Abstract
Internet-of-Things (IoT) extends the power of Internet and bring tremendous opportunity to academia and industry. However the security and data privacy challenges become major obstacles for its adoption and deployment. To address these issues, an encryption and security scheme is proposed for a lightweight database which is suitable for embedded systems with limited storage and computing resources. The scheme encrypts data are in both storage and used memory. So it can prevent sensitive data leakage from untrusted applications, zero-day-vulnerability and malicious attacks for the lightweight database. The prototype of the proposed scheme was presented and the feasibility and effectiveness was evaluated. The experimental results demonstrate the scheme is practical and effective.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsChange history
20 August 2020
The originally published version of the paper starting on p. 168 contained a data error. The figures in Table 1. on p. 173 have been corrected.
Reference
Gubbi, J., Buyya, R., Marusic, S., et al.: Internet of Things (IoT): a vision, architectural elements, and future directions. Fut. Gener. Comput. Syst. 29(7), 1645–1660 (2013)
Atlam, H.F., et al.: Integration of cloud computing with internet of things: challenges and open issues. In: IEEE International Conference on Internet of Things & IEEE Green Computing & Communications & IEEE Cyber. IEEE (2018)
Hou, J., Qu, L., Shi, W.: A survey on internet of things security from data perspectives. Comput. Netw. 148, 295–306 (2019)
Kouicem, D.E., Bouabdallah, A., Lakhlef, H.: Internet of things security: a top-down survey. Comput. Netw. 141, 199–221 (2018)
Alsmadi, I., et al.: Web and Database Security. In: Practical Information Security (2018)
Top Ten Database Security Threats. http://www.imperva.com/downloads/TopTenDatabaseSecurityThreats.pdf
Daniel, D., et al.: Triathlon of lightweight block ciphers for the Internet of things. J. Cryptogr. Eng. 9, 283–302 (2018)
Raymond, K.K., Stefanos, G., Park, J.H.: Cryptographic solutions for industrial internet-of-things: research challenges and opportunities. In: IEEE Transactions on Industrial Informatics, p. 1 (2018)
Zhang, Z.K., et al.: IoT security: ongoing challenges and research opportunities. In: 2014 IEEE 7th International Conference on Service-Oriented Computing and Applications (SOCA). IEEE (2014)
Basharat, I., Azam, F.: Database security and encryption: a survey study. Int. J. Comput. Appl. 47, 28–34 (2012)
Popa, R.A., et al.: CryptDB: processing queries on an encrypted database. Commun. ACM 55(9), 103–111 (2012)
Egorov, M., Wilkison, M.L.: ZeroDB white paper (2016)
Poddar, R., Boelter, T., Popa, R.A.: Arx: an encrypted database using semantically secure encryption. Proc. VLDB Endow. 12(11), 1664–1678 (2019)
Priebe, C., Vaswani, K., Costa, M.: EnclaveDB: a secure database using SGX. In: 2018 IEEE Symposium on Security and Privacy (SP). IEEE (2018)
Ahmad, A., et al.: Parallel query execution over encrypted data in database-as-a-service (DaaS). J. Supercomput. 75(4), 2269–2288 (2019)
Wu, S., Li, Q., Li, G., Yuan, D., Yuan, X., Wang, C.: ServeDB: secure verifiable and efficient range queries on outsourced database. In: IEEE 35th International Conference on Data Engineering (ICDE) 2019, pp. 626–637 (2019)
Yuan, D., Li, Q., Li, G., Wang, Q., Ren, K.: PriRadar: a privacy-preserving framework for spatial crowdsourcing. IEEE Trans. Inf. Forensics Secur. 15, 299–314 (2020)
Liu, Z., Jia, C., Li, J.-W.: Research on the format-preserving encryption techniques. J. Softw. 23(1), 152–170 (2012)
Dworkin, M.J.: SP 800-38G Recommendation for Block Cipher Modes of Operation: Methods for Format-Preserving Encryption. National Institute of Standards & Technology (2016)
Acknowledgments
This work was supported by National Key Research and Develop Plan of China (2018YFF0215601-3).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Liu, J., Zhang, Y., Zhou, Z., Tang, H. (2020). A New Lightweight Database Encryption and Security Scheme for Internet-of-Things. In: Qin, P., Wang, H., Sun, G., Lu, Z. (eds) Data Science. ICPCSEE 2020. Communications in Computer and Information Science, vol 1258. Springer, Singapore. https://doi.org/10.1007/978-981-15-7984-4_13
Download citation
DOI: https://doi.org/10.1007/978-981-15-7984-4_13
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-7983-7
Online ISBN: 978-981-15-7984-4
eBook Packages: Computer ScienceComputer Science (R0)