Designing secure indexes for encrypted databases

Erez Shmueli, Ronen Waisenberg, Yuval Elovici, Ehud Gudes

Research output: Contribution to journalConference articlepeer-review

27 Scopus citations


The conventional way to speedup queries execution is by using indexes. Designing secure indexes for an encrypted database environment raises the question of how to construct the index so that no information about the database content is exposed. In this paper, the challenges raised when designing a secure index for an encrypted database are outlined; the attacker model is described; possible attacks against secure indexes are discussed; the difficulty posed by multiple users sharing the same index are presented; and the design considerations regarding keys storage and encryption granularity are illustrated. Finally, a secure database-indexing scheme is suggested. In this scheme, protection against information leakage and unauthorized modifications is provided by using encryption, dummy values and pooling. Furthermore, the new scheme supports discretionary access control in a multi-user environment.

Original languageEnglish
Pages (from-to)54-68
Number of pages15
JournalLecture Notes in Computer Science
StatePublished - 1 Jan 2005
Event19th Annual IFIP WG 11.3 Working Conference on Data and Applications Security - Storrs, CT, United States
Duration: 7 Aug 200510 Aug 2005

ASJC Scopus subject areas

  • Theoretical Computer Science
  • General Computer Science


Dive into the research topics of 'Designing secure indexes for encrypted databases'. Together they form a unique fingerprint.

Cite this