public key of the searcher's group does not need the support of an online public key database, which reduces network bandwidth and storage overhead.

Embodiment two

Referring to FIG. 2, FIG. 2 is a flow chart of an identity-based searchable encryption method provided by Embodiment 2 of the present invention. As shown in Figure 2, the method includes the following steps:

Step 201, obtain the query key from the key management center according to the identity information of the searcher, the searcher includes a single searcher or a group of multiple searchers, the identity information of the searcher includes the single searcher or the identity information of the groups in which the multiple searchers belong;

Wherein, the query key is a private key corresponding to an encryption key generated by the key management center according to the identity information of the search party and system parameters. The key management center can also calculate the public key, because the key management center stores the public key factor matrix, and the private key only exists in the key management center and is not released.

Step 202: Generate a query token according to the keyword and the obtained query key, query the encrypted keyword ciphertext from the storage server through the query token, and receive the query result returned by the storage server.

Wherein, the generating the query token according to the keyword and the obtained query key includes:

A query token is generated according to one or more keywords of the search party and the obtained query key.

By means of the above one or more keywords, the searcher can perform a search query on the storage server for the one or more keywords.

Preferably, the generating the query token according to the keyword and the obtained query key includes:

When obtaining the query key from the key management center according to the identity information of the searcher's group, the searcher submits keywords to the searcher's group, and the searcher's group checks whether the searcher is in the group member, if yes, the group of the searcher generates a query token according to the keyword and the query key, and returns the query token to the searcher. The query of the searcher is managed and controlled through the group where the searcher belongs, so as to realize the purpose of multi-user search.

Figures 3 and 4 are schematic diagrams of an identity-based searchable encryption method provided by Embodiments 1 and 2 of the present invention. Now, the identity-based searchable encryption method described in Embodiments 1 and 2 will be specifically described in the form of signaling interaction. Search for encryption methods. Meanwhile, the implementation of the embodiment of the present invention includes the steps in FIG. 3 and FIG. 4 , but is not limited to the sequence of the steps. FIG. 3 and FIG. 4 are just a preferred embodiment. As shown in Figure 3, the method includes the following steps:

Step 301, the sender obtains the system parameters from the key management center, and at the same time obtains the identity information of the searcher, the searcher includes a single searcher or a group of multiple searchers, and the searcher's identity information includes all The identity information of the single searcher or the identity information of the group in which the plurality of searchers belong;

Step 302, the sender obtains an encryption key for encrypting the keyword according to the searcher's identity information and system parameters, encrypts the keyword according to the encryption key, and uploads the encrypted keyword ciphertext to the storage server;

Step 303, the search party obtains the query key from the key management center according to its own relevant identity information;

Step 304, the searcher generates a query token according to the query key and keywords;

Step 305, the searcher uploads the query token to the storage server;

Step 306, the searcher receives the returned query result from the storage server.

As shown in Figure 4, the method includes the following steps:

Step 401, the sender obtains the system parameters from the key management center, and at the same time obtains the identity information of the searcher, the searcher includes a single searcher or a group of multiple searchers, and the searcher's identity information includes all The identity information of the single searcher or the identity information of the group in which the plurality of searchers belong;

Step 402, the sender obtains an encryption key for encrypting the keyword according to the searcher's identity information and system parameters, encrypts the keyword according to the encryption key, and uploads the encrypted keyword ciphertext to the storage server;

Step 403, the searcher's group obtains the query key from the key management center according to the identity information of the group;

Step 404, the searcher submits keywords to the searcher's group, and applies for a query token to the searcher's group;

Step 405, the searcher's group checks whether the searcher is a member of the group, if so, generate a query token, if not, then do not generate a query token;

Step 406, the searcher receives the query token issued by the group;

Step 407, the searcher uploads the query token to the storage server;

Step 408, the searcher receives the returned query result from the storage server.

An embodiment of the present invention provides an identity-based searchable encryption method. The method can realize the search query of the one or more keywords in the storage server by the searcher through the above-mentioned one or more keywords. . At the same time, the query of the searcher is managed and controlled through the group where the searcher belongs, so as to realize the purpose of multi-user search.

Embodiment three

Referring to FIG. 5 , FIG. 5 is a flowchart of an identity-based searchable encryption method provided by Embodiment 3 of the present invention. As shown in Figure 5, the method includes the following steps:

Step 501, obtaining the identity of the searcher or the identity of the group to which the searcher belongs, and the system parameters of the key management center;

Step 502, according to the identity of the searcher or the identity of the searcher's group, and the system parameters to encrypt keywords, and upload the encrypted keyword ciphertext to the storage server;

Step 503, encrypt the plaintext data according to any encryption method in the prior art, and upload the ciphertext of the encrypted plaintext data to the storage server.

In this step, the plaintext data corresponding to the keyword is encrypted by any encryption method in the prior art.

The embodiment of the present invention is applicable to the searcher or the group to which the searcher belongs, and the following mainly takes the searcher as an example for further description. For details, refer to step 703 shown in FIG. 7 .

The embodiment of the present invention encrypts keywords through an identity-based searchable encryption method provided by Embodiments 1 and 2 of the present invention, and encrypts the plaintext data corresponding to the keywords through the existing technology, so as to achieve based on the existing technology , to implement an identity-based searchable encrypted keyword scheme.

Embodiment four

Referring to FIG. 6 , FIG. 6 is a flowchart of an identity-based searchable encryption method provided by Embodiment 4 of the present invention. As shown in Figure 6, the method includes the following steps:

Step 601, obtain the query key from the key management center according to the identity of the searcher or the identity of the group to which the searcher belongs;

Step 602, generate a query token according to the keyword and the obtained query key, query the encrypted keyword ciphertext from the storage server through the query token, and receive the data returned by the storage server;

Step 603, obtaining a decryption key corresponding to any method for encrypting plaintext data in the prior art;

Step 604: Decrypt the ciphertext of the encrypted plaintext data according to the decryption key corresponding to any method for encrypting plaintext data in the prior art, to obtain decrypted plaintext data.

In this step, the plaintext data corresponding to the keyword is decrypted by using a decryption method corresponding to any encryption method in the prior art.

The embodiment of the present invention is applicable to the searcher or the group to which the searcher belongs, and the following mainly takes the searcher as an example for further description. For details, refer to step 708 and step 709 shown in FIG. 7 .

Fig. 7 is an identity-based searchable encryption method provided by Embodiment 3 and Embodiment 4 of the present invention. The identity-based searchable encryption method described in Embodiment 3 and Embodiment 4 is now specifically described in the form of signaling interaction. method, meanwhile, the implementation of the embodiment of the present invention includes the steps in FIG. 7 , but is not limited to the sequence of the steps, and FIG. 7 is only a preferred embodiment. As shown in Figure 7, the method includes the following steps:

Step 701, the sender obtains the system parameters from the key management center, and at the same time obtains the identity information of the searcher, the searcher includes a single searcher or a group of multiple searchers, and the searcher's identity information includes all The identity information of the single searcher or the identity information of the group in which the plurality of searchers belong;

Step 702, the sender obtains an encryption key for encrypting the keyword according to the searcher's identity information and system parameters, encrypts the keyword according to the encryption key, and uploads the encrypted keyword ciphertext to the storage server;

Step 703, the sender encrypts the plaintext data according to any encryption method in the prior art, and uploads the ciphertext of the encrypted plaintext data to the storage server;

Step 704, the searcher obtains the query key from the key management center according to its own identity information;

Step 705, the searcher generates a query token according to the query key and keywords;

Step 706, the searcher uploads the query token to the storage server;

Step 707, the searcher receives the returned query result from the storage server;

Step 708, the searcher obtains a decryption key corresponding to any method for encrypting plaintext data in the prior art;

Step 709: Decrypt the ciphertext of the encrypted plaintext data according to the decryption key corresponding to any method for encrypting plaintext data in the prior art, to obtain decrypted plaintext data.

The embodiment of the present invention encrypts keywords through an identity-based searchable encryption method provided by Embodiments 1 and 2 of the present invention, and encrypts the plaintext data corresponding to the keywords through the existing technology, so as to achieve based on the existing technology , to implement an identity-based searchable encrypted keyword scheme.

Embodiment five

Referring to FIG. 8 , FIG. 8 is a flowchart of an identity-based searchable encryption method provided by Embodiment 5 of the present invention. The method comprises the steps of:

Step 801, obtaining the identity of the searcher or the identity of the group to which the searcher belongs, and the system parameters of the key management center;

Step 802, according to the identity of the searcher or the identity of the searcher's group, and the system parameters to encrypt keywords, and upload the encrypted keyword ciphertext to the storage server;

Step 803: Encrypt the plaintext data according to the identity of the searcher and the system parameters, and upload the ciphertext of the encrypted plaintext data to the storage server.

Specifically, encrypting the plaintext data according to the identity of the searcher and the system parameters includes:

calculating a public key for encrypting the plaintext data according to the identity of the searcher and the system parameters, and encrypting the plaintext data according to the calculated public key.

The embodiment of the present invention is applicable to the searcher or the group to which the searcher belongs, and the following mainly takes the searcher as an example for further description. For details, refer to step 1003 shown in FIG. 10 .

In the embodiment of the present invention, the plaintext data corresponding to the keyword is encrypted by using the public key calculated by the searcher's identity and system parameters, so that the searcher only needs to decrypt the plaintext data through the private key corresponding to the public key. A pair of public key and private key can encrypt keywords and plaintext data at the same time, making the operation simple. The key management center has the ability to query and decrypt all data at the same time, and can realize centralized data management, which is especially important for companies and some government agencies.

Embodiment six

Referring to FIG. 9 , FIG. 9 is a flowchart of an identity-based searchable encryption method provided by Embodiment 6 of the present invention. As shown in Figure 9, the method includes the following steps:

Step 901, obtaining the query key from the key management center according to the identity of the searcher or the identity of the group to which the searcher belongs;

Step 902, generate a query token according to the keyword and the obtained query key, query the encrypted keyword ciphertext from the storage server through the query token, and receive the data returned by the storage server;

Step 903, according to the query key, decrypt the ciphertext of the plaintext data encrypted according to the identity of the searcher, to obtain decrypted plaintext data.

The embodiment of the present invention is applicable to the searcher or the group to which the searcher belongs, and the following mainly takes the searcher as an example for further description. For details, refer to step 1008 shown in FIG. 10 .

Figure 10 is an identity-based searchable encryption method provided by Embodiment 5 and Embodiment 6 of the present invention. Now, the identity-based searchable encryption method described in Embodiment 5 and Embodiment 6 is specifically described in the form of signaling interaction. method, meanwhile, the implementation of the embodiment of the present invention includes the steps in FIG. 10 , but is not limited to the sequence of the steps, and FIG. 10 is just a preferred embodiment. As shown in Figure 10, the method includes the following steps:

Step 1001, the sender obtains the system parameters from the key management center, and at the same time obtains the identity information of the searcher, the searcher includes a single searcher or a group of multiple searchers, and the searcher's identity information includes all The identity information of the single searcher or the identity information of the group in which the plurality of searchers belong;

Step 1002, the sender obtains an encryption key for encrypting the keyword according to the searcher's identity information and system parameters, encrypts the keyword according to the encryption key, and uploads the encrypted keyword ciphertext to the storage server;

Step 1003, encrypting the plaintext data according to the identity of the searcher and the system parameters, and uploading the ciphertext of the encrypted plaintext data to the storage server;

Step 1004, the searcher obtains the query key from the key management center according to its own identity information;

Step 1005, the searcher generates a query token according to the query key and keywords;

Step 1006, the searcher uploads the query token to the storage server;

Step 1007, the searcher receives the returned query result from the storage server;

Step 1008, according to the query key, decrypt the ciphertext of the plaintext data encrypted according to the identity of the searcher to obtain decrypted plaintext data.

In the embodiment of the present invention, the plaintext data corresponding to the keyword is encrypted by using the public key calculated by the searcher's identity and system parameters, so that the searcher only needs to decrypt the plaintext data through the private key corresponding to the public key. A pair of public key and private key can encrypt keywords and plaintext data at the same time, making the operation simple. The key management center has the ability to query and decrypt all data at the same time, and can realize centralized data management, which is especially important for companies and some government agencies.

Embodiment seven

Referring to FIG. 11 , FIG. 11 is a flowchart of an identity-based searchable encryption method provided by Embodiment 7 of the present invention. As shown in Figure 11, the method includes the following steps:

Step 1101, obtaining the identity of the searcher or the identity of the group to which the searcher belongs, and the system parameters of the key management center;

Step 1102, according to the identity of the searcher or the identity of the searcher's group, and the system parameters to encrypt keywords, and upload the encrypted keyword ciphertext to the storage server;

Step 1103, encrypt the plaintext data according to the attribute of the searcher, and upload the ciphertext of the encrypted plaintext data to the storage server.

Specifically, the attributes include but are not limited to the following situations: For example, if the department of employee A is Group A of the R&D department of a certain company, the attribute of employee A of the company can be set to Group A of the R&D department of a certain company, or Set to another form. The sender encrypts the plaintext data corresponding to the keywords according to the attributes of company employee A, and uploads the encrypted ciphertext to the storage server.

Specifically, when the plaintext data is encrypted according to the attribute of the searcher, the generated encryption key is different from the encryption key generated by encrypting the plaintext data according to the identity of the searcher. When encrypting plaintext data according to the identity of the searcher, a public key is generated according to the identity of the searcher and system parameters, the sender encrypts the plaintext data according to the public key, and the searcher encrypts the data according to the private key corresponding to the public key The plaintext data is decrypted. When the plaintext data is encrypted according to the attribute of the searcher, the encryption key for encrypting the plaintext data is generated according to the attribute, and the method of generating the key is different from the method of generating the public key.

The embodiment of the present invention is applicable to the searcher or the group to which the searcher belongs, and the following mainly takes the searcher as an example for further description. For details, refer to step 1303 shown in FIG. 13 .

The embodiment of the present invention encrypts the plaintext attributes corresponding to the keywords of the searcher through attribute encryption, so that the searcher can set the access authority according to the preset attributes, and can perform multiple keyword searches on group members, and at the same time, publicly available group data Effective combination of searchability and data decryption authority.

Embodiment eight

Referring to FIG. 12 , FIG. 12 is a flowchart of an identity-based searchable encryption method provided by Embodiment 8 of the present invention. As shown in Figure 12, the method includes the following steps:

Step 1201, obtain the query key from the key management center according to the identity of the searcher or the identity of the group to which the searcher belongs;

Step 1202, generate a query token according to the keyword and the obtained query key, query the encrypted keyword ciphertext from the storage server through the query token, and receive the data returned by the storage server;

Step 1203: Obtain the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher;

Step 1204, according to the data decryption key, decrypt the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server, and obtain decrypted plaintext data.

The embodiment of the present invention is applicable to the searcher or the group to which the searcher belongs, and the following mainly takes the searcher as an example for further description. For details, refer to step 1308 and step 1309 shown in FIG. 13 .

Figure 13 is an identity-based searchable encryption method provided by Embodiment 7 and Embodiment 8 of the present invention. Now, the identity-based searchable encryption method described in Embodiment 7 and Embodiment 8 is specifically described in the form of signaling interaction. method, meanwhile, the implementation of the embodiment of the present invention includes the steps in FIG. 13 , but is not limited to the order of the steps, and FIG. 13 is just a preferred embodiment. As shown in Figure 13, the method includes the following steps:

Step 1301, the sender obtains the system parameters from the key management center, and at the same time obtains the identity information of the searcher, the searcher includes a single searcher or a group of multiple searchers, and the searcher's identity information includes all The identity information of the single searcher or the identity information of the group in which the plurality of searchers belong;

Step 1302, the sender obtains an encryption key for encrypting the keyword according to the searcher's identity information and system parameters, encrypts the keyword according to the encryption key, and uploads the encrypted keyword ciphertext to the storage server;

Step 1303, the sender encrypts the plaintext data according to the attribute of the searcher, and uploads the ciphertext of the encrypted plaintext data to the storage server;

Step 1304, the search party obtains the query key from the key management center according to its own identity information;

Step 1305, the searcher generates a query token according to the query key and keywords;

Step 1306, the searcher uploads the query token to the storage server;

Step 1307, the searcher receives the returned query result from the storage server;

Step 1308: Obtain the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher;

Step 1309, according to the data decryption key, decrypt the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server, and obtain decrypted plaintext data.

The embodiment of the present invention encrypts the plaintext data corresponding to the keyword of the searcher through attribute encryption, so that the searcher can set the access authority according to the preset attribute, and can perform multiple keyword searches on group members, and at the same time, publicly available group data Effective combination of searchability and data decryption authority.

Embodiment nine

Referring to FIG. 14, FIG. 14 is a device structure diagram of an encryption device provided in Embodiment 9 of the present invention, and the device includes the following units:

A first obtaining unit 1401 and an encrypted uploading unit 1402. The first obtaining unit 1401 is used to execute step 101 in FIG. 1 in the first embodiment, and the encrypted upload unit 1402 is used to execute step 102 in FIG. 1 in the first embodiment.

Those of ordinary skill in the art can understand that each unit included in the device in Embodiment 9 of the present invention is only divided according to functional logic, but is not limited to the above-mentioned division, as long as the corresponding functions can be realized; in addition , the specific names of the functional units are only for the convenience of distinguishing each other, and are not used to limit the protection scope of the present application.

The first obtaining unit 1401 is configured to obtain the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the group in which the multiple searchers belong identity information;

Wherein, the identity of the searcher includes but not limited to the searcher's mobile phone number, job number, QQ number, Email and other information. The method of obtaining the identity of the searcher includes but is not limited to obtaining by means of telephone inquiry or mail inquiry. The identity of the group where the searcher belongs includes, but is not limited to, the QQ group number and department name of the group where the searcher belongs. The way to obtain the identity of the group where the searcher belongs includes but is not limited to obtaining by means of phone inquiry or mail inquiry. The key management center is responsible for issuing the system parameters used when encrypting keywords to the sender, and at the same time sending the system parameters calculated by the sender based on the identity of the searcher or the identity of the group where the searcher is located and the system parameters to the searcher or the group where the searcher is located. The private key corresponding to the obtained public key, that is, the query key, is used to manage the public key of the sender and the private key of the searcher or the searcher's group in a one-to-one correspondence between the public key and the private key. For details, refer to step 301 in FIG. 3 and step 401 in FIG. 4 .

In this unit, the key management center can work in an offline manner, send the system parameters to the sender before going offline, and send the query key corresponding to the public key calculated by the searcher to the searcher or Just search for the group the party belongs to.

An encryption uploading unit 1402, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server.

Specifically, according to the identity of the searcher or the identity of the group where the searcher belongs, and the system parameter encryption keywords, include:

Calculate the public key for encrypting the keyword according to the identity of the searcher or the identity of the group to which the searcher belongs, and the system parameters, and encrypt the keyword according to the calculated public key.

In this unit, the sender only needs to know the identity of the searcher or the group where the searcher belongs to realize the encryption method of keywords, so that the sender does not need to download the identities of multiple searchers or the public keys of the group where the searcher belongs. Online public key database support reduces network bandwidth and storage overhead. At the same time, because the query key corresponding to the sender's public key is generated by the key management center, the key management center can query and decrypt all data, and realize the centralized key custody function. This function is used in companies and some government agencies. especially important. Refer to step 302 in FIG. 3 for details.

An embodiment of the present invention provides an encryption device. In the encryption device, the sender only needs to know the identity of the searcher or the group of the searcher to implement the keyword encryption method, so that the sender does not need to download the identities of multiple searchers. Or the public key of the search party's group does not need the support of an online public key database, which reduces network bandwidth and storage overhead.

Embodiment ten

Referring to FIG. 15, FIG. 15 is a device structure diagram of a search device provided in Embodiment 10 of the present invention, and the device includes the following units:

A second obtaining unit 1501 and a query receiving unit 1502, the second obtaining unit 1501 is used to execute step 201 in Figure 2 in the second embodiment, and the encrypted uploading unit 1502 is used to execute step 202 in Figure 2 in the second embodiment.

Those of ordinary skill in the art can understand that each unit included in the device in Embodiment 10 of the present invention is only divided according to functional logic, but is not limited to the above-mentioned division, as long as the corresponding functions can be realized; in addition , the specific names of the functional units are only for the convenience of distinguishing each other, and are not used to limit the protection scope of the present application.

The second obtaining unit 1501 is configured to obtain the query key from the key management center according to the identity information of the searcher, the identity information of the searcher includes the identity information of the single searcher or the group to which the multiple searchers belong Group identity information;

Wherein, the query key is a private key generated by the key management center according to the identity of the searcher or the identity of the group to which the searcher belongs.

The query receiving unit 1502 is configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token.

Wherein, the generating the query token according to the keyword and the obtained query key includes:

A query token is generated according to one or more keywords of the search party and the obtained query key.

By means of the above one or more keywords, the searcher can perform a search query on the storage server for the one or more keywords.

Preferably, the generating the query token according to the keyword and the obtained query key includes:

When obtaining the query key from the key management center according to the identity of the searcher's group, the searcher submits keywords to the searcher's group, and the searcher's group checks whether the searcher is a member of the group , if yes, the group of the searcher generates a query token according to the keyword and the query key, and returns the query token to the searcher.

An embodiment of the present invention provides a search device, which enables a searcher to search and query the one or more keywords in the storage server by means of the one or more keywords. At the same time, the query of the searcher is managed and controlled through the group where the searcher belongs, so as to realize the purpose of multi-user search.

Embodiment Eleven

Referring to FIG. 16, FIG. 16 is a device structure diagram of an encryption device provided in Embodiment 11 of the present invention, and the device includes the following units:

The first acquiring unit 1601, the encrypting and uploading unit 1602, and the first encrypting unit 1603, the first encrypting unit 1603 is used to execute step 803 in FIG. 8 of the fifth embodiment.

Those of ordinary skill in the art can understand that each unit included in the device in the eleventh embodiment of the present invention is only divided according to functional logic, but is not limited to the above division, as long as the corresponding functions can be realized; In addition, the specific names of the functional units are only for the convenience of distinguishing each other, and are not used to limit the protection scope of the present application.

The first acquiring unit 1601 is configured to acquire the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the group of the multiple searchers identity information;

An encryption uploading unit 1602, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server;

The first encryption unit 1603 is configured to encrypt plaintext data according to the identity information of the searcher and the system parameters, and upload the encrypted plaintext data to the storage server.

Specifically, encrypting the plaintext data according to the identity of the searcher and the system parameters includes:

calculating a public key for encrypting the plaintext data according to the identity of the searcher and the system parameters, and encrypting the plaintext data according to the calculated public key.

The embodiment of the present invention is applicable to the searcher or the group to which the searcher belongs, and the following mainly takes the searcher as an example for further description. In the embodiment of the present invention, the plaintext data corresponding to the keyword is encrypted by using the public key calculated by the searcher's identity and system parameters, so that the searcher only needs to decrypt the plaintext data through the private key corresponding to the public key. A pair of public key and private key can encrypt keywords and plaintext data at the same time, making the operation simple. The key management center has the ability to query and decrypt all data at the same time, and can realize centralized data management, which is especially important for companies and some government agencies.

Embodiment 12

Referring to FIG. 17, FIG. 17 is a device structure diagram of a search device provided in Embodiment 12 of the present invention, and the device includes the following units:

The second acquiring unit 1701, the query receiving unit 1702, and the first decrypting unit 1703, the first decrypting unit 1703 is configured to execute step 903 in FIG. 9 of the sixth embodiment.

Those of ordinary skill in the art can understand that each unit included in the device in Embodiment 12 of the present invention is only divided according to functional logic, but is not limited to the above-mentioned division, as long as the corresponding functions can be realized; In addition, the specific names of the functional units are only for the convenience of distinguishing each other, and are not used to limit the protection scope of the present application.

The second obtaining unit 1701 is configured to obtain the query key from the key management center according to the identity information of the searcher, the identity information of the searcher includes the identity information of the single searcher or the group to which the multiple searchers belong Group identity information;

A query receiving unit 1702, configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token;

The first decryption unit 1703 is configured to decrypt the ciphertext of the plaintext data encrypted according to the public key according to the query key, to obtain decrypted plaintext data.

In the embodiment of the present invention, the plaintext data corresponding to the keyword is encrypted by using the public key calculated by the searcher's identity and system parameters, so that the searcher only needs to decrypt the ciphertext data through the private key corresponding to the public key, and can Simultaneously encrypt keywords and plaintext data through a pair of public key and private key, making the operation simple. The key management center has the ability to query and decrypt all data at the same time, and can realize centralized data management, which is especially important for companies and some government agencies.

Embodiment Thirteen

Referring to FIG. 18, FIG. 18 is a device structure diagram of an encryption device provided by Embodiment 13 of the present invention, and the device includes the following units:

The first acquiring unit 1801, the encrypting and uploading unit 1802, and the second encrypting unit 1803, the second encrypting unit 1803 is used to execute step 1103 in FIG. 11 of the seventh embodiment.

Those of ordinary skill in the art can understand that each unit included in the device in Embodiment 13 of the present invention is only divided according to functional logic, but is not limited to the above-mentioned division, as long as the corresponding functions can be realized; In addition, the specific names of the functional units are only for the convenience of distinguishing each other, and are not used to limit the protection scope of the present application.

The first obtaining unit 1801 is configured to obtain the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the group of the multiple searchers identity information;

An encryption uploading unit 1802, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server;

The second encryption unit 1803 is configured to encrypt the plaintext data according to the attribute of the searcher, and upload the ciphertext of the encrypted plaintext data to the storage server.

Specifically, the attributes include but are not limited to the following situations: For example, if the department of employee A is Group A of the R&D department of a certain company, the attribute of employee A of the company can be set to Group A of the R&D department of a certain company, or Set to another form. The sender encrypts the plaintext data corresponding to the keywords according to the attributes of company employee A, and uploads the encrypted ciphertext to the storage server.

The embodiment of the present invention encrypts the plaintext attributes corresponding to the keywords of the searcher through attribute encryption, so that the searcher can set the access authority according to the preset attributes, and can perform multiple keyword searches on group members, and at the same time, publicly available group data Effective combination of searchability and data decryption authority.

Embodiment Fourteen

Referring to FIG. 19, FIG. 19 is a device structure diagram of a search device provided in Embodiment 14 of the present invention, and the device includes the following units:

The second acquisition unit 1901 and the query receiving unit 1902, the third acquisition unit 1903, and the second decryption unit 1904, the third acquisition unit 1903 is used to execute step 1203 in Figure 12 in Embodiment 8, the second decryption unit 1904 It is used to execute step 1204 in FIG. 12 in Embodiment 8.

Those of ordinary skill in the art can understand that each unit included in the device in Embodiment 14 of the present invention is only divided according to functional logic, but is not limited to the above-mentioned division, as long as the corresponding functions can be realized; In addition, the specific names of the functional units are only for the convenience of distinguishing each other, and are not used to limit the protection scope of the present application.

The second obtaining unit 1901 is configured to obtain the query key from the key management center according to the identity information of the searcher, the identity information of the searcher includes the identity information of the single searcher or the group to which the multiple searchers belong Group identity information;

A query receiving unit 1902, configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token;

The third acquiring unit 1903 is configured to acquire the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher;

The second decryption unit 1904 is configured to, according to the data decryption key, decrypt the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server, and obtain decrypted plaintext data.

The embodiment of the present invention encrypts the plaintext attributes corresponding to the keywords of the searcher through attribute encryption, so that the searcher can set the access authority according to the preset attributes, and can perform multiple keyword searches on group members, and at the same time, publicly available group data Effective combination of searchability and data decryption authority.

Embodiment 15

Referring to FIG. 20 , FIG. 20 is a device structural diagram of an encryption device provided by Embodiment 15 of the present invention. Referring to FIG. 20 , FIG. 20 is an encryption device 2000 provided by an embodiment of the present invention. The specific embodiment of the present invention does not limit the specific implementation of the network device. The device 2000 includes:

A processor (processor) 2001, a communication interface (Communications Interface) 2002, a memory (memory) 2003, and a bus 2004.

The processor 2001 , the communication interface 2002 , and the memory 2003 communicate with each other through the bus 2004 .

Communication interface 2002, used to communicate with other devices;

Processor 2001, configured to execute program A.

Specifically, program A may include program code, and the program code includes computer operation instructions.

The processor 2001 may be a central processing unit CPU, or an Application Specific Integrated Circuit (ASIC), or one or more integrated circuits configured to implement the embodiments of the present invention.

The memory 2003 is used to store the program A. The memory 2003 may include a high-speed RAM memory, and may also include a non-volatile memory (non-volatile memory), such as at least one disk memory. Program A can specifically include:

The first obtaining unit 1401 is configured to obtain the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the group in which the multiple searchers belong identity information;

An encryption uploading unit 1402, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server.

Or program A may specifically include:

The first acquiring unit 1601 is configured to acquire the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the group of the multiple searchers identity information;

An encryption uploading unit 1602, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server;

The first encryption unit 1603 is configured to encrypt plaintext data according to the identity information of the searcher and the system parameters, and upload the encrypted plaintext data to the storage server.

Or program A may specifically include:

The first obtaining unit 1801 is configured to obtain the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of the single searcher or the group of the multiple searchers identity information;

An encryption uploading unit 1802, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server;

The second encryption unit 1803 is configured to encrypt the plaintext data according to the attribute of the searcher, and upload the ciphertext of the encrypted plaintext data to the storage server.

For the specific implementation of each unit in program A, refer to the corresponding units in the embodiment shown in FIG. 14 or FIG. 16 or FIG. 18 , which will not be repeated here.

Embodiment sixteen

Referring to FIG. 21 , FIG. 21 is a device structure diagram of a search device provided by Embodiment 16 of the present invention. Referring to FIG. 21 , FIG. 21 is a search device 2100 provided by an embodiment of the present invention. The specific embodiment of the present invention does not limit the specific implementation of the network device. The search device 2100 includes:

A processor (processor) 2101 , a communication interface (Communications Interface) 2102 , a memory (memory) 2103 , and a bus 2104 .

The processor 2101 , the communication interface 2102 , and the memory 2103 communicate with each other through the bus 2104 .

Communication interface 2102, used for communicating with other devices;

Processor 2101, configured to execute program A.

Specifically, program A may include program code, and the program code includes computer operation instructions.

The processor 2101 may be a central processing unit CPU, or an Application Specific Integrated Circuit (ASIC), or one or more integrated circuits configured to implement the embodiments of the present invention.

The memory 2103 is used to store the program A. The memory 2103 may include a high-speed RAM memory, and may also include a non-volatile memory (non-volatile memory), such as at least one disk memory. Program A can specifically include:

The second obtaining unit 1501 is configured to obtain the query key from the key management center according to the identity information of the searcher, the identity information of the searcher includes the identity information of the single searcher or the group to which the multiple searchers belong Group identity information;

The query receiving unit 1502 is configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token.

Or program A may specifically include:

The second obtaining unit 1701 is configured to obtain the query key from the key management center according to the identity information of the searcher, the identity information of the searcher includes the identity information of the single searcher or the group to which the multiple searchers belong Group identity information;

A query receiving unit 1702, configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token;

The first decryption unit 1703 is configured to decrypt the ciphertext of the plaintext data encrypted according to the public key according to the query key, to obtain decrypted plaintext data.

Or program A may specifically include:

The second obtaining unit 1901 is configured to obtain the query key from the key management center according to the identity information of the searcher, the identity information of the searcher includes the identity information of the single searcher or the group to which the multiple searchers belong Group identity information;

A query receiving unit 1902, configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token;

The third acquiring unit 1903 is configured to acquire the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher;

The second decryption unit 1904 is configured to, according to the data decryption key, decrypt the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server, and obtain decrypted plaintext data.

For the specific implementation of each unit in program A, refer to the corresponding units in the embodiment shown in FIG. 15 or FIG. 17 or FIG. 19 , which will not be repeated here.

The above descriptions are only preferred embodiments of the present invention, and do not constitute a limitation to the protection scope of the present invention. Any modifications, equivalent replacements and improvements made within the spirit and principles of the present invention shall be included within the scope of the claims of the present invention.

Claims (22)

1. A searchable encryption method, characterized in that the method comprises: Obtaining the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of a single searcher or the identity information of a group of multiple searchers; Encrypting the keyword according to the identity information of the searcher and the system parameters, and uploading the encrypted keyword ciphertext to the storage server; The encrypting keywords according to the identity information of the searcher and the system parameters includes: calculating a public key for encrypting the keyword according to the identity information of the searcher and the system parameters, and encrypting the keyword according to the calculated public key. 2. The method according to claim 1, characterized in that the method further comprises: Encrypt plaintext data according to the identity information of the searcher and the system parameters, and upload the encrypted plaintext data to the storage server. 3. The method according to claim 2, wherein said encrypting plaintext data according to the identity of the searcher and the system parameters comprises: calculating a public key for encrypting the plaintext data according to the identity information of the searcher and the system parameters, and encrypting the plaintext data according to the calculated public key. 4. The method according to claim 1, wherein the method further comprises: Encrypt plaintext data according to the attributes of the searcher, and upload the encrypted ciphertext of the plaintext data to the storage server. 5. An identity-based searchable encryption method, characterized in that the method comprises: Obtain the query key from the key management center according to the identity information of the searcher, where the identity information of the searcher includes the identity information of a single searcher or the identity information of a group of multiple searchers; Generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token; The querying the encrypted keyword ciphertext from the storage server through the query token includes: The file containing the encrypted keyword is queried from the storage server through the query token. 6. The method according to claim 5, wherein said generating a query token according to keywords and said obtained query key comprises: When obtaining the query key from the key management center according to the identity of the searcher's group, the searcher submits keywords to the searcher's group, and the searcher's group checks whether the searcher is a member of the group , if yes, the group of the searcher generates a query token according to the keyword and the query key, and returns the query token to the searcher. 7. The method according to claim 5, wherein the querying the encrypted keyword ciphertext from the storage server through the query token comprises: Receive the ciphertext of the plaintext data encrypted according to the public key returned by the storage server. 8. The method according to claim 7, characterized in that, after receiving the ciphertext of the plaintext data encrypted by the public key returned by the storage server, the method further comprises: According to the query key, the ciphertext of the plaintext data encrypted according to the public key is decrypted to obtain decrypted plaintext data. 9. The method according to any one of claims 5 to 8, wherein the method further comprises: Obtain the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher. 10. The method according to claim 9, wherein the querying the encrypted keyword ciphertext from the storage server through the query token comprises: Receive the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server. 11. The method according to claim 10, characterized in that, after the step of receiving the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server, the method further includes: According to the data decryption key, the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server is decrypted to obtain the decrypted plaintext data. 12. An encryption device, characterized in that the device comprises: The first obtaining unit is used to obtain the identity information of the searcher and the system parameters of the key management center, the identity information of the searcher includes the identity information of a single searcher or the identity information of a group in which multiple searchers belong; An encryption uploading unit, configured to encrypt keywords according to the identity information of the searcher and the system parameters, and upload the encrypted keyword ciphertext to the storage server; The encrypted upload unit is specifically used for: calculating a public key for encrypting the keyword according to the identity information of the searcher and the system parameters, and encrypting the keyword according to the calculated public key. 13. The device of claim 12, further comprising: The first encryption unit is configured to encrypt plaintext data according to the identity information of the search party and the system parameters, and upload the encrypted plaintext data to the storage server. 14. The device according to claim 13, wherein the first encryption unit is specifically used for: calculating a public key for encrypting the plaintext data according to the identity information of the searcher and the system parameters, and encrypting the plaintext data according to the calculated public key. 15. The device of claim 12, further comprising: The second encryption unit is configured to encrypt the plaintext data according to the attribute of the searcher, and upload the ciphertext of the encrypted plaintext data to the storage server. 16. A search device, characterized in that the device comprises: The second obtaining unit is configured to obtain the query key from the key management center according to the identity information of the searcher, the identity information of the searcher includes the identity information of a single searcher or the identity information of a group of multiple searchers; A query receiving unit, configured to generate a query token according to the keyword and the obtained query key, and query the encrypted keyword ciphertext from the storage server through the query token; The execution step in the query receiving unit queries the encrypted keyword ciphertext from the storage server through the query token, including: The file containing the encrypted keyword is queried from the storage server through the query token. 17. The device according to claim 16, wherein the query receiving unit performs a step of generating a query token according to keywords and the obtained query key, comprising: When obtaining the query key from the key management center according to the identity of the searcher's group, the searcher submits keywords to the searcher's group, and the searcher's group checks whether the searcher is a member of the group , if yes, the group of the searcher generates a query token according to the keyword and the query key, and returns the query token to the searcher. 18. The device according to claim 16, wherein the query receiving unit comprises: Receive the ciphertext of the plaintext data encrypted according to the public key returned by the storage server. 19. The device according to claim 18, further comprising a first decryption unit, the first decryption unit being specifically configured to: According to the query key, the ciphertext of the plaintext data encrypted according to the public key is decrypted to obtain decrypted plaintext data. 20. The device according to any one of claims 16 to 19, wherein the device further comprises a third acquisition unit, the third acquisition unit is specifically used for: Obtain the data decryption key corresponding to the attribute from the key management center according to the preset attribute of the searcher. 21. The device according to claim 20, wherein the query receiving unit comprises: Receive the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server. 22. The device according to claim 21, wherein the device further comprises a second decryption unit, the second decryption unit is specifically used for: According to the data decryption key, the ciphertext of the plaintext data encrypted according to the preset searcher attribute returned by the storage server is decrypted to obtain the decrypted plaintext data.