A comprehensive framework for secure query processing on relational data in the cloud

Shiyuan Wang, Divyakant Agrawal, Amr El Abbadi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

29 Citations (Scopus)

Abstract

Data security in the cloud is a big concern that blocks the widespread use of the cloud for relational data management. First, to ensure data security, data confidentiality needs to be provided when data resides in storage as well as when data is dynamically accessed by queries. Prior works on query processing on encrypted data did not provide data confidentiality guarantees in both aspects. Tradeoff between secrecy and efficiency needs to be made when satisfying both aspects of data confidentiality while being suitable for practical use. Second, to support common relational data management functions, various types of queries such as exact queries, range queries, data updates, insertion and deletion should be supported. To address these issues, this paper proposes a comprehensive framework for secure and efficient query processing of relational data in the cloud. Our framework ensures data confidentiality using a salted IDA encoding scheme and column-access-via-proxy query processing primitives, and ensures query efficiency using matrix column accesses and a secure B+-tree index. In addition, our framework provides data availability and integrity. We establish the security of our proposal by a detailed security analysis and demonstrate the query efficiency of our proposal through an experimental evaluation.

Original languageEnglish
Title of host publicationSecure Data Management - 8th VLDB Workshop, SDM 2011, Proceedings
Pages52-69
Number of pages18
DOIs
Publication statusPublished - 19 Sep 2011
Event8th VLDB Workshop on Secure Data Management, SDM 2011 - Seattle, WA, United States
Duration: 2 Sep 20112 Sep 2011

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume6933 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other8th VLDB Workshop on Secure Data Management, SDM 2011
CountryUnited States
CitySeattle, WA
Period2/9/112/9/11

    Fingerprint

Keywords

  • Data availability
  • Data confidentiality
  • Data security in the cloud
  • Query processing on encrypted data

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

Wang, S., Agrawal, D., & El Abbadi, A. (2011). A comprehensive framework for secure query processing on relational data in the cloud. In Secure Data Management - 8th VLDB Workshop, SDM 2011, Proceedings (pp. 52-69). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6933 LNCS). https://doi.org/10.1007/978-3-642-23556-6_4