Soft Computing

, Volume 21, Issue 10, pp 2599–2607

Dual trapdoor identity-based encryption with keyword search

Methodologies and Application


Identity-based encryption with keyword search (IBEKS) is a useful cryptographic primitive for cloud computing, i.e., it allows a data owner to encrypt and store his data in a cloud storage server, and later the owner can use his/her private key to produce a search trapdoor for searching the encrypted data. Existing IBEKS schemes only focus on supporting efficient and complex queries for the private key holder, while the authority, who is in charge of the generation of the private keys for users, cannot efficiently search the encrypted data. However, some applications might require the authority to efficiently search the encrypted data intended for any user. To address this problem, in this paper, we introduce a new primitive named dual trapdoor identity-based encryption with keyword search (DTIBEKS). In this primitive, the authority can use a peculiar way to produce one more trapdoor, which allows the authority to search any identity’s encrypted data. We formally give the definition and security model for DTIBEKS, and then propose a novel DTIBEKS scheme. We further prove the security of our proposed DTIBEKS without random oracles. It is worth noting that our scheme can be easily transformed into identity-based encryption with fuzzy keyword search.


Cloud computing Fuzzy keyword search Identity-based encryption with keyword search Hierarchical identity-based encryption Dual system encryption 

Copyright information

© Springer-Verlag Berlin Heidelberg 2015

Authors and Affiliations

  1. 1.College of Information Science and TechnologyJinan UniversityGuangdongChina
  2. 2.Fujian Provincial Key Laboratory of Network Security and Cryptology, School of Mathematics and Computer ScienceFujian Normal UniversityFuzhouChina
  3. 3.Nanjing University of Information Science and TechnologyNanjingChina

Personalised recommendations