Security has become a significant concern with the increased popularity of cloud storage services. It comes with the vulnerability of being accessed by third parties. Security is one of the major hurdles in the cloud server for the user when the user data that reside in local storage is outsourced to the cloud. It has given rise to security concerns involved in data confidentiality even after the deletion of data from cloud storage. Though, it raises a serious problem when the encrypted data needs to be shared with more people than the data owner initially designated. However, searching on encrypted data is a fundamental issue in cloud storage. The method of searching over encrypted data represents a significant challenge in the cloud. Searchable encryption allows a cloud server to conduct a search over encrypted data on behalf of the data users without learning the underlying plaintexts. While many academic SE schemes show provable security, they usually expose some query information, making them less practical, weak in usability, and challenging to deploy. Also, sharing encrypted data with other authorized users must provide each document's secret key. However, this way has many limitations due to the difficulty of key management and distribution. We have designed the system using the existing cryptographic approaches, ensuring the search on encrypted data over the cloud. The primary focus of our proposed model is to ensure user privacy and security through a less computationally intensive, user-friendly system with a trusted third party entity. To demonstrate our proposed model, we have implemented a web application called CryptoSearch as an overlay system on top of a well-known cloud storage domain. It exhibits secure search on encrypted data with no compromise to the user-friendliness and the scheme's functional performance in real-world applications.

翻译：安全性已成为云存储服务日益普及下的一个重大关切。这伴随着被第三方访问的脆弱性。当用户原本存储在本地设备中的数据被外包至云端时，安全性成为用户在云服务器上面临的主要障碍之一。这引发了关于数据机密性的安全担忧，即使在数据从云存储中删除后也是如此。然而，当需要将加密数据共享给比数据所有者最初指定更多的人员时，这会产生一个严重问题。此外，对加密数据进行搜索是云存储中的一个基本难题。在云端对加密数据进行搜索的方法是一个重大挑战。可搜索加密允许云服务器代表数据用户对加密数据执行搜索，同时无需获悉底层明文。虽然许多学术界的可搜索加密方案展现了可证明的安全性，但它们通常会泄露一些查询信息，导致其实用性较差、可用性薄弱且难以部署。并且，与其他授权用户共享加密数据需要提供每个文档的密钥。然而，由于密钥管理和分发的困难，这种方法存在诸多局限性。我们利用现有的密码学方法设计了该系统，确保了在云端对加密数据的安全搜索。我们提出的模型主要侧重于通过一个计算开销较低、用户友好且带有可信第三方实体的系统来保障用户隐私与安全。为演示我们的模型，我们实现了一个名为CryptoSearch的网络应用程序，作为针对知名云存储领域的叠加系统。它在不损害用户友好性以及该方案在实际应用中的功能性能的前提下，展现了对加密数据的安全搜索能力。