Journal of King Saud University: Computer and Information Sciences (Mar 2023)
A lightweight secure retrieval model applied to intranet
Abstract
In universities or enterprises that need to establish an intranet to ensure local data security and privacy, intranet users can store their data on the intranet storage server to realize data backup, data confidentiality, dynamic storage space and other services. However, ensuring the integrity and security of data is a concern for most users. Thus, some users encrypt their data and store them in an intranet storage server. In this case, some useful functions (retrieval, sharing, etc.) will be affected. Additionally, increasing users not only pay attention to the security of data but also focus on protecting their data usage habits, such as the protection of retrieval information. To this end, in this study, we propose an intranet service-oriented secure retrieval model by designing a specific indexing method and introducing a semi-trusted server to manage and update the index files, which realizes the protection of retrieval information and the sharing of encrypted data. This model is designed to prevent snooping by intranet server administrators unauthorized users on storing data and retrieving information. In the proposed model, two encryption algorithms the cyphertext policy attribute-based encryption (CP-ABE) and public-key encryption with keyword search (PEKS) algorithms—were used to protect the retrieval information, and the advantages and disadvantages of the two algorithms were discussed. Finally, we performed a complete code implementation of the proposed model. The experimental results show that the proposed model is fast and effective, making it a candidate for use in intranet storage privacy protection. Notably, the proposed retrieval model has been tried by several government-affiliated institutions in Xuzhou city and has received good feedback.
