IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca

A data owner outsourcing the database of a multi user application wants to prevent information leaks caused by outside attackers exploiting software vulnerabilities or by curious personnel. Query processing over encrypted data solves this problem for a single user, but provides only limited functionality in the face of access restrictions for multiple users and keys. ENKI is a system for securely executing queries over sensitive, access restricted data on an outsourced database. It introduces an encryption based access control model and techniques for query execution over encrypted, access restricted data on the database with only a few cases requiring computations on the client. A prototype of ENKI supports all queries seen in three real world use cases and executes queries from TPC-C benchmark with a modest overhead compared to the single user mode.

ENKI : Access Control for Encrypted Query Processing / I. Hang, F. Kerschbaum, E. Damiani - In: Proceedings of the 2015 ACM SIGMOD International Conference on Management of DataNew York : ACM, 2015. - ISBN 978-1-4503-2758-9. - pp. 183-197 (( convegno ACM SIGMOD International Conference on Management of Data tenutosi a Melbourne nel 2015.

ENKI : Access Control for Encrypted Query Processing

I. Hang;F. Kerschbaum;E. Damiani

2015

Abstract

A data owner outsourcing the database of a multi user application wants to prevent information leaks caused by outside attackers exploiting software vulnerabilities or by curious personnel. Query processing over encrypted data solves this problem for a single user, but provides only limited functionality in the face of access restrictions for multiple users and keys. ENKI is a system for securely executing queries over sensitive, access restricted data on an outsourced database. It introduces an encryption based access control model and techniques for query execution over encrypted, access restricted data on the database with only a few cases requiring computations on the client. A prototype of ENKI supports all queries seen in three real world use cases and executes queries from TPC-C benchmark with a modest overhead compared to the single user mode.

Scheda breve

Scheda completa

Scheda completa (DC)

	Parole chiave
	
			Database Security; Database  Integrity; Database Protection
		
	Settori scientifico-disciplinari del contributo
	
			Settore INF/01 - Informatica
		
	Data di pubblicazione
	
			2015
		
	Enti collegati al convegno
	
			Association for Computing Machinery (ACM)
Association for Computing Machinery's Special Interest Group on Management of Data (SIGMOD)
		
	DOI
	
			https://dx.doi.org/10.1145/2723372.2749439
		
	Tipologia
	
			Book Part (author)
		
	Appare nelle tipologie:
	
			03 - Contributo in volume

File in questo prodotto:

Non ci sono file associati a questo prodotto.

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/280099

Citazioni

ND

26

17

social impact