Verifying Completeness of Relational Query Answers from Online Servers

Authors:
Hweehwa Pang;Kian-Lee Tan
Affiliations:
Singapore Management University;National University of Singapore
Venue:
ACM Transactions on Information and System Security (TISSEC)
Year:
2008

Citing 26
Cited 7

Trusted products evaluation

Communications of the ACM
Range queries in OLAP data cubes

SIGMOD '97 Proceedings of the 1997 ACM SIGMOD international conference on Management of data
The Quadtree and Related Hierarchical Data Structures

ACM Computing Surveys (CSUR)
A method for obtaining digital signatures and public-key cryptosystems

Communications of the ACM
Efficient aggregation over objects with extent

Proceedings of the twenty-first ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
Executing SQL over encrypted data in the database-service-provider model

Proceedings of the 2002 ACM SIGMOD international conference on Management of data
The K-D-B-tree: a search structure for large multidimensional dynamic indexes

SIGMOD '81 Proceedings of the 1981 ACM SIGMOD international conference on Management of data
Data Cube: A Relational Aggregation Operator Generalizing Group-By, Cross-Tab, and Sub-Totals

Data Mining and Knowledge Discovery
Dynamic Update Cube for Range-sum Queries

Proceedings of the 27th International Conference on Very Large Data Bases
A Certified Digital Signature

CRYPTO '89 Proceedings of the 9th Annual International Cryptology Conference on Advances in Cryptology
Efficient OLAP Operations in Spatial Data Warehouses

SSTD '01 Proceedings of the 7th International Symposium on Advances in Spatial and Temporal Databases
PayWord and MicroMint: Two Simple Micropayment Schemes

Proceedings of the International Workshop on Security Protocols
Authentic Third-party Data Publication

Proceedings of the IFIP TC11/ WG11.3 Fourteenth Annual Working Conference on Database Security: Data and Application Security, Development and Directions
Authentic data publication over the internet

Journal of Computer Security - IFIP 2000
Indexing Spatio-Temporal Data Warehouses

ICDE '02 Proceedings of the 18th International Conference on Data Engineering
SIA: secure information aggregation in sensor networks

Proceedings of the 1st international conference on Embedded networked sensor systems
Authenticating Query Results in Edge Computing

ICDE '04 Proceedings of the 20th International Conference on Data Engineering
A General Model for Authenticated Data Structures

Algorithmica
Verifying completeness of relational query results in data publishing

Proceedings of the 2005 ACM SIGMOD international conference on Management of data
Dynamic authenticated index structures for outsourced databases

Proceedings of the 2006 ACM SIGMOD international conference on Management of data
Aggregate and verifiably encrypted signatures from bilinear maps

EUROCRYPT'03 Proceedings of the 22nd international conference on Theory and applications of cryptographic techniques
Authenticating multi-dimensional query results in data publishing

DBSEC'06 Proceedings of the 20th IFIP WG 11.3 working conference on Data and Applications Security
Authentication of outsourced databases using signature aggregation and chaining

DASFAA'06 Proceedings of the 11th international conference on Database Systems for Advanced Applications
Metadata management in outsourced encrypted databases

SDM'05 Proceedings of the Second VDLB international conference on Secure Data Management
Efficiency and security trade-off in supporting range queries on encrypted databases

DBSec'05 Proceedings of the 19th annual IFIP WG 11.3 working conference on Data and Applications Security
Authenticating query results in data publishing

ICICS'05 Proceedings of the 7th international conference on Information and Communications Security

Authenticating the query results of text search engines

Proceedings of the VLDB Endowment
Query assurance verification for outsourced multi-dimensional databases

Journal of Computer Security - Selected papers from the Third and Fourth Secure Data Management (SDM) workshops
Secure outsourced aggregation via one-way chains

Proceedings of the 2009 ACM SIGMOD International Conference on Management of data
Towards a data-centric view of cloud security

CloudDB '10 Proceedings of the second international workshop on Cloud data management
Secure authenticated comparisons

ACNS'11 Proceedings of the 9th international conference on Applied cryptography and network security
Secure network provenance

SOSP '11 Proceedings of the Twenty-Third ACM Symposium on Operating Systems Principles
Verifying correctness of inner product of vectors in cloud computing

Proceedings of the 2013 international workshop on Security in cloud computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

The number of successful attacks on the Internet shows that it is very difficult to guarantee the security of online servers over extended periods of time. A breached server that is not detected in time may return incorrect query answers to users. In this article, we introduce authentication schemes for users to verify that their query answers from an online server are complete (i.e., no qualifying tuples are omitted) and authentic (i.e., all the result values are legitimate). We introduce a scheme that supports range selection, projection as well as primary key-foreign key join queries on relational databases. We also present authentication schemes for single- and multi-attribute range aggregate queries. The schemes complement access control mechanisms that rewrite queries dynamically, and are computationally secure. We have implemented the proposed schemes, and experiment results showed that they are practical and feasible schemes with low overheads.