A format preserving encryption scheme
for sensitive information

Abstract

Abstract:

Format preserving encryption has the characteristics of unchanged data format and data length after encryption, and does not destroy the data format constraints, thereby reducing the cost of modifying the data format. The existing format preserving encryption schemes for sensitive information are based on the symmetric encryption system, which has problems such as low key transmission security and high key management cost. This paper proposes a format preserving encryption scheme for sensitive information in identity cryptosystems. Compared with the existing format preserving encryption schemes, the two parties do not need to transmit a key, and the key derivation function is used to generate an encryption key and a decryption key. The use of hybrid encryption improves the security of sensitive information transmission. It is proved that the scheme satisfies the security of identity-based pseudo-random permutation. At the same time, the scheme has cipher text indistinguishability under adaptive selective plaintext attack.

Key words: format preserving encryption, sensitive information, identity-based, key derivation, hybrid encryption

ZHANG Yu-lei1，LUO Guang-ping1，ZHANG Yong-jie2，ZHANG Xue-wei1,LIU Xiang-zhen1，WANG Cai-fen3.

A format preserving encryption scheme

for sensitive information

[J]. Computer Engineering & Science.

References ［12］

［1］	Li Min,Liu Zhe-li,You Xiao-ying, et al. Format-preserving encryption model for sensitive information［J］.Acta Scientiarum Naturalium Universitatis Nankaiensis,2012,45(5):1-6.(in Chinese)
［2］	Jia Chun-fu,Liu Zhe-li,Li Jing-wei,et al.A new integer FPE scheme based on Feistel network［C］∥
	Proc of 2010 International Conference on Services Science, Management and Engineering,2012:637-644.
［3］	Bellare M, Ristenpart T, Rogaway P, et al.Format-preserving encryption［C］∥Proc of the 16th International Workshop on Selected Areas in Cryptography,2009:295-312.
［4］	Bellare M,Rogaway P,Spies T.The FFX mode of operation for format-preserving encryption［EB/OL］.［2010-02-20］.https://csrc.nist.gov/csrc/media/projects/block-cipher-techniques/documents/bcm/proposed-modes/ffx/ffx-spec.pdf.
［5］	Schneier B, Kelsey J G. Unbalanced Feistel networks and block-cipher design［C］∥Proc of the 3rd International Workshop on Fast Software Encryption,1996:121-144.
［6］	Morris B,Rogaway P,Stegers T.How to encipher messages on a small domain：Deterministic encryption and the thorp shuffle［C］∥Proc of the 29th Annual International Cryptology Conference,2009:286-302.
［7］	Liu Zhe-li,Jia Chun-fu,Li Jing-wei.Research on the format-preserving encryption techniques［J］.Journal of Software,2012,23(1):152-170.(in Chinese)
［8］	Li Jing-wei,Jia Chun-fu,Liu Zhe-li,et al.FPE scheme based on k-splits Feistel network［J］.Journal on Communications,2012,33(4):62-68.(in Chinese)
［9］	Li Min,Jia Chun-fu,Li Jing-wei,et al.Format-preserving encryption for variable-length encoding character data［J］.Journal of Jilin University(Engineering and Technology Edition),2012,42(5):1257-1261.(in Chinese)
［10］	Bellare M,Hoang V T,Stefano T.Message-recovery attacks on Feistel-based format preserving encryption［C］∥Proc of the 23rd ACM
	SIGSAC Conference on
	Computer and Communications Security,2016:794-826.
［11］	Wang Peng.Research and implementation on multi-type format-preserving encrytion techniques［D］.Beijing:Beijing University of Posts and Telecommunications,2017.(in Chinese)
［12］	Zhang Bai-hui.Research on format-preserving encryption for big data publishment［D］.Beijing:Beijing University of Posts and Telecommunications,2018.(in Chinese)
［13］	Bellare M,Hoang V T.Identity-based format-preserving encryption［C］∥Proc of the 24th ACM SIGSAC Conference on Computer and Communications Security,2017:1515-1532.
［14］	Black J,Rogaway P.Ciphers with arbitrary finite domains［C］∥
	Proc of the Cryptographer’s Track at the RSA Conference on Topics Cryptology,2002:114-130.
	附中文参考文献：
［1］	李敏,刘哲理,游晓莺，等.敏感信息的保留格式加密模型［J］.南开大学学报(自然科学版),2012,45(5):1-6.
［7］	刘哲理,贾春福,李经纬.保留格式加密技术研究［J］.软件学报,2012,23(1):152-170.
［8］	李经纬,贾春福,刘哲理,等.基于k-分割的Feistel FPE方案［J］.通信学报,2012,33（4）:62-68.
［9］	李敏,贾春福,李经纬,等.变长编码字符型数据的保留格式加密［J］.吉林大学学报（工学版）,2012,42(5):1257-1261.
［11］	王鹏.多类型数据保留格式加密技术的研究与实现［D］.北京:北京邮电大学,2017.
［12］	张百惠.面向大数据发布的保留格式加密技术研究［D］.北京：北京邮电大学，2018.

[1]	DING Bin-bin, CAO Su-zhen, DING Xiao-hui, DOU Feng-ge, MA Jia-jia. Pairing-free identity-based public key encryption with equality test [J]. Computer Engineering & Science, 2022, 44(12): 2146-2152.
[2]	NIU Shu-fen, FANG Li-zhi, SONG Mi, WANG Cai-fen, DU Xiao-ni. Privacy-preserving broadcast encryption in smart city [J]. Computer Engineering & Science, 2022, 44(06): 1003-1012.
[3]	NIU Shu-fen,NIU Ling,WANG Cai-fen,YANG Xi-yan,JIA Xiang-dong. Privacy-preserving multi-recipient aggregate signcryption for heterogeneous cryptography systems [J]. Computer Engineering & Science, 2018, 40(05): 805-812.
[4]	KAN Yuanping. An identity-based signature scheme with message recovery over lattice [J]. Computer Engineering & Science, 2018, 40(04): 660-664.
[5]	WEN Song,WU Zhao,ZHENG Yi. A WSN identity-based keys updating method based on trusted computing platform [J]. J4, 2015, 37(10): 1856-1861.
[6]	WANG Wei1,LI Jiajing2,WENG Jiajia1. A quantitative social stability analysis framework based on web sensitive information mining [J]. J4, 2015, 37(06): 1214-1220.
[7]	CHEN Ming. Identity-based multi-recipient signcryption key encapsulation in the standard model [J]. J4, 2015, 37(04): 719-725.
[8]	WU Shukun. Analysis and improvement of two provable secure proxy signature schemes in the standard model [J]. J4, 2014, 36(11): 2153-2158.
[9]	DENG Lunzhi，WANG Xiangbin,QU Yunyun. High-efficient signcryption scheme based on identity [J]. J4, 2014, 36(03): 441-445.
[10]	LI Fang1,2，CHEN Ming3. Identitybased authenticated key agreement protocol featuring strong security and no bilinear paring operation [J]. J4, 2013, 35(6): 65-71.
[11]	. [J]. J4, 2005, 27(12): 7-9.

A format preserving encryption scheme

for sensitive information

PDF

Knowledge

Abstract

Cite this article

share this article

References ［12］

Related Articles 11

Recommended Articles

Metrics

Comments