Conference proceeding
Equivalence-based Security for Querying Encrypted Databases: Theory and Application to Privacy Policy Audits
Proceedings of the 22nd ACM SIGSAC Conference on computer and communications security, pp.1130-1143
CCS '15
10/12/2015
DOI: 10.1145/2810103.2813638
Abstract
To reduce costs, organizations may outsource data storage and data processing to third-party clouds. This raises confidentiality concerns, since the outsourced data may have sensitive information. Although semantically secure encryption of the data prior to outsourcing alleviates these concerns, it also renders the outsourced data useless for any relational processing. Motivated by this problem, we present two database encryption schemes that reveal just enough information about structured data to support a wide-range of relational queries. Our main contribution is a definition and proof of security for the two schemes. This definition captures confidentiality offered by the schemes using a novel notion of equivalence of databases from the adversary's perspective. As a specific application, we adapt an existing algorithm for finding violations of a rich class of privacy policies to run on logs encrypted under our schemes and observe low to moderate overheads.
Details
- Title: Subtitle
- Equivalence-based Security for Querying Encrypted Databases: Theory and Application to Privacy Policy Audits
- Creators
- Omar ChowdhuryDeepak GargLimin JiaAnupam Datta
- Resource Type
- Conference proceeding
- Publication Details
- Proceedings of the 22nd ACM SIGSAC Conference on computer and communications security, pp.1130-1143
- Series
- CCS '15
- DOI
- 10.1145/2810103.2813638
- Publisher
- ACM
- Grant note
- DOI: 10.13039/100000181, name: Air Force Office of Scientific Research, award: FA9550- 11-1-0137; DOI: 10.13039/100000001, name: National Science Foundation, award: CCF 042442, CNS 1064688
- Language
- English
- Date published
- 10/12/2015
- Academic Unit
- Computer Science
- Record Identifier
- 9984002579902771
Metrics
17 Record Views