A Survey on Querying Encrypted Data for Database as a Service

Ravan, Rama Roshan; Idris, Norbik Bashah; Mehrabani, Zahra

doi:10.1109/cyberc.2013.12

Cited by 7 publications

(7 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A general approach to data confidentiality is to secure the database using methods to maintain data privacy (Bajaj and Sion, 2014). A method with a growing interest is to use encrypted databases (Ravan et al, 2013) with proper access control and high assurance encryption standard. Protecting against privacy attacks, existing methods such as k -anonymity (Samarati and Sweeney, 1998; Zhong et al, 2005) can be utilized.…”

Section: Security Threatsmentioning

confidence: 99%

Cyberbiosecurity Challenges of Pathogen Genome Databases

Vinatzer

Heath

Almohri

et al. 2019

Front. Bioeng. Biotechnol.

View full text Add to dashboard Cite

Pathogen detection, identification, and tracking is shifting from non-molecular methods, DNA fingerprinting methods, and single gene methods to methods relying on whole genomes. Viral Ebola and influenza genome data are being used for real-time tracking, while food-borne bacterial pathogen outbreaks and hospital outbreaks are investigated using whole genomes in the UK, Canada, the USA and the other countries. Also, plant pathogen genomes are starting to be used to investigate plant disease epidemics such as the wheat blast outbreak in Bangladesh. While these genome-based approaches provide never-seen advantages over all previous approaches with regard to public health and biosecurity, they also come with new vulnerabilities and risks with regard to cybersecurity. The more we rely on genome databases, the more likely these databases will become targets for cyber-attacks to interfere with public health and biosecurity systems by compromising their integrity, taking them hostage, or manipulating the data they contain. Also, while there is the potential to collect pathogen genomic data from infected individuals or agricultural and food products during disease outbreaks to improve disease modeling and forecast, how to protect the privacy of individuals, growers, and retailers is another major cyberbiosecurity challenge. As data become linkable to other data sources, individuals and groups become identifiable and potential malicious activities targeting those identified become feasible. Here, we define a number of potential cybersecurity weaknesses in today's pathogen genome databases to raise awareness, and we provide potential solutions to strengthen cyberbiosecurity during the development of the next generation of pathogen genome databases.

show abstract

Section: Security Threatsmentioning

confidence: 99%

Cyberbiosecurity Challenges of Pathogen Genome Databases

Vinatzer

Heath

Almohri

et al. 2019

Front. Bioeng. Biotechnol.

View full text Add to dashboard Cite

show abstract

“…However, updating and querying secured data in the cloud may turn inefficient and expensive. Thus, specific end-to-end security approaches were designed for distributed/cloud databases (DBs) and data warehouses (DWs) [15,18]. The MONOMI system [20] notably encrypts both SQL queries and data with multiple cryptographic schemes.…”

Section: Introductionmentioning

confidence: 99%

fVSS

Attasena

Harbi

Darmont

2014

Proceedings of the 17th International Workshop on Data Warehousing and OLAP

View full text Add to dashboard Cite

Cloud business intelligence is an increasingly popular choice to deliver decision support capabilities via elastic, pay-peruse resources. However, data security issues are one of the top concerns when dealing with sensitive data. In this paper, we propose a novel approach for securing cloud data warehouses by flexible verifiable secret sharing, fVSS. Secret sharing encrypts and distributes data over several cloud service providers, thus enforcing data privacy and availability. fVSS addresses four shortcomings in existing secret sharingbased approaches. First, it allows refreshing the data warehouse when some service providers fail. Second, it allows on-line analysis processing. Third, it enforces data integrity with the help of both inner and outer signatures. Fourth, it helps users control the cost of cloud warehousing by balancing the load among service providers with respect to their pricing policies. To illustrate fVSS' efficiency, we thoroughly compare it with existing secret sharing-based approaches with respect to security features, querying power and data storage and computing costs.

show abstract

“…This relationship should be non-linear so that decryption process is as tough as possible. The encryption process must be faster in time and cheaper in terms of the components involved [2]. CA provides a basic structure for highly parallel and complex operations upon which a basic encryption scheme can be built.…”

Section: A Encryption Phasementioning

confidence: 99%

“…Based on this paradigm, data owner manage the DBMS and answer to user's query directly, rather than traditional client-server architecture. One of the most serious obstacles to the prevalent use of DbaaS is related to security issues [2]. Attackers for data stored in database are not only from external parties but also from internal and their vulnerability to external attack increases.…”

Section: Introductionmentioning

confidence: 99%

“…Furthermore, splicing attacks are prevented since each cipher-text value is correlated with a specific location, trying to move it to a different location will be easily detected. Further security analysis and fixes to these schemes can be found in [2], [10]. While all existing commercial database products adopt classical encryption algorithms for database encryption, specific encryption schemes have attracted much attention in the academic field, specifically in the Database as a Service paradigm.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Database Encryption Using Fuzzy Chaotic

Darwish¹,

El-Zoghabi²,

Abdewi³

2014

IJFCC

View full text Add to dashboard Cite

Abstract-Database encryption is a fundamental technique in the security mechanisms of database that is characterized by both the fast speed of the conventional encryption and the convenience of key distribution of public key encryption. There are two problems with traditional database encryption schemes. They show tradeoff between efficiency and security. Furthermore, these schemes can't solve the problem of storing multi-level encrypted elements into database besides having no ability for effective key management. In this paper, a new paradigm for database encryption is proposed in which database encryption can be provided as a service to applications with seamless access to encrypted database. The proposed system utilizes a chaotic encryption method based on cellular automata to realize higher complexity of crypt-analytical attacks. Cellular Automata rules are defined based on chaos mapping to generate a symmetric key. Furthermore, a fuzzy observer based scheme for synchronizing chaotic keys of encrypted signal is employed to enhance key distribution. The suggested system have some advantages such as confusion, diffusion, very large number of passwords helped in building of symmetric private key, key-dependent mapping and increasing system complexity with the impact of indefinite rules and chaos mapping. Simulation results obtained from some database demonstrate the strong performance of the proposed encryption system.

show abstract

A Survey on Querying Encrypted Data for Database as a Service

Cited by 7 publications

References 10 publications

Cyberbiosecurity Challenges of Pathogen Genome Databases

Cyberbiosecurity Challenges of Pathogen Genome Databases

fVSS

Database Encryption Using Fuzzy Chaotic

Contact Info

Product

Resources

About