Data fragmentation has recently emerged as a complementary approach to encryption for protecting confidentiality of sensitive associations when storing data at external parties. In this paper, we discuss how the use of indexes, typically associated with the encrypted portion of the data, while desirable for providing effectiveness and efficiency in query execution, can - combined with fragmentation - cause potential leakage of confidential (encrypted or fragmented) information. We illustrate how the exposure to leakage varies depending on the kind of indexes. Such observations can result useful for the design of approaches assessing information exposure and for the definition of safe (free from inferences) indexes in fragmented data.
On information leakage by indexes over data fragments / S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, P. Samarati - In: Data Engineering Workshops (ICDEW), 2013 IEEE 29th International Conference on / [a cura di] C.Y. Chan, J. Lu, K. Norvag, E. Tanin. - Los Alamitos : IEEE, 2013 Apr. - ISBN 9781467353038. - pp. 94-98 (( Intervento presentato al 1. convegno International Workshop on Privacy-Preserving Data Publication and Analysis (ICDEW) tenutosi a Brisbane nel 2013.
On information leakage by indexes over data fragments
S. De Capitani di VimercatiPrimo
;S. ForestiSecondo
;P. SamaratiUltimo
2013
Abstract
Data fragmentation has recently emerged as a complementary approach to encryption for protecting confidentiality of sensitive associations when storing data at external parties. In this paper, we discuss how the use of indexes, typically associated with the encrypted portion of the data, while desirable for providing effectiveness and efficiency in query execution, can - combined with fragmentation - cause potential leakage of confidential (encrypted or fragmented) information. We illustrate how the exposure to leakage varies depending on the kind of indexes. Such observations can result useful for the design of approaches assessing information exposure and for the definition of safe (free from inferences) indexes in fragmented data.File | Dimensione | Formato | |
---|---|---|---|
06547434.pdf
accesso riservato
Tipologia:
Publisher's version/PDF
Dimensione
124.95 kB
Formato
Adobe PDF
|
124.95 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.