Abstract
Query authentication has been extensively studied to ensure the integrity of query results for outsourced databases, which are often not fully trusted. However, access control, another important security concern, is largely ignored by existing works. Notably, recent breakthroughs in cryptography have enabled fine-grained access control over outsourced data. In this paper, we take the first step toward studying the problem of authenticating relational queries with fine-grained access control. The key challenge is how to protect information confidentiality during query authentication, which is essential to many critical applications. To address this challenge, we propose a novel access-policy-preserving (APP) signature as the primitive authenticated data structure. A useful property of the APP signature is that it can be used to derive customized signatures for unauthorized users to prove the inaccessibility while achieving the zero-knowledge confidentiality. We also propose a grid-indexbased tree structure that can aggregate APP signatures for efficient range and join query authentication. In addition to this, a number of optimization techniques are proposed to further improve the authentication performance. Security analysis and performance evaluation show that the proposed solutions and techniques are robust and efficient under various system settings.
Original language | English |
---|---|
Title of host publication | SIGMOD 2018 - Proceedings of the 2018 International Conference on Management of Data |
Editors | Gautam Das, Christopher Jermaine, Ahmed Eldawy, Philip Bernstein |
Publisher | Association for Computing Machinery |
Pages | 147-162 |
Number of pages | 16 |
ISBN (Electronic) | 9781450317436 |
DOIs | |
Publication status | Published - 27 May 2018 |
Event | 44th ACM SIGMOD International Conference on Management of Data, SIGMOD 2018 - Houston, United States Duration: 10 Jun 2018 → 15 Jun 2018 |
Conference
Conference | 44th ACM SIGMOD International Conference on Management of Data, SIGMOD 2018 |
---|---|
Country/Territory | United States |
City | Houston |
Period | 10/06/18 → 15/06/18 |
Keywords
- Data integrity
- Fine-grained access control
- Query processing
ASJC Scopus subject areas
- Software
- Information Systems