Secure data management service on cloud computing infrastructures

Divyakant Agrawal, Amr El Abbadi, Fatih Emekci, Ahmed Metwally, Shiyuan Wang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

16 Citations (Scopus)

Abstract

Data outsourcing or database as a service is a new paradigm for data management in which a third party service provider hosts a database as a service. The service provides data management for its customers and thus obviates the need for the service user to purchase expensive hardware and software, deal with software upgrades and hire professionals for administrative and maintenance tasks. Since using an external database service promises reliable data storage at a low cost it is very attractive for companies. Such a service would also provide universal access, through the Internet to private data stored at reliable and secure sites in cloud computing infrastructures. However, recent governmental legislations, competition among companies, and data thefts mandate companies to use secure and privacy preserving data management techniques. The data provider, therefore, needs to guarantee that the data is secure, be able to execute queries on the data, and the results of the queries must also be secure and not visible to the data provider. Current research has been focused only on how to index and query encrypted data. However, querying encrypted data is computationally very expensive. Providing an efficient trust mechanism to push both database service providers and clients to behave honestly has emerged as one of the most important problem before data outsourcing to become a viable paradigm. In this paper, we describe scalable privacy preserving algorithms for data outsourcing in cloud computing infrastructures. Instead of encryption, which is computationally expensive, we use distribution on multiple sites that are available in the cloud and information theoretically proven secret sharing algorithms as the basis for privacy preserving outsourcing. The technical contributions of this paper is the establishment and development of a framework for efficient fault-tolerant scalable and theoretically secure privacy preserving data outsourcing that supports a diversity of database operations executed on different types of data.

Original languageEnglish
Title of host publicationLecture Notes in Business Information Processing
Pages57-80
Number of pages24
Volume74 LNBIP
DOIs
Publication statusPublished - 1 Dec 2011
Externally publishedYes

Publication series

NameLecture Notes in Business Information Processing
Volume74 LNBIP
ISSN (Print)18651348

Fingerprint

Data management
Cloud computing
Data base
Outsourcing
Privacy preserving
Query
Service provider
Software
Paradigm
Guarantee
Fault
Legislation
Purchase
Secret sharing
Theft
Upgrade
Universal access
World Wide Web
Management techniques
Encryption

Keywords

  • Cloud computing
  • Data outsourcing
  • Data privacy
  • Data security
  • Distributed computing

ASJC Scopus subject areas

  • Business, Management and Accounting(all)

Cite this

Agrawal, D., El Abbadi, A., Emekci, F., Metwally, A., & Wang, S. (2011). Secure data management service on cloud computing infrastructures. In Lecture Notes in Business Information Processing (Vol. 74 LNBIP, pp. 57-80). (Lecture Notes in Business Information Processing; Vol. 74 LNBIP). https://doi.org/10.1007/978-3-642-19294-4_3

Secure data management service on cloud computing infrastructures. / Agrawal, Divyakant; El Abbadi, Amr; Emekci, Fatih; Metwally, Ahmed; Wang, Shiyuan.

Lecture Notes in Business Information Processing. Vol. 74 LNBIP 2011. p. 57-80 (Lecture Notes in Business Information Processing; Vol. 74 LNBIP).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Agrawal, D, El Abbadi, A, Emekci, F, Metwally, A & Wang, S 2011, Secure data management service on cloud computing infrastructures. in Lecture Notes in Business Information Processing. vol. 74 LNBIP, Lecture Notes in Business Information Processing, vol. 74 LNBIP, pp. 57-80. https://doi.org/10.1007/978-3-642-19294-4_3
Agrawal D, El Abbadi A, Emekci F, Metwally A, Wang S. Secure data management service on cloud computing infrastructures. In Lecture Notes in Business Information Processing. Vol. 74 LNBIP. 2011. p. 57-80. (Lecture Notes in Business Information Processing). https://doi.org/10.1007/978-3-642-19294-4_3
Agrawal, Divyakant ; El Abbadi, Amr ; Emekci, Fatih ; Metwally, Ahmed ; Wang, Shiyuan. / Secure data management service on cloud computing infrastructures. Lecture Notes in Business Information Processing. Vol. 74 LNBIP 2011. pp. 57-80 (Lecture Notes in Business Information Processing).
@inproceedings{ee479c606bda4269b203d7646dfbfd06,
title = "Secure data management service on cloud computing infrastructures",
abstract = "Data outsourcing or database as a service is a new paradigm for data management in which a third party service provider hosts a database as a service. The service provides data management for its customers and thus obviates the need for the service user to purchase expensive hardware and software, deal with software upgrades and hire professionals for administrative and maintenance tasks. Since using an external database service promises reliable data storage at a low cost it is very attractive for companies. Such a service would also provide universal access, through the Internet to private data stored at reliable and secure sites in cloud computing infrastructures. However, recent governmental legislations, competition among companies, and data thefts mandate companies to use secure and privacy preserving data management techniques. The data provider, therefore, needs to guarantee that the data is secure, be able to execute queries on the data, and the results of the queries must also be secure and not visible to the data provider. Current research has been focused only on how to index and query encrypted data. However, querying encrypted data is computationally very expensive. Providing an efficient trust mechanism to push both database service providers and clients to behave honestly has emerged as one of the most important problem before data outsourcing to become a viable paradigm. In this paper, we describe scalable privacy preserving algorithms for data outsourcing in cloud computing infrastructures. Instead of encryption, which is computationally expensive, we use distribution on multiple sites that are available in the cloud and information theoretically proven secret sharing algorithms as the basis for privacy preserving outsourcing. The technical contributions of this paper is the establishment and development of a framework for efficient fault-tolerant scalable and theoretically secure privacy preserving data outsourcing that supports a diversity of database operations executed on different types of data.",
keywords = "Cloud computing, Data outsourcing, Data privacy, Data security, Distributed computing",
author = "Divyakant Agrawal and {El Abbadi}, Amr and Fatih Emekci and Ahmed Metwally and Shiyuan Wang",
year = "2011",
month = "12",
day = "1",
doi = "10.1007/978-3-642-19294-4_3",
language = "English",
isbn = "9783642192937",
volume = "74 LNBIP",
series = "Lecture Notes in Business Information Processing",
pages = "57--80",
booktitle = "Lecture Notes in Business Information Processing",

}

TY - GEN

T1 - Secure data management service on cloud computing infrastructures

AU - Agrawal, Divyakant

AU - El Abbadi, Amr

AU - Emekci, Fatih

AU - Metwally, Ahmed

AU - Wang, Shiyuan

PY - 2011/12/1

Y1 - 2011/12/1

N2 - Data outsourcing or database as a service is a new paradigm for data management in which a third party service provider hosts a database as a service. The service provides data management for its customers and thus obviates the need for the service user to purchase expensive hardware and software, deal with software upgrades and hire professionals for administrative and maintenance tasks. Since using an external database service promises reliable data storage at a low cost it is very attractive for companies. Such a service would also provide universal access, through the Internet to private data stored at reliable and secure sites in cloud computing infrastructures. However, recent governmental legislations, competition among companies, and data thefts mandate companies to use secure and privacy preserving data management techniques. The data provider, therefore, needs to guarantee that the data is secure, be able to execute queries on the data, and the results of the queries must also be secure and not visible to the data provider. Current research has been focused only on how to index and query encrypted data. However, querying encrypted data is computationally very expensive. Providing an efficient trust mechanism to push both database service providers and clients to behave honestly has emerged as one of the most important problem before data outsourcing to become a viable paradigm. In this paper, we describe scalable privacy preserving algorithms for data outsourcing in cloud computing infrastructures. Instead of encryption, which is computationally expensive, we use distribution on multiple sites that are available in the cloud and information theoretically proven secret sharing algorithms as the basis for privacy preserving outsourcing. The technical contributions of this paper is the establishment and development of a framework for efficient fault-tolerant scalable and theoretically secure privacy preserving data outsourcing that supports a diversity of database operations executed on different types of data.

AB - Data outsourcing or database as a service is a new paradigm for data management in which a third party service provider hosts a database as a service. The service provides data management for its customers and thus obviates the need for the service user to purchase expensive hardware and software, deal with software upgrades and hire professionals for administrative and maintenance tasks. Since using an external database service promises reliable data storage at a low cost it is very attractive for companies. Such a service would also provide universal access, through the Internet to private data stored at reliable and secure sites in cloud computing infrastructures. However, recent governmental legislations, competition among companies, and data thefts mandate companies to use secure and privacy preserving data management techniques. The data provider, therefore, needs to guarantee that the data is secure, be able to execute queries on the data, and the results of the queries must also be secure and not visible to the data provider. Current research has been focused only on how to index and query encrypted data. However, querying encrypted data is computationally very expensive. Providing an efficient trust mechanism to push both database service providers and clients to behave honestly has emerged as one of the most important problem before data outsourcing to become a viable paradigm. In this paper, we describe scalable privacy preserving algorithms for data outsourcing in cloud computing infrastructures. Instead of encryption, which is computationally expensive, we use distribution on multiple sites that are available in the cloud and information theoretically proven secret sharing algorithms as the basis for privacy preserving outsourcing. The technical contributions of this paper is the establishment and development of a framework for efficient fault-tolerant scalable and theoretically secure privacy preserving data outsourcing that supports a diversity of database operations executed on different types of data.

KW - Cloud computing

KW - Data outsourcing

KW - Data privacy

KW - Data security

KW - Distributed computing

UR - http://www.scopus.com/inward/record.url?scp=84864368931&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84864368931&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-19294-4_3

DO - 10.1007/978-3-642-19294-4_3

M3 - Conference contribution

SN - 9783642192937

VL - 74 LNBIP

T3 - Lecture Notes in Business Information Processing

SP - 57

EP - 80

BT - Lecture Notes in Business Information Processing

ER -