Abstract
The conventional way to speedup queries execution is by using indexes. Designing secure indexes for an encrypted database environment raises the question of how to construct the index so that no information about the database content is exposed. In this paper, the challenges raised when designing a secure index for an encrypted database are outlined; the attacker model is described; possible attacks against secure indexes are discussed; the difficulty posed by multiple users sharing the same index are presented; and the design considerations regarding keys storage and encryption granularity are illustrated. Finally, a secure database-indexing scheme is suggested. In this scheme, protection against information leakage and unauthorized modifications is provided by using encryption, dummy values and pooling. Furthermore, the new scheme supports discretionary access control in a multi-user environment.
Original language | English |
---|---|
Pages (from-to) | 54-68 |
Number of pages | 15 |
Journal | Lecture Notes in Computer Science |
Volume | 3654 |
DOIs | |
State | Published - 1 Jan 2005 |
Event | 19th Annual IFIP WG 11.3 Working Conference on Data and Applications Security - Storrs, CT, United States Duration: 7 Aug 2005 → 10 Aug 2005 |
ASJC Scopus subject areas
- Theoretical Computer Science
- General Computer Science