sse

package module

v0.0.0-...-b8da05c Latest Latest Go to latest Published: Apr 16, 2016 License: MIT Imports: 13 Imported by: 1

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/d1str0/sse

Links

Open Source Insights

README ¶

go-sse

Searchable symmetric encryption.

Overview

go-sse is a mostly database agnostic searchable symmetric encryption (SSE) solution. The implementation is based off of the following paper: http://www.internetsociety.org/doc/dynamic-searchable-encryption-very-large-databases-data-structures-and-implementation by David Cash, Joseph Jaeger, Stanislaw Jarecki, Charanjit Jutla, Hugo Krawczyk, Marcel-Catalin Ros, and Michael Steiner.

Implementation

Crypto

AES-CBC + HMAC

MasterKey = PBKDF2(password, salt, iter, size)
AES-Key = HMAC(MasterKey, "AES-Key" | 0x01)
MAC-Key = HMAC(MasterKey, "MAC-Key" | 0x01)

Data Structures

Three persistent data structures are required for our implementation of SSE.

Document Dictionary: We will have a dictionary of documents mapped by document ID. The document ID is a procedurally generated string that will be unique.

Count Dictionary: This dictionary will be used to track the number of matching documents for a given keyword. The key for this dictionary will be an encrypted version of the keyword and the value will be the count (TODO: possible encrypt the count).

Index Dictionary: This disctionary is slightly more complex than the previous two as the value held by the key will be an encrypted array. Each of these encrypted arrays are also referred to as blocks and will be an encrypted blob to be stored in the dictionary. The key for this dictionary will be an HMAC of several different variables.

Constructing the Document Dictionary

The document dictionary is simply a key value store relating document IDs to document data. The ID of the document is derived from the document by taking an HMAC-SHA256 of the document data after encryption (Encrypt-then-MAC). The encrypted document is then stored in the table with the coinciding key.

Using the standard library's 'crypto/hmac' package, we will generate the ID of documents like so:

// Where key and document are byte slices (arrays).
mac := hmac.New(sha256.New, key)
mac.Write(document)
docId := mac.Sum(nil)

Documents will be encrypted with AES-256. Key's will be derived using PBKDF2 with a work factor of 20,000 + random number, and a unique salt. The salt and work factor will be stored client side.

Constructing the Count Dictionary

This dictionary will hold the hashed keyword and a count of documents that match.

The indice of this table is computed as the HMAC of the keyword and the key.

mac := hmac.New(sha256.New, key)
mac.Write(keyword)
hash := mac.Sum(nil)
table[hash] = count

Constructing the Index

Also known as the Block Dictionary, this will be another key value store with seemingly random keys and encrypted blobs for values. These encrypted blobs are also referred to as blocks.

Each block is an array of size B containing document IDs matching a given keyword w.

From K, we derive a K1 and a K2.

K1 = HMAC(K, 1||w)
K2 = HMAC(K, 2||w)

These two keys are used later to derive the block ID and to encrypt the block respectively.

c = Count[w]
i = floor(c/B) // 5 matches / 10 ids per block = .5 -> Block 0
l = HMAC(K1, c) // Where c is the count in the array
d = Enc(A, K2) // Where A is the array.
Store[l] = d

Note: the entire array is stored as an encrypted blob. There is no ability to tell that it is an array at this point.

Installation

Requirements

This package requires github.com/d1str0/pkcs7 for PKCS#7 Padding.

Documentation ¶

Index ¶

Constants
Variables
func CheckMAC(message, messageMAC, key []byte) bool
func Decrypt(message, key []byte) ([]byte, error)
func DeriveKeys(key []byte) (aes_key, mac_key []byte)
func Encrypt(message, key []byte) ([]byte, error)
func HMAC(message, key []byte) []byte
func Jaccard(set1, set2 []string) float64
func Key(password, salt []byte, iter int) []byte
func Salt() ([]byte, error)
type BoltDB
- func BoltDBOpen() (BoltDB, error)
type Client
- func NewClient(db DBConn) (*Client, error)
type DBConn

Constants ¶

View Source

const (
	DOCUMENTS = "documents"
	COUNTS    = "counts"
	INDEX     = "index"
)

View Source

const (
	BlobSize = 10 // Size of array holding doc IDs
)

View Source

const HMACSize = sha256.Size

Variables ¶

View Source

var One = []byte{0x01} // Needed for different keys.

View Source

var Two = []byte{0x02}

Functions ¶

func CheckMAC ¶

func CheckMAC(message, messageMAC, key []byte) bool

CheckMAC reports whether messageMAC is a valid HMAC tag for message.

func Decrypt ¶

func Decrypt(message, key []byte) ([]byte, error)

func DeriveKeys ¶

func DeriveKeys(key []byte) (aes_key, mac_key []byte)

func Encrypt ¶

func Encrypt(message, key []byte) ([]byte, error)

Encrypt takes a message and a key (both as []byte) and will encrypt the message with AES using the supplied key. The key must be an appropriate length for AES:

16 = AES-128
24 = AES-192
32 = AES-256

The message is padded with PKCS#7 Padding and the IV is prepended to the ciphertext returned.

For authentication, the HMAC of the encrypted is appended to the ciphertext returned.

func HMAC ¶

func HMAC(message, key []byte) []byte

HMAC will compute the MAC with the given message and given key.

func Jaccard ¶

func Jaccard(set1, set2 []string) float64

func Key ¶

func Key(password, salt []byte, iter int) []byte

func Salt ¶

func Salt() ([]byte, error)

Types ¶

type BoltDB ¶

type BoltDB struct {
	Conn *bolt.DB
}

func BoltDBOpen ¶

func BoltDBOpen() (BoltDB, error)

func (BoltDB) Close ¶

func (db BoltDB) Close()

func (BoltDB) Delete ¶

func (db BoltDB) Delete(bucket string, id []byte) error

func (BoltDB) Get ¶

func (db BoltDB) Get(bucket string, id []byte) ([]byte, error)

func (BoltDB) Init ¶

func (db BoltDB) Init() error

func (BoltDB) Put ¶

func (db BoltDB) Put(bucket string, id, value []byte) error

type Client ¶

type Client struct {
	DB DBConn
	// contains filtered or unexported fields
}

func NewClient ¶

func NewClient(db DBConn) (*Client, error)

func (*Client) AddDocToKeyword ¶

func (c *Client) AddDocToKeyword(keyword, doc string) error

func (*Client) Count ¶

func (c *Client) Count(keyword string) (int, error)

Get the current count value for a given keyword.

func (*Client) Delete ¶

func (c *Client) Delete(id string) error

Get a document back from the store with the given ID.

func (*Client) Get ¶

func (c *Client) Get(id string) ([]byte, error)

Get a document back from the store with the given ID.

func (*Client) Put ¶

func (c *Client) Put(id string, doc []byte) error

Put a document into the store with the given ID.

func (*Client) Search ¶

func (c *Client) Search(keyword string) (ids []string, err error)

Find all document IDs associated with the given keyword.

func (*Client) SetCount ¶

func (c *Client) SetCount(keyword string, count int) error

func (*Client) SetKey ¶

func (c *Client) SetKey(passphrase, salt string, iter int)

Set the key for the client.

type DBConn ¶

type DBConn interface {
	Init() error
	Get(table string, id []byte) ([]byte, error)
	Put(table string, id, value []byte) error
	Delete(table string, id []byte) error
	Close()
}

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
main
test

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL