模式识别与人工智能
2025年4月3日 星期四   首 页     期刊简介     编委会     投稿指南     伦理声明     联系我们                                                                English
模式识别与人工智能  2024, Vol. 37 Issue (1): 27-46    DOI: 10.16451/j.cnki.issn1003-6059.202401003
论文与报告 最新目录| 下期目录| 过刊浏览| 高级检索 |
支持亿级数据的高效密文范围查询完整性验证
王肇康1, 潘佳辉1, 周璐1
1.南京航空航天大学 计算机科学与技术学院 南京 211106
Efficient Encrypted Range Query Integrity Authentication for Hundreds of Millions of Records
WANG Zhaokang1, PAN Jiahui1, ZHOU Lu1
1. College of Computer Science and Technology, Nanjing University of Aeronautics and Astronautics, Nanjing 211106

全文: PDF (1556 KB)   HTML (1 KB) 
输出: BibTeX | EndNote (RIS)      
摘要 密文查询的完整性验证机制能在保护人工智能应用数据隐私的同时,为查询结果的可靠性提供保证.然而,现有针对密文范围查询的完整性验证方法存在验证数据结构构建开销较高、数据可扩展性较差的缺陷.为此,文中分析ServeDB(Secure Verifiable and Efficient Framework)计算性能瓶颈产生的原因,并基于分析结论提出基于立方格索引的密文范围查询完整性验证方法(Cube-Cell-Based Authentication Tree, CubeTree).CubeTree采用基于分位数归一化的数据重分布优化方法,平衡数据记录在值域空间中的分布,降低数据记录的编码开销.进一步提出基于平衡K叉树的扁平化结构以及基于立方格索引的验证数据结构,合并具有相同编码的数据记录,采用立方格作为基本验证单元,大幅降低验证数据结构的冗余性,减少构造过程的计算与存储开销.在真实数据集与合成数据集上的实验表明,CubeTree能显著降低验证数据结构的构建开销以及查询完整性证明的生成与校验开销,并可高效处理亿级规模的大型数据集.
服务
把本文推荐给朋友
加入我的书架
加入引用管理器
E-mail Alert
RSS
作者相关文章
王肇康
潘佳辉
周璐
关键词 应用安全密文范围查询查询完整性验证验证数据结构立方格索引    
Abstract:The encrypted query integrity authentication mechanism can provide assurance for the reliability of the query results while protecting the data privacy of artificial intelligence applications. However, the existing encrypted range query integrity authentication methods suffer from high overhead in authentication data structure construction and poor data scalability. To address these issues, the causes of performance bottlenecks in secure verifiable and efficient framework(ServeDB)are analyzed. Based on the analysis conclusions, a cube-cell-based authentication method(CubeTree) is proposed for the encrypted range query integrity authentication problem. A quantile-normalization-based data redistribution optimization is adopted to balance the data distribution in the domain. The encoding overheads of data records are reduced by the data redistribution optimization. Furthermore, a flat balanced K-ary tree structure and a cube-cell-based index authentication data structure are proposed. The redundancy of the authentication data structure is significantly reduced by merging data records with same codes and adopting cube cells as the basic units. Consequently, the computational and storage costs of the CubeTree construction are decreased. Experiments on real-world and synthetic datasets show that CubeTree can significantly reduce the construction costs of the authentication data structure and the generation/verification costs of query integrity proofs, while efficiently handling large-scale datasets with hundreds of millions of data records.
Key wordsApplication Security    Encrypted Range Query    Query Integrity Authentication    Authentica-tion Data Structure    Cube Cell Index   
收稿日期: 2023-09-07     
ZTFLH: TP315  
基金资助:国家重点研发计划项目(No.2021YFB3101100)、国家自然科学基金项目(No.62202225)资助
通讯作者: 王肇康,博士,讲师,主要研究方向为大数据并行处理、图计算.E-mail: wangzhaokang@nuaa.edu.cn.   
作者简介: 潘佳辉,硕士研究生,主要研究方向为查询完整性验证.E-mail: floating@nuaa.edu.cn. 周 璐,博士,教授,主要研究方向为密码学、物联网安全.E-mail:lu.zhou@nuaa.edu.cn.
引用本文:   
王肇康, 潘佳辉, 周璐. 支持亿级数据的高效密文范围查询完整性验证[J]. 模式识别与人工智能, 2024, 37(1): 27-46. WANG Zhaokang, PAN Jiahui, ZHOU Lu. Efficient Encrypted Range Query Integrity Authentication for Hundreds of Millions of Records. Pattern Recognition and Artificial Intelligence, 2024, 37(1): 27-46.
链接本文:  
http://manu46.magtech.com.cn/Jweb_prai/CN/10.16451/j.cnki.issn1003-6059.202401003      或     http://manu46.magtech.com.cn/Jweb_prai/CN/Y2024/V37/I1/27
版权所有 © 《模式识别与人工智能》编辑部
地址:安微省合肥市蜀山湖路350号 电话:0551-65591176 传真:0551-65591176 Email:bjb@iim.ac.cn
本系统由北京玛格泰克科技发展有限公司设计开发 技术支持:support@magtech.com.cn