VMPQ: An Efficient Protocol for Privacy-Preserving and Verifiable Multi-Predicate Queries Over Time-Series Databases

IF 10.4 2区计算机科学 Q1 COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE

IEEE Transactions on Knowledge and Data Engineering Pub Date : 2026-03-01 Epub Date: 2026-02-17 DOI:10.1109/TKDE.2026.3665631

Xuan Jing;Fei Xiao;Jianfeng Wang

{"title":"VMPQ: An Efficient Protocol for Privacy-Preserving and Verifiable Multi-Predicate Queries Over Time-Series Databases","authors":"Xuan Jing;Fei Xiao;Jianfeng Wang","doi":"10.1109/TKDE.2026.3665631","DOIUrl":null,"url":null,"abstract":"With the widespread adoption of cloud storage, time-series databases have become indispensable for managing and analyzing sequential data generated on the user side over time (i.e., time-series data), thereby alleviating the computational and storage burden on resource-constrained users. However, critical security and privacy challenges—such as query privacy leakage, data exposure, and threats to storage integrity—remain inadequately addressed by existing solutions. To this end, we propose VMPQ, an efficient protocol for privacy-preserving and verifiable multi-predicate queries over time-series databases. Specifically, we introduce a new cryptographic primitive, verifiable offline/online private information retrieval (V-OO-PIR), which supports sublinear retrieval complexity while simultaneously ensuring both query privacy and result verifiability against untrusted servers. Building on V-OO-PIR, we design a dual-layer security framework that integrates replicated secret sharing (RSS) and secure multiparty computation (MPC): 1) RSS splits time-series data into two shares stored across two non-colluding servers, ensuring data confidentiality and mitigating exposure risks, and 2) MPC performs secure multiplication directly on these shares, enabling efficient evaluation of multi-predicate queries without reconstructing the original data. As a result, VMPQ ensures query privacy by preventing servers from inferring user interests across multiple predicates, while simultaneously guaranteeing data confidentiality and the verifiability of query results. Theoretical analysis confirms the security of VMPQ against malicious adversaries. Experimental results demonstrate that VMPQ reduces query latency by up to 5× compared to the state-of-the-art solution Waldo, while also enhancing throughput and preserving high storage efficiency through optimized database encoding.","PeriodicalId":13496,"journal":{"name":"IEEE Transactions on Knowledge and Data Engineering","volume":"38 5","pages":"3306-3320"},"PeriodicalIF":10.4000,"publicationDate":"2026-03-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Knowledge and Data Engineering","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/11397783/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"2026/2/17 0:00:00","PubModel":"Epub","JCR":"Q1","JCRName":"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE","Score":null,"Total":0}

引用次数: 0

Abstract

With the widespread adoption of cloud storage, time-series databases have become indispensable for managing and analyzing sequential data generated on the user side over time (i.e., time-series data), thereby alleviating the computational and storage burden on resource-constrained users. However, critical security and privacy challenges—such as query privacy leakage, data exposure, and threats to storage integrity—remain inadequately addressed by existing solutions. To this end, we propose VMPQ, an efficient protocol for privacy-preserving and verifiable multi-predicate queries over time-series databases. Specifically, we introduce a new cryptographic primitive, verifiable offline/online private information retrieval (V-OO-PIR), which supports sublinear retrieval complexity while simultaneously ensuring both query privacy and result verifiability against untrusted servers. Building on V-OO-PIR, we design a dual-layer security framework that integrates replicated secret sharing (RSS) and secure multiparty computation (MPC): 1) RSS splits time-series data into two shares stored across two non-colluding servers, ensuring data confidentiality and mitigating exposure risks, and 2) MPC performs secure multiplication directly on these shares, enabling efficient evaluation of multi-predicate queries without reconstructing the original data. As a result, VMPQ ensures query privacy by preventing servers from inferring user interests across multiple predicates, while simultaneously guaranteeing data confidentiality and the verifiability of query results. Theoretical analysis confirms the security of VMPQ against malicious adversaries. Experimental results demonstrate that VMPQ reduces query latency by up to 5× compared to the state-of-the-art solution Waldo, while also enhancing throughput and preserving high storage efficiency through optimized database encoding.

查看原文本刊更多论文

VMPQ：一种有效的时间序列数据库隐私保护和可验证多谓词查询协议

随着云存储的广泛采用，时间序列数据库已成为管理和分析用户端随时间产生的顺序数据（即时间序列数据）所不可或缺的工具，从而减轻了资源受限用户的计算和存储负担。然而，关键的安全和隐私挑战（如查询隐私泄露、数据暴露和对存储完整性的威胁）仍然没有得到现有解决方案的充分解决。为此，我们提出了一种高效的VMPQ协议，用于时间序列数据库的隐私保护和可验证的多谓词查询。具体来说，我们引入了一种新的加密原语，可验证的离线/在线私有信息检索（V-OO-PIR），它支持次线性检索复杂性，同时确保查询隐私和对不可信服务器的结果可验证性。在V-OO-PIR的基础上，我们设计了一个集成了复制秘密共享（RSS）和安全多方计算（MPC）的双层安全框架：1)RSS将时间序列数据拆分为存储在两台非串谋服务器上的两个共享，确保了数据的保密性和降低了暴露风险；2)MPC直接在这些共享上执行安全乘法，从而在不重建原始数据的情况下实现多谓词查询的高效评估。因此，VMPQ通过防止服务器跨多个谓词推断用户兴趣来确保查询隐私，同时保证数据机密性和查询结果的可验证性。理论分析证实了VMPQ对恶意攻击的安全性。实验结果表明，与最先进的解决方案Waldo相比，VMPQ将查询延迟降低了5倍，同时还通过优化数据库编码提高了吞吐量并保持了较高的存储效率。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Transactions on Knowledge and Data Engineering 工程技术-工程：电子与电气

CiteScore

11.70

自引率

3.40%

发文量

515

审稿时长

6 months

期刊介绍： The IEEE Transactions on Knowledge and Data Engineering encompasses knowledge and data engineering aspects within computer science, artificial intelligence, electrical engineering, computer engineering, and related fields. It provides an interdisciplinary platform for disseminating new developments in knowledge and data engineering and explores the practicality of these concepts in both hardware and software. Specific areas covered include knowledge-based and expert systems, AI techniques for knowledge and data management, tools, and methodologies, distributed processing, real-time systems, architectures, data management practices, database design, query languages, security, fault tolerance, statistical databases, algorithms, performance evaluation, and applications.