Proceedings of 2021 24th International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2021) : October 6-8, 2021, Donostia-San Sebastian, Spain. RAID (Symposium) (24th : 2021 : San Sebastian, Spain; Online)最新文献

筛选

英文中文

The Curse of Correlations for Robust Fingerprinting of Relational Databases. 关系数据库鲁棒指纹识别的相关性诅咒。

Proceedings of 2021 24th International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2021) : October 6-8, 2021, Donostia-San Sebastian, Spain. RAID (Symposium) (24th : 2021 : San Sebastian, Spain; Online) Pub Date : 2021-10-01 Epub Date: 2021-10-07 DOI: 10.1145/3471621.3471853

Tianxi Ji, Emre Yilmaz, Erman Ayday, Pan Li

{"title":"The Curse of Correlations for Robust Fingerprinting of Relational Databases.","authors":"Tianxi Ji, Emre Yilmaz, Erman Ayday, Pan Li","doi":"10.1145/3471621.3471853","DOIUrl":"10.1145/3471621.3471853","url":null,"abstract":"<p><p>Database fingerprinting have been widely adopted to prevent unauthorized sharing of data and identify the source of data leakages. Although existing schemes are robust against common attacks, like random bit flipping and subset attack, their robustness degrades significantly if attackers utilize the inherent correlations among database entries. In this paper, we first demonstrate the vulnerability of existing database fingerprinting schemes by identifying different correlation attacks: column-wise correlation attack, row-wise correlation attack, and the integration of them. To provide robust fingerprinting against the identified correlation attacks, we then develop mitigation techniques, which can work as post-processing steps for any off-the-shelf database fingerprinting schemes. The proposed mitigation techniques also preserve the utility of the fingerprinted database considering different utility metrics. We empirically investigate the impact of the identified correlation attacks and the performance of mitigation techniques using real-world relational databases. Our results show (i) high success rates of the identified correlation attacks against existing fingerprinting schemes (e.g., the integrated correlation attack can distort 64.8% fingerprint bits by just modifying 14.2% entries in a fingerprinted database), and (ii) high robustness of the proposed mitigation techniques (e.g., with the mitigation techniques, the integrated correlation attack can only distort 3% fingerprint bits). Furthermore, we show that the proposed mitigation techniques effectively alleviate correlation attacks even if the attacker has access to the correlation models that are directly calculated from the database.</p>","PeriodicalId":101462,"journal":{"name":"Proceedings of 2021 24th International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2021) : October 6-8, 2021, Donostia-San Sebastian, Spain. RAID (Symposium) (24th : 2021 : San Sebastian, Spain; Online)","volume":"2021 ","pages":"412-427"},"PeriodicalIF":0.0,"publicationDate":"2021-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10644290/pdf/","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"107593220","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"OA","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

引用次数: 9