泛在网安全搜索基础理论与技术

The large scale of users, interconnected physical devices, and all kinds of information in the Ubiquitous Network is urgently calling for the development of secure, effective, and versatile search techniques to satisfy users’ complex need of search anytime and anywhere. Different from traditional web search, secure search in the Ubiquitous Network faces the following three challenges: 1) the large scale and varieties of search requests demand the intelligent fusion of data across different sub networks; 2) data in Ubiquitous Network often exhibits characteristics of being fragmented, varieties of quality, low data availability, lack of trust on data source, etc.; 3) the sensitive data that need encryption is everywhere. Given these challenges, this project focuses on the following four scientific problems: 1) analysis and discovery of the relations of functions, security and efficiency in the Ubiquitous Network searching; 2) the theories and technologies of data trustworthy and availability in the Ubiquitous Network; 3) the theories and algorithms of secure and efficient search for heterogeneous, dynamic, and large-scale of data in the Ubiquitous Network; 4) the exploration of the relations and applications of privacy and utility of multi-source and multi-purpose data. Centering around these scientific problems, we plan to explore the following four research tasks: 1) building security models and evaluation metrics for secure search the Ubiquitous Network; 2) the entity certification and anonymity protection for interconnected physical devices in the Ubiquitous Network; 3) secure, efficient, and highly effective indexing and searching over encrypted data in the Ubiquitous Network; 4) multi-source data analytics and related privacy-enhancing technologies in the Ubiquitous Network. We plan to conduct extensive experiments on the China Mobile OneNET Platform to demonstrate the effectiveness of our technologies. The project aims to provide fundamental theoretical support as well as key technology innovations to the development of secure, effective, and versatile search techniques in the Ubiquitous Network.

面对泛在网中海量的人、物、信息，当前急需发展泛在网安全搜索技术，以满足用户随时随地的搜索需求。然而，不同于传统Web的存在性搜索，泛在网安全搜索面临以下三大挑战：1）搜索业务规模大、种类多，要求各泛在子网数据的跨网融合；2）数据呈现碎片化、质量参差不齐、可用性不高、源头可信度不统一等特征；3）敏感加密数据无处不在。针对这些新挑战，该项目聚焦以下四个科学问题：1）泛在网搜索功能、安全及效率间内在关系及权衡；2）泛在网数据源头可信性可用性的理论与技术；3）面向异构、动态、大规模加密数据的高效搜索理论与算法；4）泛在网中多源头跨网数据的隐私性及可用性的内在联系。围绕这些科学问题，该项目拟开展如下研究内容：1）泛在网安全搜索建模与评估；2）泛在网物理实体认证与匿名保护；3）泛在网加密数据高效检索；4）泛在网多源数据隐私分析与保护等。结合实验验证，旨在为泛在网安全搜索提供必要的基本理论和技术创新。

面对泛在网中海量的人、物、信息，急需发展泛在网安全搜索技术，以满足用户随时随地的搜索需求。泛在网在技术上呈现广域互联，在管理上呈现信息孤岛，这使得泛在网安全搜索具有人机物耦合度高、跨子网交互性强、安全与隐私需求高等特点。针对泛在网信息传播方式与搜索模式，凝练出“分析与发现泛在网搜索中功能、安全及其效率之间的内在关系”，“泛在网中数据采集的可信性及可用性的理论与技术”，“泛在网中面向异构、动态、大规模数据的安全高效搜索的理论与算法”，“探索泛在网中多源头多用途数据的隐私性及其可用性的内在联系与应用”四个科学问题。课题在“泛在网安全搜索建模与评估”，“泛在网中物理实体的认证与匿名保护技术”“泛在网数据的安全高效检索技术”，“泛在网多源数据隐私分析与保护技术”等基础理论和关键技术上取得突破，并基于中国移动OneNET物联网平台开展实验验证，为泛在网安全搜索提供基本理论和技术支撑。创立了泛在网安全搜索建模与计算基础理论、高并发的加密数据索引与检索技术、融合人机物的安全搜索架构。在学术成果方面，发表学术论文127篇，其中期刊论文59篇，顶级IEEE Trans.期刊论文22篇，会议论文68篇；授权专利53项；制定网络空间安全领域标准4项；获国家科技进步二等奖1项，省部级一等奖5项。在人才培养方面，课题组成员获国家级人才称号1人，培养博士研究生11名、硕士研究生48名。在国际交流方面，举办国际会议11场国际会议，参加国际会议并作报告70次。