Don't reveal my intension: Protecting user privacy using declarative preferences during distributed query processing

Nicholas L. Farnan, Adam J. Lee, Panos K. Chrysanthis, Ting Yu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

11 Citations (Scopus)

Abstract

In a centralized setting, the declarative nature of SQL is a major strength: a user can simply describe what she wants to retrieve, and need not worry about how the resulting query plan is actually generated and executed. However, in a decentralized setting, two query plans that produce the same result might actually reveal vastly different information about the intensional description of a user's query to the servers participating its evaluation. In cases where a user considers portions of her query to be sensitive, this is clearly problematic. In this paper, we address the specification and enforcement of querier privacy constraints on the execution of distributed database queries. We formalize a notion of intensional query privacy called (I,A)-privacy, and extend the syntax of SQL to allow users to enforce strict (I,A)-privacy constraints or partially ordered privacy/performance preferences over the execution of their queries.

Original languageEnglish
Title of host publicationComputer Security, ESORICS 2011 - 16th European Symposium on Research in Computer Security, Proceedings
Pages628-647
Number of pages20
DOIs
Publication statusPublished - 26 Sep 2011
Event16th European Symposium on Research in Computer Security, ESORICS 2011 - Leuven, Belgium
Duration: 12 Sep 201114 Sep 2011

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume6879 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other16th European Symposium on Research in Computer Security, ESORICS 2011
CountryBelgium
CityLeuven
Period12/9/1114/9/11

    Fingerprint

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

Farnan, N. L., Lee, A. J., Chrysanthis, P. K., & Yu, T. (2011). Don't reveal my intension: Protecting user privacy using declarative preferences during distributed query processing. In Computer Security, ESORICS 2011 - 16th European Symposium on Research in Computer Security, Proceedings (pp. 628-647). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6879 LNCS). https://doi.org/10.1007/978-3-642-23822-2_34