Query Recovery from Easy to Hard: Jigsaw Attack against SSE

arXiv:2403.01155v1 Announce Type: new
Abstract: Searchable symmetric encryption schemes often unintentionally disclose certain sensitive information, such as access, volume, and search patterns. Attackers can exploit such leakages and other available knowledge related to the user's database to recover queries. We find that the effectiveness of query recovery attacks depends on the volume/frequency distribution of keywords. Queries containing keywords with high volumes/frequencies are more susceptible to recovery, even when countermeasures are implemented. Attackers can also effectively leverage these ``special'' queries to …

access arxiv attack attackers attacks can cs.cr database easy encryption exploit find hard information jigsaw knowledge patterns query recover recovery search searchable sensitive sensitive information sse symmetric symmetric encryption