Towards Multi-User, Secure, and Verifiable $k$NN Query in Cloud Database
Ningning Cui, Qian Kang, Taotao Cai, Jianxin Li, Xiaochun Yang, Jie Cui, Hong Zhong
Abstract
With the boom in cloud computing, data outsourcing in location-based services is proliferating and has attracted increasing interest from research communities and commercial applications. Nevertheless, since the cloud server is probably both untrusted and malicious, concerns about data security and result integrity have become on the rise sharply. In addition, in the single-user situation assumed by most existing works, query users can capture query content from each other even though the queries are encrypted, which may incur the leakage of query privacy. Unfortunately, there exists little work that can commendably assure data security and result integrity in the multi-user setting. To this end, in this article, we study the problem of multi-user, secure, and verifiable <inline-formula><tex-math notation="LaTeX">$k$</tex-math></inline-formula> nearest neighbor query ( <b>MSV <inline-formula><tex-math notation="LaTeX">$k$</tex-math><alternatives><mml:math xmlns:mml="http://www.w3.org/1998/Math/MathML"><mml:mi>k</mml:mi></mml:math><inline-graphic xlink:href="cui-ieq3-3237879.gif" xmlns:xlink="http://www.w3.org/1999/xlink"/></alternatives></inline-formula> NN</b> ). To support MSV <inline-formula><tex-math notation="LaTeX">$k$</tex-math></inline-formula> NN, we first propose a novel unified structure, called verifiable and secure index (VSI). Based on this, we devise a series of secure protocols to facilitate query processing and develop a compact verification strategy. Given an MSV <inline-formula><tex-math notation="LaTeX">$k$</tex-math></inline-formula> NN query, our proposed solution can not merely answer the query efficiently while can guarantee: 1) preserving <i>data privacy</i> , <i>query privacy</i> , <i>result privacy</i> , and <i>access patterns privacy</i> ; 2) authenticating the <i>correctness</i> and <i>completeness</i> of the results; 3) supporting <i>multi-user</i> with different keys. Finally, the formal security analysis and complexity analysis are theoretically proven and the performance and feasibility of our proposed approach are empirically evaluated and demonstrated.