research-article

Secure kNN computation on encrypted databases

Authors:

David Wai-lok Cheung,

Nikos MamoulisAuthors Info & Claims

SIGMOD '09: Proceedings of the 2009 ACM SIGMOD International Conference on Management of data

Pages 139 - 152

https://doi.org/10.1145/1559845.1559862

Published: 29 June 2009 Publication History

Abstract

Service providers like Google and Amazon are moving into the SaaS (Software as a Service) business. They turn their huge infrastructure into a cloud-computing environment and aggressively recruit businesses to run applications on their platforms. To enforce security and privacy on such a service model, we need to protect the data running on the platform. Unfortunately, traditional encryption methods that aim at providing "unbreakable" protection are often not adequate because they do not support the execution of applications such as database queries on the encrypted data. In this paper we discuss the general problem of secure computation on an encrypted database and propose a SCONEDB Secure Computation ON an Encrypted DataBase) model, which captures the execution and security requirements. As a case study, we focus on the problem of k-nearest neighbor (kNN) computation on an encrypted database. We develop a new asymmetric scalar-product-preserving encryption (ASPE) that preserves a special type of scalar product. We use APSE to construct two secure schemes that support kNN computation on encrypted data; each of these schemes is shown to resist practical attacks of a different background knowledge level, at a different overhead cost. Extensive performance studies are carried out to evaluate the overhead and the efficiency of the schemes.

References

[1]

R. Agrawal, D. Asonov, M. Kantarcioglu, and Y. Li. Sovereign joins. In ICDE, 2006.

Digital Library

[2]

R. Agrawal, J. Kiernan, R. Srikant, and Y. Xu. Order preserving encryption for numeric data. In SIGMOD, 2002.

Digital Library

[3]

R. Agrawal and R. Srikant. Privacy-preserving data mining. In SIGMOD, 2000.

Digital Library

[4]

A. Asuncion and D. Newman. UCI Machine Learning Repository, 2007.

[5]

H. Delfs and H. Knebl. Introduction to Cryptography: Principles and Applications. Springer, 2002.

Digital Library

[6]

A. Evfimievski, R. Srikant, R. Agrawal, and J. Gehrke. Privacy preserving mining of association rules. In KDD, 2002.

Digital Library

[7]

Gartner. Assessing the Security Risks of Cloud Computing (ID Number: G00157782), 2008.

[8]

B. Gedik and L. Liu. Location privacy in mobile systems: A personalized anonymization model. In ICDCS, 2005.

Digital Library

[9]

G. Ghinita, P. Kalnis, A. Khoshgozaran, C. Shahabi, and K. L. Tan. Private queries in location based services: Anonymizers are not necessary. In SIGMOD, 2008.

Digital Library

[10]

H. Hacigumus, B. Iyer, C. Li, and S. Mehrotra. Executing sql over encrypted data in the database-service-provider model. In SIGMOD, 2002.

Digital Library

[11]

H. Hacigumus, B. Iyer, and S. Mehrotra. Efficient execution of aggregation queries over encrypted relational databases. In DASFAA, 2004.

[12]

H. Hacigumus, S. Mehrotra, and B. Iyer. Providing database as a service. In ICDE, 2002.

[13]

A. Khoshgozaran and C. Shahabi. Blind evaluation of nearest neighbor queries using space transformation to preserve location privacy. In SSTD, 2007.

Digital Library

[14]

N. Li, T. Li, and S. Venkatasubramanian. t-closeness: Privacy beyond k-anonymity and l-diversity. In ICDE, 2007.

[15]

K. Liu, C. Giannella, and H. Kargupta. An attacker's view of distance preserving maps for privacy preserving data mining. In PKDD, 2006.

Digital Library

[16]

A. Machanavajjhala, J. Gehrke, D. Kifer, and M. Venkitasubramaniam. l-diversity: Privacy beyond k-anonymity. In ICDE, 2006.

Digital Library

[17]

M. F. Mokbel, C. Y. Chow, and W. G. Aref. The new casper: Query processing for location services without compromising privacy. In VLDB, 2006.

Digital Library

[18]

E. Mykletun and G. Tsudik. Incorporating a secure coprocessor in the database-as-a-service model. In IWIA, 2005.

Digital Library

[19]

E. Mykletun and G. Tsudik. Aggregation queries in the database-as-a-service model. In ESORICS, 2006.

[20]

S. R. M. Oliveira and O. R. Zaiane. Privacy preserving clustering by data transformation. In SBBD, Manaus, Amazonas, Brazil, 2003.

[21]

L. Sweeney. k-anonymity: A model for protecting privacy. In IJUFKS, 2002.

Digital Library

[22]

D. Xin, J. Han, and K. C.-C. Chang. Progressive and selective merge: computing top-k with ad-hoc ranking functions. In SIGMOD, 2007.

Digital Library

[23]

D. Xin, J. Han, H. Cheng, and X. Li. Answering topk queries with multidimensional selections: The ranking cube approach. In VLDB, 2006.

Digital Library

[24]

L. Zou and L. Chen. Dominant graph: An Efficient indexing structure to answer top-k queries. In ICDE, 2008.

Digital Library

Cited By

Mei ZHuang JWu BZhang CZou HShi JCheng Z(2024)A Secure and Fast Range Query Scheme for Encrypted Multi-Dimensional DataInternational Journal of Web Services Research10.4018/IJWSR.34039121:1(1-17)Online publication date: 9-Apr-2024
https://dl.acm.org/doi/10.4018/IJWSR.340391
Kannan SThayammal MAlphonse SPriyanga Abinaya S(2024)SISA En-Decryption Algorithm for Multilingual Data Privacy and Security in IoTEmerging Technologies for Securing the Cloud and IoT10.4018/979-8-3693-0766-3.ch012(283-307)Online publication date: 23-Feb-2024
https://doi.org/10.4018/979-8-3693-0766-3.ch012
Mei ZZeng JZhang CYao SZhang SWang HLi HShi J(2024)Efficient and Verifiable Range Query Scheme for Encrypted Geographical Information in Untrusted Cloud EnvironmentsISPRS International Journal of Geo-Information10.3390/ijgi1308028113:8(281)Online publication date: 11-Aug-2024
https://doi.org/10.3390/ijgi13080281
Show More Cited By

Index Terms

Secure kNN computation on encrypted databases
1. Security and privacy
  1. Database and storage security
2. Theory of computation
  1. Theory and algorithms for application domains
    1. Database theory
      1. Theory of database privacy and security

Recommendations

The construction of secure mobile agents via evaluating encrypted functions

We propose a security approach for mobile agents, which protects mobile agents from malicious hosts. Our new approach prevents privacy attacks and integrity attacks to mobile agents from malicious hosts. It is an extension of mobile cryptography that ...
Chosen-ciphertext secure proxy re-encryption
CCS '07: Proceedings of the 14th ACM conference on Computer and communications security

In a proxy re-encryption (PRE) scheme, a proxy is given special information that allows it to translate a ciphertext under one key into a ciphertext of the same message under a different key. The proxy cannot, however, learn anything about the messages ...
Secure obfuscation for encrypted signatures
EUROCRYPT'10: Proceedings of the 29th Annual international conference on Theory and Applications of Cryptographic Techniques

Obfuscation is one of the most intriguing open problems in cryptography and only a few positive results are known. In TCC’07, Hohenberger et al. proposed an obfuscator for a re-encryption functionality, which takes a ciphertext for a message encrypted ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

SIGMOD '09: Proceedings of the 2009 ACM SIGMOD International Conference on Management of data

June 2009

1168 pages

ISBN:9781605585512

DOI:10.1145/1559845

Editors:
Carsten Binnig,
Benoit Dageville,
General Chairs:
Uğur Çetintemel
Brown University, USA
,
Stan Zdonik
Brown University, USA
,
Program Chair:
Donald Kossmann
ETH Zurich, Switzerland

Copyright © 2009 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 29 June 2009

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Badges

Results Reproduced / v1.1

Author Tags

Qualifiers

Research-article

Conference

SIGMOD/PODS '09

Sponsor:

SIGMOD/PODS '09: International Conference on Management of Data

June 29 - July 2, 2009

Rhode Island, Providence, USA

Acceptance Rates

Overall Acceptance Rate 785 of 4,003 submissions, 20%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

658
Total Citations
View Citations
3,930
Total Downloads

Downloads (Last 12 months)209
Downloads (Last 6 weeks)22

Reflects downloads up to 25 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Mei ZHuang JWu BZhang CZou HShi JCheng Z(2024)A Secure and Fast Range Query Scheme for Encrypted Multi-Dimensional DataInternational Journal of Web Services Research10.4018/IJWSR.34039121:1(1-17)Online publication date: 9-Apr-2024
https://dl.acm.org/doi/10.4018/IJWSR.340391
Kannan SThayammal MAlphonse SPriyanga Abinaya S(2024)SISA En-Decryption Algorithm for Multilingual Data Privacy and Security in IoTEmerging Technologies for Securing the Cloud and IoT10.4018/979-8-3693-0766-3.ch012(283-307)Online publication date: 23-Feb-2024
https://doi.org/10.4018/979-8-3693-0766-3.ch012
Mei ZZeng JZhang CYao SZhang SWang HLi HShi J(2024)Efficient and Verifiable Range Query Scheme for Encrypted Geographical Information in Untrusted Cloud EnvironmentsISPRS International Journal of Geo-Information10.3390/ijgi1308028113:8(281)Online publication date: 11-Aug-2024
https://doi.org/10.3390/ijgi13080281
Khan SAbbas HBinsawad M(2024)Secure semantic search using deep learning in a blockchain-assisted multi-user settingJournal of Cloud Computing10.1186/s13677-023-00578-513:1Online publication date: 30-Jan-2024
https://doi.org/10.1186/s13677-023-00578-5
Wang QLuo QWang Y(2024)Relational Algorithms for Top-k Query EvaluationProceedings of the ACM on Management of Data10.1145/36549712:3(1-27)Online publication date: 30-May-2024
https://dl.acm.org/doi/10.1145/3654971
Tang ZFan HGu XLi YLi BWang XGurrin CKongkachandra RSchoeffmann KDang-Nguyen DRossetto LSatoh SZhou L(2024)ELSEIR: A Privacy-Preserving Large-Scale Image Retrieval Framework for Outsourced Data SharingProceedings of the 2024 International Conference on Multimedia Retrieval10.1145/3652583.3658099(488-496)Online publication date: 30-May-2024
https://dl.acm.org/doi/10.1145/3652583.3658099
Tang FZhou XLuo HLing GShan JXiao Y(2024)Efficient Privacy-Preserving Multi-Dimensional Range Query for Cloud-Assisted Ehealth SystemsIEEE Transactions on Services Computing10.1109/TSC.2024.343657317:5(2365-2377)Online publication date: Sep-2024
https://doi.org/10.1109/TSC.2024.3436573
Song YGe XYu JHao RYang M(2024)Enabling Privacy-Preserving K-Hop Reachability Query Over Encrypted GraphsIEEE Transactions on Services Computing10.1109/TSC.2024.338295417:3(893-904)Online publication date: May-2024
https://doi.org/10.1109/TSC.2024.3382954
Zheng YLu RGuan YZhang SShao JWang FZhu H(2024)EPSet: Efficient and Privacy-Preserving Set Similarity Range Query Over Encrypted DataIEEE Transactions on Services Computing10.1109/TSC.2024.337620317:2(524-536)Online publication date: Mar-2024
https://doi.org/10.1109/TSC.2024.3376203
Mao CShen ZChen KLiu YMeng QWang F(2024)DCIRM: Dynamic and Controllable Image Retrieval Scheme in Multi-Owner Multi-User SettingsIEEE Transactions on Services Computing10.1109/TSC.2024.335665017:4(1435-1448)Online publication date: Jul-2024
https://doi.org/10.1109/TSC.2024.3356650
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents