Searchable Encrypted Relational Databases: Risks and Countermeasures

Mohamed Ahmed Abdelraheem; Tobias Andersson; Christian Gehrmann

Searchable Encrypted Relational Databases: Risks and Countermeasures

Mohamed Ahmed Abdelraheem, Tobias Andersson, Christian Gehrmann

ELLIIT: the Linköping-Lund initiative on IT and mobile communication

RISE SICS AB

Forskningsoutput: Bidrag till övrig tidskrift/dags- eller nyhetstidning › Artikel i facktidskrift eller populärpress › Forskning

Sammanfattning

We point out the risks of protecting relational databases via Searchable Symmetric Encryption (SSE) schemes by proposing an inference attack exploiting the structural properties of relational databases. We show that record-injection attacks mounted on relational databases have worse consequences than their file-injection counterparts on un- structured databases. Moreover, we discuss some techniques to reduce the effectiveness of inference attacks exploiting the access pattern leakage existing in SSE schemes. To the best of our knowledge, this is the first work that investigates the security of relational databases protected by SSE schemes.

Originalspråk	engelska
Sidor	1-20
Antal sidor	20
Volym	2017
Nummer	24
Specialistpublikation	Cryptology ePrint Archive
Förlag	IACR
Status	Published - 2017 jan. 10

Ämnesklassifikation (UKÄ)

Annan elektroteknik och elektronik

Tillgång till dokument

http://eprint.iacr.org/2017/024

Andra filer och länkar

Link to publication in Scopus

Citera det här

@misc{218bd047d6ca411291474e4d087b4910,

title = "Searchable Encrypted Relational Databases: Risks and Countermeasures",

abstract = "We point out the risks of protecting relational databases via Searchable Symmetric Encryption (SSE) schemes by proposing an inference attack exploiting the structural properties of relational databases. We show that record-injection attacks mounted on relational databases have worse consequences than their file-injection counterparts on un- structured databases. Moreover, we discuss some techniques to reduce the effectiveness of inference attacks exploiting the access pattern leakage existing in SSE schemes. To the best of our knowledge, this is the first work that investigates the security of relational databases protected by SSE schemes. ",

keywords = "searchable symmetric encryption, relational databases, inference attacks, injection attacks, privacy constraints, vertical fragmentation",

author = "Abdelraheem, \{Mohamed Ahmed\} and Tobias Andersson and Christian Gehrmann",

year = "2017",

month = jan,

day = "10",

language = "English",

volume = "2017",

pages = "1--20",

journal = "Cryptology ePrint Archive",

publisher = "IACR",

}

TY - GEN

T1 - Searchable Encrypted Relational Databases: Risks and Countermeasures

AU - Abdelraheem, Mohamed Ahmed

AU - Andersson, Tobias

AU - Gehrmann, Christian

PY - 2017/1/10

Y1 - 2017/1/10

N2 - We point out the risks of protecting relational databases via Searchable Symmetric Encryption (SSE) schemes by proposing an inference attack exploiting the structural properties of relational databases. We show that record-injection attacks mounted on relational databases have worse consequences than their file-injection counterparts on un- structured databases. Moreover, we discuss some techniques to reduce the effectiveness of inference attacks exploiting the access pattern leakage existing in SSE schemes. To the best of our knowledge, this is the first work that investigates the security of relational databases protected by SSE schemes.

AB - We point out the risks of protecting relational databases via Searchable Symmetric Encryption (SSE) schemes by proposing an inference attack exploiting the structural properties of relational databases. We show that record-injection attacks mounted on relational databases have worse consequences than their file-injection counterparts on un- structured databases. Moreover, we discuss some techniques to reduce the effectiveness of inference attacks exploiting the access pattern leakage existing in SSE schemes. To the best of our knowledge, this is the first work that investigates the security of relational databases protected by SSE schemes.

KW - searchable symmetric encryption

KW - relational databases

KW - inference attacks

KW - injection attacks

KW - privacy constraints

KW - vertical fragmentation

UR - https://www.scopus.com/pages/publications/85030152876

M3 - Specialist publication article

VL - 2017

SP - 1

EP - 20

JO - Cryptology ePrint Archive

JF - Cryptology ePrint Archive

PB - IACR

ER -

Searchable Encrypted Relational Databases: Risks and Countermeasures

Sammanfattning

Ämnesklassifikation (UKÄ)

Tillgång till dokument

Andra filer och länkar

Fingeravtryck

Citera det här