Privacy-preserving queries on encrypted data

Zhiqiang Yang, Sheng Zhong, Rebecca N. Wright

Research output: Chapter in Book/Report/Conference proceedingConference contribution

75 Scopus citations

Abstract

Data confidentiality is a major concern in database systems. Encryption is a useful tool for protecting the confidentiality of sensitive data. However, when data is encrypted, performing queries becomes more challenging. In this paper, we study efficient and provably secure methods for queries on encrypted data stored in an outsourced database that may be susceptible to compromise. Specifically, we show that, in our system, even if an intruder breaks into the database and observes some interactions between the database and its users, he only learns very little about the data stored in the database and the queries performed on the data. Our work consists of several components. First, we consider databases in which each attribute has a finite domain and give a basic solution for certain kinds of queries on such databases. Then, we present two enhanced solutions, one with a stronger security guarantee and the other with accelerated queries. In addition to providing proofs of our security guarantees, we provide empirical performance evaluations. Our experiments demonstrate that our solutions are fast on large-sized real data.

Original languageEnglish (US)
Title of host publicationComputer Security - ESORICS 2006 - 11th European Symposium on Research in Computer Security, Proceedings
PublisherSpringer Verlag
Pages479-495
Number of pages17
ISBN (Print)354044601X, 9783540446019
StatePublished - Jan 1 2006
Externally publishedYes
Event11th European Symposium on Research in Computer Security, ESORICS 2006 - Hamburg, Germany
Duration: Sep 18 2006Sep 20 2006

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume4189 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other11th European Symposium on Research in Computer Security, ESORICS 2006
CountryGermany
CityHamburg
Period9/18/069/20/06

    Fingerprint

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

Yang, Z., Zhong, S., & Wright, R. N. (2006). Privacy-preserving queries on encrypted data. In Computer Security - ESORICS 2006 - 11th European Symposium on Research in Computer Security, Proceedings (pp. 479-495). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4189 LNCS). Springer Verlag.