On information leakage by indexes over data fragments

De Capitani di Vimercati, S.; Foresti, S.; Jajodia, S.; Paraboschi, S.; Samarati, P.

doi:10.1109/ICDEW.2013.6547434

Data fragmentation has recently emerged as a complementary approach to encryption for protecting confidentiality of sensitive associations when storing data at external parties. In this paper, we discuss how the use of indexes, typically associated with the encrypted portion of the data, while desirable for providing effectiveness and efficiency in query execution, can - combined with fragmentation - cause potential leakage of confidential (encrypted or fragmented) information. We illustrate how the exposure to leakage varies depending on the kind of indexes. Such observations can result useful for the design of approaches assessing information exposure and for the definition of safe (free from inferences) indexes in fragmented data.

On information leakage by indexes over data fragments / S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, P. Samarati - In: Data Engineering Workshops (ICDEW), 2013 IEEE 29th International Conference on / [a cura di] C.Y. Chan, J. Lu, K. Norvag, E. Tanin. - Los Alamitos : IEEE, 2013 Apr. - ISBN 9781467353038. - pp. 94-98 (( Intervento presentato al 1. convegno International Workshop on Privacy-Preserving Data Publication and Analysis (ICDEW) tenutosi a Brisbane nel 2013.

On information leakage by indexes over data fragments

S. De Capitani di Vimercati^Primo;S. Foresti^Secondo;S. Jajodia;S. Paraboschi;P. Samarati^Ultimo

2013

Abstract

Data fragmentation has recently emerged as a complementary approach to encryption for protecting confidentiality of sensitive associations when storing data at external parties. In this paper, we discuss how the use of indexes, typically associated with the encrypted portion of the data, while desirable for providing effectiveness and efficiency in query execution, can - combined with fragmentation - cause potential leakage of confidential (encrypted or fragmented) information. We illustrate how the exposure to leakage varies depending on the kind of indexes. Such observations can result useful for the design of approaches assessing information exposure and for the definition of safe (free from inferences) indexes in fragmented data.

Scheda breve

Scheda completa

Scheda completa (DC)

	Parole chiave
	
				secure
			
	Settori scientifico-disciplinari del contributo (sola visualizzazione)
	
				Settore INF/01 - Informatica
			
	Data di pubblicazione
	
				apr-2013
			
	Enti collegati al convegno
	
				IEEE
			
	DOI
	
				https://dx.doi.org/10.1109/ICDEW.2013.6547434
			
	Tipologia
	
				Book Part (author)
			
	Appare nelle tipologie:
	
				03 - Contributo in volume

File in questo prodotto:

File	Dimensione	Formato
06547434.pdf accesso riservato Tipologia: Publisher's version/PDF Dimensione 124.95 kB Formato Adobe PDF Visualizza/Apri Richiedi una copia	124.95 kB	Adobe PDF	Visualizza/Apri Richiedi una copia

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/221970

Citazioni

ND

11

1

IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca