Published September 20, 2024 | Version v1

Inject Less, Recover More: Unlocking the Potential of Document Recovery in Injection Attacks Against SSE

  • 1. Cyber Security Group, Delft University of Technology, 2628 CD, the Netherlands

Description

Searchable symmetric encryption has been vulnerable to inference attacks that rely on uniqueness in leakage patterns. However, many keywords in datasets lack distinctive leakage patterns, limiting the effectiveness of such attacks. The file injection attacks, initially proposed by Cash et al. (CCS 2015), have shown impressive performance with 100% accuracy and no prior knowledge requirement. Nevertheless, this attack fails to recover queries with underlying keywords not present in the injected files. To address these limitations, our research introduces a novel attack strategy called LEAP-Hierarchical Fusion Attack (LHFA) that combines the strengths of both file injection attacks and inference attacks. Before initiating keyword injection, we introduce a new approach for inert/active keyword selection. In the phase of selecting injected keywords, we focus on keywords without unique leakage patterns and recover them, leveraging their presence for document recovery. Our goal is to achieve an amplified effect in query recovery. We demonstrate a minimum query recovery rate of 1.3 queries per injected keyword with a 10% data leakage of a real-life dataset, and initiate further research to overcome challenges associated with non-distinctive keywords.

Files

Inject Less, Recover More Unlocking the Potential of Document Recovery in Injection Attacks Against SSE.pdf

Additional details

Funding

European Commission
IRIS - artificial Intelligence threat Reporting and Incident response System 101021727
European Commission
TENSOR - Reliable biomeTric tEhNologies to asSist Police authorities in cOmbating terrorism and oRganized crime 101073920
European Commission
REWIRE - REWiring the ComposItional Security VeRification and AssurancE of Systems of Systems Lifecycle 101070627
European Commission
TANGO - Digital Technologies ActiNg as a Gatekeeper to information and data flOws 101070052

References

  • D. X. Song, D. Wagner, and A. Perrig, "Practical techniques for searches on encrypted data," in Proceeding 2000 IEEE symposium on security and privacy. S&P 2000. IEEE, 2000, pp. 44–55
  • H. Zhou, Z. Shi, X. Ouyang, and Z. Zhao, "Building a blockchain-based decentralized ecosystem for cloud and edge computing: an allstar approach and empirical study," Peer-to-Peer Networking and Applications, vol. 14, no. 6, pp. 3578–3594, 2021
  • M. S. Islam, M. Kuzu, and M. Kantarcioglu, "Access pattern disclosure on searchable encryption: ramification, attack and mitigation." in NDSS, vol. 20. IEEE, 2012, p. 12
  • D. Cash, P. Grubbs, J. Perry, and T. Ristenpart, "Leakage-abuse attacks against searchable encryption," in Proceedings of the 22nd ACM SIGSAC conference on computer and communications security, 2015, pp. 668– 679
  • D. Pouliot and C. V. Wright, "The shadow nemesis: Inference attacks on efficiently deployable, efficiently searchable encryption," in Proceedings of the 2016 ACM SIGSAC conference on computer and communications security, 2016, pp. 1341–1352
  • L. Blackstone, S. Kamara, and T. Moataz, "Revisiting leakage abuse attacks," Cryptology ePrint Archive, 2019.
  • J. Ning, J. Xu, K. Liang, F. Zhang, and E.-C. Chang, "Passive attacks against searchable encryption," IEEE Transactions on Information Forensics and Security, vol. 14, no. 3, pp. 789–802, 2018
  • J. Ning, X. Huang, G. S. Poh, J. Yuan, Y. Li, J. Weng, and R. H. Deng, "Leap: leakage-abuse attack on efficiently deployable, efficiently searchable encryption with partially known dataset," in Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security, 2021, pp. 2307–2320
  • S. Lambregts, "Revisit attacks on searchable symmetric encryption: Explore more, reveal more," Master's thesis, Delft University of Technology, 2022.
  • X. Zhang, W. Wang, P. Xu, L. T. Yang, and K. Liang, "High recovery with fewer injections: Practical binary volumetric injection attacks against dynamic searchable encryption," arXiv preprint arXiv:2302.05628, 2023
  • Y. Zhang, J. Katz, and C. Papamanthou, "All your queries are belong to us: The power of file-injection attacks on searchable encryption." in USENIX Security Symposium, vol. 2016, 2016, pp. 707–720
  • D. Cash, J. Jaeger, S. Jarecki, C. Jutla, H. Krawczyk, M.-C. Ros¸u, and M. Steiner, "Dynamic searchable encryption in very-large databases: Data structures and implementation," Cryptology ePrint Archive, 2014
  • M. Naveed, M. Prabhakaran, and C. A. Gunter, "Dynamic searchable encryption via blind storage," in 2014 IEEE Symposium on Security and Privacy. IEEE, 2014, pp. 639–654
  • W. W. C. MLD, "Enron email datasets," 2015, accessed: Jun. 01, 2023. [Online]. Available: https://www.cs.cmu.edu/∼enron/
  • T. A. S. Foundation, "Apache: Mail archieves of lucene," 1999, accessed: Jun. 01, 2023. [Online]. Available: https://lists.apache.org/\#lucene
  • D. Shapiro, "Plaintextwikipedia: Convert wikipedia database dumps into plaintext files," 2021, accessed: Jun. 01, 2023. [Online]. Available: https://github.com/daveshap/PlainTextWikipedia
  • S. Bird, E. Klein, and E. Loper, Natural language processing with Python: analyzing text with the natural language toolkit. " O'Reilly Media, Inc.", 2009
  • Y. Kortekaas, "Access pattern hiding aggregation over encrypted databases," Master's thesis, University of Twente, 2020
  • Z. Shang, S. Oya, A. Peter, and F. Kerschbaum, "Obfuscated access and search patterns in searchable encryption," arXiv preprint arXiv:2102.09651, 2021
  • G. Chen, T.-H. Lai, M. K. Reiter, and Y. Zhang, "Differentially private access patterns for searchable symmetric encryption," in IEEE INFOCOM 2018-IEEE Conference on Computer Communications. IEEE, 2018, pp. 810–818
  • R. Du, Y. Zhang, and M. Li, "Database padding for dynamic symmetric searchable encryption," Security and Communication Networks, vol. 2021, pp. 1–12, 2021.
  • H. Liu, B. Wang, N. Niu, S. Wilson, and X. Wei, "Vaccine:: Obfuscating access pattern against file-injection attacks," in 2019 IEEE Conference on Communications and Network Security (CNS). IEEE, 2019, pp. 1–9