Aggregation queries in the database-as-aservice model

Aggregation queries in the database-as-aservice model (2006)

Cached

Download Links

by Einar Mykletun , Gene Tsudik

Venue:	In DBSec
Citations:	11 - 0 self

BibTeX

@INPROCEEDINGS{Mykletun06aggregationqueries,
    author = {Einar Mykletun and Gene Tsudik},
    title = {Aggregation queries in the database-as-aservice model},
    booktitle = {In DBSec},
    year = {2006}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Abstract. In the Database-As-a-Service (DAS) model, clients store their database contents at servers belonging to potentially untrusted service providers. To maintain data confidentiality, clients need to outsource their data to servers in encrypted form. At the same time, clients must still be able to execute queries over encrypted data. One prominent and fairly effective technique for executing SQL-style range queries over encrypted data involves partitioning (or bucketization) of encrypted attributes. However, executing aggregation-type queries over encrypted data is a notoriously difficult problem. One well-known cryptographic tool often utilized to support encrypted aggregation is homomorphic encryption; it enables arithmetic operations over encrypted data. One technique based on a specific homomorphic encryption function was recently proposed in the context of the DAS model. Unfortunately, as shown in this paper, this technique is insecure against ciphertext-only attacks. We propose a simple alternative for handling encrypted aggregation queries and describe its implementation. We also consider a different flavor of the DAS model which involves mixed databases, where some attributes are encrypted and some are left in the clear. We show how range queries can be executed in this model. 1

Citations

2057	Handbook of Applied Cryptography - Menezes, Oorschot, et al. - 1997
961	A public key cryptosystem and a signature scheme based on discrete logarithms - ElGamal - 1985
200	Optimal Asymmetric Encryption - Bellare, Rogaway - 1994
182	Aggregate and verifiably encrypted signatures from bilinear maps - Boneh, Gentry, et al. - 2003
162	Executing SQL over encrypted data in the database-service-provider model - Hacigumus, Iyer, et al. - 2002
139	A new public-key cryptosystem as secure as factoring - Okamoto, Uchiyama
119	Providing database as a service - Hacigumus, Iyer, et al. - 2002
87	On data banks and privacy homomorphisms - Rivest, Adleman, et al. - 1978
69	Authentication and Integrity in Outsourced Databases - Mykletun, Narasimha, et al.
67	Authentic third-party data publication - Devanbu, Gertz, et al. - 2000
55	Standard specifications for public key cryptography - IEEE - 2000
54	A privacy-preserving index for range queries - Hore, Mehrotra, et al.
43	Dense probabilistic encryption - Benaloh - 1994
38	Efficient execution of aggregation queries over encrypted relational databases - Hacigümü¸s, Iyer, et al. - 2004
28	Modeling assessing inference exposure in encrypted databases - Ceselli, Damiani, et al. - 2005
17	Comparing elliptic curve cryptography - Gura, Patel, et al. - 2004
14	Efficient Aggregation of Encrypted Data - Castelluccia, Mykletun, et al. - 2005
13	Public Key Based Cryptoschemes for Data Concealment - Mykletun, Girao, et al. - 2006
8	Computational Details of the VoteHere Homomorphic Election System - Adler, Dai, et al. - 2000
2	Signature ’bouquets’: Immutability of aggregated signatures - Mykletun, Narasimha, et al. - 2004
2	of Standards and Technology, “Advanced encryption standard - I - 2001
1	Incorporating a Secure Coprocessor - Mykletun, Tsudik - 2005