TY - GEN
T1 - Efficient query integrity for outsourced dynamic databases
AU - Zheng, Qingji
AU - Xu, Shouhuai
AU - Ateniese, Giuseppe
PY - 2012
Y1 - 2012
N2 - As databases are increasingly outsourced to the cloud, data owners require various security assurances. This paper investigates one particular assurance, query integrity, by which a database querier either the data owner or a third partycan verify that its queries were faithfully executed by the cloud server with respect to the outsourced database. Query integrity is investigated in the setting of dynamic databases, where the outsourced databases can be updated by the data owners as needed. We present a formal security definition of query integrity and a provably-secure efficient construction. Our solution improves upon the state-of-the-art solutions by additionally allowing aggregate queries and more flexible join queries. In addition, we provide better performance by eliminating a linear factor in the extra storage complexity for security purpose. Our solution also achieves a trade-off between computational and communication complexities.
AB - As databases are increasingly outsourced to the cloud, data owners require various security assurances. This paper investigates one particular assurance, query integrity, by which a database querier either the data owner or a third partycan verify that its queries were faithfully executed by the cloud server with respect to the outsourced database. Query integrity is investigated in the setting of dynamic databases, where the outsourced databases can be updated by the data owners as needed. We present a formal security definition of query integrity and a provably-secure efficient construction. Our solution improves upon the state-of-the-art solutions by additionally allowing aggregate queries and more flexible join queries. In addition, we provide better performance by eliminating a linear factor in the extra storage complexity for security purpose. Our solution also achieves a trade-off between computational and communication complexities.
KW - Authenticated data structure
KW - Dynamic outsourced database
KW - Query integrity
UR - http://www.scopus.com/inward/record.url?scp=84869744058&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84869744058&partnerID=8YFLogxK
U2 - 10.1145/2381913.2381927
DO - 10.1145/2381913.2381927
M3 - Conference contribution
AN - SCOPUS:84869744058
SN - 9781450316651
T3 - Proceedings of the ACM Conference on Computer and Communications Security
SP - 71
EP - 82
BT - CCSW'12 - Proceedings of the Cloud Computing Security Workshop
T2 - 2012 ACM Workshop on Cloud Computing Security Workshop, CCSW 2012
Y2 - 19 October 2012 through 19 October 2012
ER -