Anti-Tamper Databases: Processing Aggregate Queries over Encrypted Databases

22nd International Conference on Data Engineering Workshops (ICDEW'06) Pub Date : 2006-04-03 DOI:10.1109/ICDEW.2006.30

Sun S. Chung, G. Özsoyoglu

{"title":"Anti-Tamper Databases: Processing Aggregate Queries over Encrypted Databases","authors":"Sun S. Chung, G. Özsoyoglu","doi":"10.1109/ICDEW.2006.30","DOIUrl":null,"url":null,"abstract":"This paper is about anti-tamper databases, where the database contents are encrypted for security in a way to allow efficient query processing directly on the encrypted database without decrypting it. We use a family of openform and closed-form homomorphism encryption/decryption functions and a computing architecture where (a) the database is encrypted a priori, and (b) for SQL queries expressible in relational algebra, there is no extra query processing cost except for the decryption of the final query output. For complex aggregate queries and nested queries that require extra query processing over the encrypted database, we present query execution strategies. We quantify the additional costs incurred when executing aggregate nested SQL queries over encrypted relational databases, and present detailed experimental results. We observe the crossover points as to when processing a query over an encrypted database is still more advantageous than shipping it over the internet to a secure server housing the original, non-encrypted database, evaluating it and returning the query output to the user.","PeriodicalId":331953,"journal":{"name":"22nd International Conference on Data Engineering Workshops (ICDEW'06)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2006-04-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"36","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"22nd International Conference on Data Engineering Workshops (ICDEW'06)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDEW.2006.30","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 36

Abstract

This paper is about anti-tamper databases, where the database contents are encrypted for security in a way to allow efficient query processing directly on the encrypted database without decrypting it. We use a family of openform and closed-form homomorphism encryption/decryption functions and a computing architecture where (a) the database is encrypted a priori, and (b) for SQL queries expressible in relational algebra, there is no extra query processing cost except for the decryption of the final query output. For complex aggregate queries and nested queries that require extra query processing over the encrypted database, we present query execution strategies. We quantify the additional costs incurred when executing aggregate nested SQL queries over encrypted relational databases, and present detailed experimental results. We observe the crossover points as to when processing a query over an encrypted database is still more advantageous than shipping it over the internet to a secure server housing the original, non-encrypted database, evaluating it and returning the query output to the user.

查看原文本刊更多论文

防篡改数据库:处理加密数据库上的聚合查询

本文研究的是防篡改数据库，即对数据库内容进行加密以保证安全性，从而允许在加密后的数据库上直接进行高效的查询处理，而无需对其进行解密。我们使用一系列开放形式和封闭形式同态加密/解密函数和计算架构，其中(a)数据库是先验加密的，(b)对于关系代数中可表达的SQL查询，除了对最终查询输出进行解密外，没有额外的查询处理成本。对于需要在加密数据库上进行额外查询处理的复杂聚合查询和嵌套查询，我们提出了查询执行策略。我们量化了在加密关系数据库上执行聚合嵌套SQL查询时产生的额外成本，并给出了详细的实验结果。我们观察到在加密数据库上处理查询比将其通过internet发送到包含原始的、未加密的数据库的安全服务器、对其进行评估并将查询输出返回给用户更有利的交叉点。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

22nd International Conference on Data Engineering Workshops (ICDEW'06)

自引率

0.00%

发文量