TY - GEN
T1 - SecGDB: Graph encryption for exact shortest distance queries with efficient updates
AU - Wang, Qian
AU - Ren, Kui
AU - Du, Minxin
AU - Li, Qi
AU - Mohaisen, Aziz
N1 - Publisher Copyright:
© 2017, International Financial Cryptography Association.
PY - 2017
Y1 - 2017
N2 - In the era of big data, graph databases have become increasingly important for NoSQL technologies, and many systems can be modeled as graphs for semantic queries. Meanwhile, with the advent of cloud computing, data owners are highly motivated to outsource and store their massive potentially-sensitive graph data on remote untrusted servers in an encrypted form, expecting to retain the ability to query over the encrypted graphs. To allow effective and private queries over encrypted data, the most well-studied class of structured encryption schemes are searchable symmetric encryption (SSE) designs, which encrypt search structures (e.g., inverted indexes) for retrieving data files. In this paper, we tackle the challenge of designing a Secure Graph DataBase encryption scheme (SecGDB) to encrypt graph structures and enforce private graph queries over the encrypted graph database. Specifically, our construction strategically makes use of efficient additively homomorphic encryption and garbled circuits to support the shortest distance queries with optimal time and storage complexities. To achieve better amortized time complexity over multiple queries, we further propose an auxiliary data structure called query history and store it on the remote server to act as a “caching” resource. We prove that our construction is adaptively semantically-secure in the random oracle model and finally implement and evaluate it on various representative real-world datasets, showing that our approach is practically efficient in terms of both storage and computation.
AB - In the era of big data, graph databases have become increasingly important for NoSQL technologies, and many systems can be modeled as graphs for semantic queries. Meanwhile, with the advent of cloud computing, data owners are highly motivated to outsource and store their massive potentially-sensitive graph data on remote untrusted servers in an encrypted form, expecting to retain the ability to query over the encrypted graphs. To allow effective and private queries over encrypted data, the most well-studied class of structured encryption schemes are searchable symmetric encryption (SSE) designs, which encrypt search structures (e.g., inverted indexes) for retrieving data files. In this paper, we tackle the challenge of designing a Secure Graph DataBase encryption scheme (SecGDB) to encrypt graph structures and enforce private graph queries over the encrypted graph database. Specifically, our construction strategically makes use of efficient additively homomorphic encryption and garbled circuits to support the shortest distance queries with optimal time and storage complexities. To achieve better amortized time complexity over multiple queries, we further propose an auxiliary data structure called query history and store it on the remote server to act as a “caching” resource. We prove that our construction is adaptively semantically-secure in the random oracle model and finally implement and evaluate it on various representative real-world datasets, showing that our approach is practically efficient in terms of both storage and computation.
KW - Garbled circuit
KW - Graph encryption
KW - Homomorphic encryption
KW - Shortest distance query
UR - http://www.scopus.com/inward/record.url?scp=85039148828&partnerID=8YFLogxK
U2 - 10.1007/978-3-319-70972-7_5
DO - 10.1007/978-3-319-70972-7_5
M3 - Conference article published in proceeding or book
AN - SCOPUS:85039148828
SN - 9783319709710
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 79
EP - 97
BT - Financial Cryptography and Data Security - 21st International Conference, FC 2017, Revised Selected Papers
A2 - Kiayias, Aggelos
PB - Springer Verlag
T2 - 21st International Conference on Financial Cryptography and Data Security, FC 2017
Y2 - 3 April 2017 through 7 April 2017
ER -