An Efficient Fine-grained Access Control mechanism for database outsourcing service

Hue, T. B. P.; Luyen, G. N.; Kha, Ngo Dong; Wohlgemuth, Sven; Echizen, Isao; Thuc, D. N.; Thuy, T. B. D.

doi:10.1109/isic.2012.6449709

Cited by 1 publication

(1 citation statement)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We can use any block cipher technique such as AES, RSA, Blowfish, etc., with the key size 128 bits. If there is unique user (also the data owner) in the system, we use one key for encrypting the whole database; otherwise, we use multiple keys which are managed by a key management mechanism [8,9,10]. The index is created based on the mapping function Map R.Ai (v), which will be defined as the following: We use the operator D that maps the encrypted representation to its corresponding unencrypted representation.…”

Section: Storage Modelmentioning

confidence: 99%

A User Privacy Protection Technique for Executing SQL over Encrypted Data in Database Outsourcing Service

Hue

Thuc

Thuy

et al. 2013

IFIP Advances in Information and Communication Technology

Self Cite

View full text Add to dashboard Cite

Abstract. The fact that the data owners outsource their data to external service providers introduces many security and privacy issues. Among them, the most significant research questions relate to data confidentiality and user privacy. Encryption was regarded as a solution for data confidentiality. The privacy of a user is characterized by the query he poses to the server and its result. We explore the techniques to execute the SQL query over the encrypted data without revealing to the server any information about the query such as the query type or the query pattern, and its result. By implementing all the relational operators by using the unique selection operator on the server-side database with a constant number of elements in each time of selection, our proposal can defeat against the statistical attacks of the untrusted server compromising data confidentiality and user privacy. Experimental evaluation demonstrates that our proposal less affects the system's performance and is applicable in the real world.

show abstract

Section: Storage Modelmentioning

confidence: 99%