Proceedings Article10.1145/1103780.1103792
Key management for multi-user encrypted databases
Ernesto Damiani,S. De Capitani di Vimercati,Sara Foresti,Sushil Jajodia,Stefano Paraboschi,Pierangela Samarati +5 more
- 11 Nov 2005
- pp 74-83
TL;DR: This paper presents the approach for the implementation of access control through selective encryption, and the presentation of the experimental results, which demonstrate the applicability of the proposal.
read more
Abstract: Database outsourcing is becoming increasingly popular introducing a new paradigm, called database-as-a-service (DAS), where an organization's database is stored at an external service provider. In such a scenario, access control is a very important issue, especially if the data owner wishes to publish her data for external use.In this paper, we first present our approach for the implementation of access control through selective encryption. The focus of the paper is then the presentation of the experimental results, which demonstrate the applicability of our proposal.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
•Proceedings Article
Securing Personal Health Records in Cloud Computing: Patient-Centric and Fine-Grained Data Access Control in Multi-owner Settings
Ming Li,Shucheng Yu,Kui Ren,Wenjing Lou +3 more
- 28 May 2012
TL;DR: Since there are multiple owners (patients) in a PHR system and every owner would encrypt her PHR files using a different set of cryptographic keys, it is important to reduce the key distribution complexity in such multi-owner settings.
Weak leakage-resilient client-side deduplication of encrypted data in cloud storage
Jia Xu,Ee-Chien Chang,Jianying Zhou +2 more
- 08 May 2013
TL;DR: A secure client-side deduplication scheme, with the following advantages: the scheme protects data confidentiality (and some partial information) against both outside adversaries and honest-but-curious cloud storage server, while Halevi et al. trusts cloudstorage server in data confidentiality; the scheme is proved secure w.r.t. any distribution with sufficient min-entropy.
Private data deduplication protocols in cloud storage
Wee Keong Ng,Yonggang Wen,Huafei Zhu +2 more
- 26 Mar 2012
TL;DR: It is shown that the proposed private data deduplication protocol is provably secure assuming that the underlying hash function is collision-resilient, the discrete logarithm is hard and the erasure coding algorithm can erasure up to α-fraction of the bits in the presence of malicious adversaries.
A data outsourcing architecture combining cryptography and access control
Sabrina De Capitani di Vimercati,Sara Foresti,Sushil Jajodia,Stefano Paraboschi,Pierangela Samarati +4 more
- 02 Nov 2007
TL;DR: This paper illustrates the basic principles on which an architecture for combining access control and cryptography can be built and illustrates an approach for enforcing authorization policies and supporting dynamic authorizations, allowing policy changes and data updates at a limited cost in terms of bandwidth and computational power.
References
Identity-Based Encryption from the Weil Pairing
Dan Boneh,Matthew K. Franklin +1 more
- 19 Aug 2001
TL;DR: This work proposes a fully functional identity-based encryption scheme (IBE) based on the Weil pairing that has chosen ciphertext security in the random oracle model assuming an elliptic curve variant of the computational Diffie-Hellman problem.
Public Key Encryption with Keyword Search
Dan Boneh,Giovanni Di Crescenzo,Rafail Ostrovsky,Giuseppe Persiano +3 more
- 02 May 2004
TL;DR: This work defines and construct a mechanism that enables Alice to provide a key to the gateway that enables the gateway to test whether the word “urgent” is a keyword in the email without learning anything else about the email.
3.6K
Order preserving encryption for numeric data
Rakesh Agrawal,Jerry Kiernan,Ramakrishnan Srikant,Yirong Xu +3 more
- 13 Jun 2004
TL;DR: This work presents an order-preserving encryption scheme for numeric data that allows any comparison operation to be directly applied on encrypted data, and is robust against estimation of the true value in such environments.
Executing SQL over encrypted data in the database-service-provider model
Hakan Hacigumus,Bala Iyer,Chen Li,Sharad Mehrotra +3 more
- 03 Jun 2002
TL;DR: The paper explores an algebraic framework to split the query to minimize the computation at the client site, and explores techniques to execute SQL queries over encrypted data.
1.4K
Providing database as a service
Hakan Hacigumus,Bala Iyer,Sharad Mehrotra +2 more
- 07 Aug 2002
TL;DR: A novel paradigm for data management in which a third party service provider hosts "database as a service", providing its customers with seamless mechanisms to create, store, and access their databases at the host site is explored.
Related Papers (5)
Dawn Song,David Wagner,Adrian Perrig +2 more
- 14 May 2000
John Bethencourt,Amit Sahai,Brent Waters +2 more
- 20 May 2007