Evaluating the feasibility issues of data confidentiality solutions from a data warehousing perspective

Authors:
Ricardo Jorge Santos;Jorge Bernardino;Marco Vieira
Affiliations:
CISUC - Centre of Informatics and Systems, University of Coimbra, Coimbra, Portugal;CISUC - Centre of Informatics and Systems, University of Coimbra, Coimbra, Portugal,ISEC - Superior Institute of Engineering of Coimbra, Polytechnic Institute of Coimbra, Coimbra, Portugal;CISUC - Centre of Informatics and Systems, University of Coimbra, Coimbra, Portugal
Venue:
DaWaK'12 Proceedings of the 14th international conference on Data Warehousing and Knowledge Discovery
Year:
2012

Citing 10
Cited 0

Order preserving encryption for numeric data

SIGMOD '04 Proceedings of the 2004 ACM SIGMOD international conference on Management of data
Database Security-Concepts, Approaches, and Challenges

IEEE Transactions on Dependable and Secure Computing
Privacy preserving OLAP

Proceedings of the 2005 ACM SIGMOD international conference on Management of data
Implementing Database Security and Auditing: Includes Examples for Oracle, SQL Server, DB2 UDB, Sybase

Implementing Database Security and Auditing: Includes Examples for Oracle, SQL Server, DB2 UDB, Sybase
Over-encryption: management of access control evolution on outsourced data

VLDB '07 Proceedings of the 33rd international conference on Very large data bases
The Salsa20 Family of Stream Ciphers

New Stream Cipher Designs
New AES Software Speed Records

INDOCRYPT '08 Proceedings of the 9th International Conference on Cryptology in India: Progress in Cryptology
Efficient Table Anonymization for Aggregate Query Answering

ICDE '09 Proceedings of the 2009 IEEE International Conference on Data Engineering
iReduct: differential privacy with reduced relative errors

Proceedings of the 2011 ACM SIGMOD International Conference on Management of data
EISA – an enterprise application security solution for databases

ICISS'05 Proceedings of the First international conference on Information Systems Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Data Warehouses (DWs) are the core of enterprise sensitive data, which makes protecting confidentiality in DWs a critical task. Published research and best practice guides state that encryption is the best way to achieve this and maintain high performance. However, although encryption algorithms strongly fulfill their security purpose, we demonstrate that they introduce massive storage space and response time overheads, which mostly result in unacceptable security-performance tradeoffs, compromising their feasibility in DW environments. In this paper, we enumerate state-of-the-art data masking and encryption solutions and discuss the issues involving their use from a data warehousing perspective. Experimental evaluations using the TPC-H decision support benchmark and a real-world sales DW support our remarks, implemented in Oracle 11g and Microsoft SQL Server 2008. We conclude that the development of alternate solutions specifically tailored for DWs that are able to balance security with performance still remains a challenge and an open research issue.