Skip to main content
SpringerLink
Log in
Book cover

International Conference on Database and Expert Systems Applications

DEXA 2017: Database and Expert Systems Applications pp 190–198Cite as

Non-order-preserving Index for Encrypted Database Management System

  • Conference paper
  • First Online:

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 10439))

Abstract

Data confidentiality is concerned in Database-as-a-Service (DBaaS) model. Encrypted database management system (EDBMS) addresses this concern by the data owner (DO) encrypting its private data before storing them in the database hosted by a third party service provider (SP). Indexing at SP over encrypted data is not straightforward. Most existing indexing methods are either order-preserving, or requiring DO to involve in query computation. Order-preserving index is vulnerable to inference analysis. Having DO to compute query beats the purpose of DBaaS model which is to delegate the database works of DO to SP. We developed a non-order-preserving indexing method that does not require DO’s involvement in query processing at SP. Our empirical study shows that our indexing method can reduce selection processing cost by an order of magnitude compared to the case without the index.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Notes

  1. 1.

    Sharemind uses multiple service providers instead of one serive provider in SDB.

  2. 2.

    http://www.health.ny.gov/statistics/sparcs/datadic.htm.

  3. 3.

    https://snap.stanford.edu/data/.

  4. 4.

    http://www.tpc.org/tpch/.

References

  1. Agrawal, R., Srikant, R.: Privacy-preserving data mining. In: SIGMOD (2000)

    Google Scholar 

  2. Arasu, A., Blanas, S., Eguro, K., Joglekar, M., Kaushik, R., Kossmann, D., Ramamurthy, R., Upadhyaya, P., Venkatesan, R.: Secure database-as-a-service with cipherbase. In: SIGMOD (2013)

    Google Scholar 

  3. Arasu, A., Eguro, K., Joglekar, M., Kaushik, R., Kossmann, D., Ramamurthy, R.: Transaction processing on confidential data using cipherbase. In: ICDE (2015)

    Google Scholar 

  4. Bajaj, S., Sion, R.: Trusteddb: a trusted hardware based database with privacy and data confidentiality. In: SIGMOD (2011)

    Google Scholar 

  5. Bogdanov, D., Jagomägis, R., Laur, S.: A universal toolkit for cryptographically secure privacy-preserving data mining. In: Chau, M., Wang, G.A., Yue, W.T., Chen, H. (eds.) PAISI 2012. LNCS, vol. 7299, pp. 112–126. Springer, Heidelberg (2012). doi:10.1007/978-3-642-30428-6_9

    Chapter  Google Scholar 

  6. Damiani, E., di Vimercati, S.D.C., Jajodia, S., Paraboschi, S., Samarati, P.: Balancing confidentiality and efficiency in untrusted relational dbmss. In: CCS (2003)

    Google Scholar 

  7. di Vimercati, S.D.C., Foresti, S., Paraboschi, S., Pelosi, G., Samarati, P.: Shuffle index: efficient and private access to outsourced data. TOS 11(4), 19 (2015)

    Article  Google Scholar 

  8. Goldreich, O., Micali, S., Wigderson, A.: How to play any mental game. In: STOC (1987)

    Google Scholar 

  9. Hacigümüs, H., Iyer, B.R., Li, C., Mehrotra, S.: Executing SQL over encrypted data in the database-service-provider model. In: SIGMOD (2002)

    Google Scholar 

  10. He, Z., Wong, W.K., Kao, B., Cheung, D.W., Li, R., Yiu, S., Lo, E.: SDB: a secure query processing system with data interoperability. PVLDB 8(12), 457–462 (2015)

    Google Scholar 

  11. Hore, B., Mehrotra, S., Tsudik, G.: A privacy-preserving index for range queries. In: VLDB (2004)

    Google Scholar 

  12. Islam, M.S., Kuzu, M., Kantarcioglu, M.: Inference attack against encrypted range queries on outsourced databases. In: CODASPY (2014)

    Google Scholar 

  13. Kadhem, H., Amagasa, T., Kitagawa, H.: A secure and efficient order preserving encryption scheme for relational databases. In: KMIS (2010)

    Google Scholar 

  14. Li, R., Liu, A.X., Wang, A.L., Bruhadeshwar, B.: Fast range query processing with strong privacy protection for cloud computing. PVLDB 7(14), 1953–1964 (2014)

    Google Scholar 

  15. Machanavajjhala, A., Kifer, D., Gehrke, J., Venkitasubramaniam, M.: L-diversity: privacy beyond k-anonymity. TKDD 1(1), 3 (2007)

    Article  Google Scholar 

  16. Naveed, M., Kamara, S., Wright, C.V.: Inference attacks on property-preserving encrypted databases. In: SIGSAC (2015)

    Google Scholar 

  17. Popa, R.A., Li, F.H., Zeldovich, N.: An ideal-security protocol for order-preserving encoding. In: SP (2013)

    Google Scholar 

  18. Popa, R.A., Redfield, C.M.S., Zeldovich, N., Balakrishnan, H.: Cryptdb: protecting confidentiality with encrypted query processing. In: SOSP (2011)

    Google Scholar 

  19. Shmueli, E., Waisenberg, R., Elovici, Y., Gudes, E.: Designing secure indexes for encrypted databases. In: Jajodia, S., Wijesekera, D. (eds.) DBSec 2005. LNCS, vol. 3654, pp. 54–68. Springer, Heidelberg (2005). doi:10.1007/11535706_5

    Chapter  Google Scholar 

  20. Sweeney, L.: k-anonymity: a model for protecting privacy. IJUFKS 10(5), 557–570 (2002)

    MathSciNet  MATH  Google Scholar 

  21. Tu, S., Kaashoek, M.F., Madden, S., Zeldovich, N.: Processing analytical queries over encrypted data. PVLDB 6(5), 289–300 (2013)

    Google Scholar 

  22. Wong, W.K., Kao, B., Cheung, D.W., Li, R., Yiu, S.: Secure query processing with data interoperability in a cloud database environment. In: SIGMOD (2014)

    Google Scholar 

Download references

Acknowledgements

The paper is supported by FDS grant (UGC/FDS14/E05/14) and GRF Grant 17201414 from Hong Kong Research Grant Council.

Author information

Authors and Affiliations

  1. Hang Seng Management College, University of Hong Kong, Hong Kong, China

    Wai-Kit Wong, Kwok-Wai Wong, Ho-Yin Yue & David W. Cheung

Authors
  1. Wai-Kit Wong
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Kwok-Wai Wong
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Ho-Yin Yue
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. David W. Cheung
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Kwok-Wai Wong .

Editor information

Editors and Affiliations

  1. University of Lyon, Villeurbanne, France

    Djamal Benslimane

  2. University of Milan, Milan, Italy

    Ernesto Damiani

  3. University of Michigan, Dearborn, Michigan, USA

    William I. Grosky

  4. Paul Sabatier University, Toulouse, France

    Abdelkader Hameurlain

  5. Wright State University, Dayton, Ohio, USA

    Amit Sheth

  6. Johannes Kepler University, Linz, Austria

    Roland R. Wagner

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Wong, WK., Wong, KW., Yue, HY., Cheung, D.W. (2017). Non-order-preserving Index for Encrypted Database Management System. In: Benslimane, D., Damiani, E., Grosky, W., Hameurlain, A., Sheth, A., Wagner, R. (eds) Database and Expert Systems Applications. DEXA 2017. Lecture Notes in Computer Science(), vol 10439. Springer, Cham. https://doi.org/10.1007/978-3-319-64471-4_16

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-64471-4_16

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-64470-7

  • Online ISBN: 978-3-319-64471-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation