Selective and Private Access to Outsourced Data Centers

Vimercati, Sabrina De Capitani di; Foresti, Sara; Livraga, Giovanni; Samarati, Pierangela

doi:10.1007/978-1-4939-2092-1_33

Cited by 4 publications

(2 citation statements)

References 48 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The main disadvantages are that the data owner has to directly manage the encryption keys and has to enforce access control restrictions as well as changes in the access control policy. In this scenario, access control can be enforced using an approach based on selective encryption [12]. Intuitively, selective encryption means that the data owner encrypts different portions of her data using different keys and discloses to each user only the encryption keys used to protect the data they can access.…”

Section: Discussionmentioning

confidence: 99%

“…Encryption is at the basis of many of these techniques: when data are encrypted they are visible only to the users who know the encryption key. Encryption has then been adopted not only as a valid solution for protecting data confidentiality (even against adversaries with access to the physical representation of the data, including the cloud providers themselves), but also for supporting selective sharing of such data [12]. In this case, CSP data owner CSP CSP users Fig.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Protecting Resources and Regulating Access in Cloud-Based Object Storage

Bacis

Vimercati

Foresti

et al. 2018

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Cloud storage services offer a variety of benefits that make them extremely attractive for the management of large amounts of data. These services, however, raise some concerns related to the proper protection of data that, being stored on servers of third party cloud providers, are no more under the data owner control. The research and development community has addressed these concerns by proposing solutions where encryption is adopted not only for protecting data but also for regulating accesses. Depending on the trust assumption on the cloud provider offering the storage service, encryption can be applied at the server side, client side, or through an hybrid approach. The goal of this chapter is to survey these encryption-based solutions and to provide a description of some representative systems that adopt such solutions.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Protecting Resources and Regulating Access in Cloud-Based Object Storage

Bacis

Vimercati

Foresti

et al. 2018

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

show abstract

Selective Sharing of Outsourced Encrypted Data in Cloud Environments

Sifah

Xia

et al. 2021

IEEE Internet Things J.

View full text Add to dashboard Cite

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute

Dang

Dinh

Chang

et al. 2017

Proceedings on Privacy Enhancing Technologies

View full text Add to dashboard Cite

Abstract:We consider privacy-preserving computation of big data using trusted computing primitives with limited private memory. Simply ensuring that the data remains encrypted outside the trusted computing environment is insufficient to preserve data privacy, for data movement observed during computation could leak information. While it is possible to thwart such leakage using generic solution such as ORAM [42], designing efficient privacy-preserving algorithms is challenging. Besides computation efficiency, it is critical to keep trusted code bases lean, for large ones are unwieldy to vet and verify. In this paper, we advocate a simple approach wherein many basic algorithms (e.g., sorting) can be made privacy-preserving by adding a step that securely scrambles the data before feeding it to the original algorithms. We call this approach Scramblethen-Compute (StC), and give a sufficient condition whereby existing external memory algorithms can be made privacy-preserving via StC. This approach facilitates code-reuse, and its simplicity contributes to a smaller trusted code base. It is also general, allowing algorithm designers to leverage an extensive body of known efficient algorithms for better performance. Our experiments show that StC could offer up to 4.1× speedups over known, application-specific alternatives.

show abstract

Selective and Private Access to Outsourced Data Centers

Cited by 4 publications

References 48 publications

Protecting Resources and Regulating Access in Cloud-Based Object Storage

Protecting Resources and Regulating Access in Cloud-Based Object Storage

Selective Sharing of Outsourced Encrypted Data in Cloud Environments

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute

Contact Info

Product

Resources

About