Privacy-Preserving Computation and Verification of Aggregate Queries on Outsourced Databases

Authors:
Brian Thompson;Stuart Haber;William G. Horne;Tomas Sander;Danfeng Yao
Affiliations:
Department of Computer Science, Rutgers University, Piscataway, NJ, USA 08854;Hewlett-Packard Labs, Princeton, NJ, USA 08540;Hewlett-Packard Labs, Princeton, NJ, USA 08540;Hewlett-Packard Labs, Princeton, NJ, USA 08540;Department of Computer Science, Rutgers University, Piscataway, NJ, USA 08854
Venue:
PETS '09 Proceedings of the 9th International Symposium on Privacy Enhancing Technologies
Year:
2009

Citing 23
Cited 7

Privacy-preserving data mining

SIGMOD '00 Proceedings of the 2000 ACM SIGMOD international conference on Management of data
How to share a secret

Communications of the ACM
Executing SQL over encrypted data in the database-service-provider model

Proceedings of the 2002 ACM SIGMOD international conference on Management of data
Protecting Respondents' Identities in Microdata Release

IEEE Transactions on Knowledge and Data Engineering
Non-Interactive and Information-Theoretic Secure Verifiable Secret Sharing

CRYPTO '91 Proceedings of the 11th Annual International Cryptology Conference on Advances in Cryptology
Revealing information while preserving privacy

Proceedings of the twenty-second ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
k-anonymity: a model for protecting privacy

International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems
Providing Database as a Service

ICDE '02 Proceedings of the 18th International Conference on Data Engineering
Privacy and Ownership Preserving of Outsourced Medical Data

ICDE '05 Proceedings of the 21st International Conference on Data Engineering
Verifying completeness of relational query results in data publishing

Proceedings of the 2005 ACM SIGMOD international conference on Management of data
Dynamic authenticated index structures for outsourced databases

Proceedings of the 2006 ACM SIGMOD international conference on Management of data
Anatomy: simple and effective privacy preservation

VLDB '06 Proceedings of the 32nd international conference on Very large data bases
Privacy preserving schema and data matching

Proceedings of the 2007 ACM SIGMOD international conference on Management of data
Private Inference Control for Aggregate Database Queries

ICDMW '07 Proceedings of the Seventh IEEE International Conference on Data Mining Workshops
Private Information: To Reveal or not to Reveal

ACM Transactions on Information and System Security (TISSEC)
Privacy-preserving schema matching using mutual information

Proceedings of the 21st annual IFIP WG 11.3 working conference on Data and applications security
Differential privacy: a survey of results

TAMC'08 Proceedings of the 5th international conference on Theory and applications of models of computation
Aggregation queries in the database-as-a-service model

DBSEC'06 Proceedings of the 20th IFIP WG 11.3 working conference on Data and Applications Security
Authentication of outsourced databases using signature aggregation and chaining

DASFAA'06 Proceedings of the 11th international conference on Database Systems for Advanced Applications
How to securely outsource cryptographic computations

TCC'05 Proceedings of the Second international conference on Theory of Cryptography
Searchable encryption revisited: consistency properties, relation to anonymous IBE, and extensions

CRYPTO'05 Proceedings of the 25th annual international conference on Advances in Cryptology
Protecting the confidentiality of survey tabular data by adding noise to the underlying microdata: application to the commodity flow survey

PSD'06 Proceedings of the 2006 CENEX-SDC project international conference on Privacy in Statistical Databases
Calibrating noise to sensitivity in private data analysis

TCC'06 Proceedings of the Third conference on Theory of Cryptography

Plug-in privacy for smart metering billing

PETS'11 Proceedings of the 11th international conference on Privacy enhancing technologies
Secure and Fast Aggregation of Financial Data in Cloud-Based Expense Tracking Applications

Journal of Network and Systems Management
Bands of privacy preserving objectives: classification of PPDM strategies

AusDM '11 Proceedings of the Ninth Australasian Data Mining Conference - Volume 121
Delegation of computation with verification outsourcing: curious verifiers

Proceedings of the 2013 ACM symposium on Principles of distributed computing
Proceedings of the Twenty-Fourth ACM Symposium on Operating Systems Principles

ACM SIGOPS 24th Symposium on Operating Systems Principles
Verifying computations with state

Proceedings of the Twenty-Fourth ACM Symposium on Operating Systems Principles
Practical immutable signature bouquets (PISB) for authentication and integrity in outsourced databases

DBSec'13 Proceedings of the 27th international conference on Data and Applications Security and Privacy XXVII

Quantified Score

Hi-index	0.00

Visualization

Abstract

Outsourced databases provide a solution for data owners who want to delegate the task of answering database queries to third-party service providers. However, distrustful users may desire a means of verifying the integrity of responses to their database queries. Simultaneously, for privacy or security reasons, the data owner may want to keep the database hidden from service providers. This security property is particularly relevant for aggregate databases, where data is sensitive, and results should only be revealed for queries that are aggregate in nature. In such a scenario, using simple signature schemes for verification does not suffice. We present a solution in which service providers can collaboratively compute aggregate queries without gaining knowledge of intermediate results, and users can verify the results of their queries, relying only on their trust of the data owner. Our protocols are secure under reasonable cryptographic assumptions, and are robust to collusion among k dishonest service providers.