Guidelines for Using the CryptDB System Securely.
作者: Nickolai Zeldovich , Raluca Ada Popa , Hari Balakrishnan
DOI:
关键词:
摘要: This report has two goals. First, we review guidelines for using the CryptDB system [PRZB11, Pop14] securely by administrators of database applications. These were already described in [PRZB11] and elaborated on [Pop14], but light some recent work [NKW15] that applied these incorrectly, a short document devoted to summarizing may be useful. Second, explain study Naveed, Kamara, Wright represents an unsafe usage CryptDB, violating CryptDB’s security guidelines. Hence, conclusions drawn paper regarding guarantees medical applications are incorrect: had been followed, none claimed attacks would have possible.
参考文章(7)
Raluca Ada Popa, Building practical systems that compute on encrypted data Massachusetts Institute of Technology. ,(2014)
Vladimir Kolesnikov, Abdullatif Shikfa, On the limits of privacy provided by order-preserving encryption Bell Labs Technical Journal. ,vol. 17, pp. 135- 146 ,(2012) , 10.1002/BLTJ.21564
E. Stefanov, E. Shi, ObliviStore: High Performance Oblivious Cloud Storage ieee symposium on security and privacy. pp. 253- 267 ,(2013) , 10.1109/SP.2013.25
Muhammad Naveed, Seny Kamara, Charles V. Wright, Inference Attacks on Property-Preserving Encrypted Databases computer and communications security. pp. 644- 655 ,(2015) , 10.1145/2810103.2813651
Raluca Ada Popa, Catherine M. S. Redfield, Nickolai Zeldovich, Hari Balakrishnan, CryptDB Proceedings of the Twenty-Third ACM Symposium on Operating Systems Principles - SOSP '11. pp. 85- 100 ,(2011) , 10.1145/2043556.2043566
Alexandra Boldyreva, Nathan Chenette, Adam O’Neill, Order-preserving encryption revisited: improved security analysis and alternative solutions international cryptology conference. ,vol. 2012, pp. 578- 595 ,(2011) , 10.1007/978-3-642-22792-9_33
Stephen Tu, M. Frans Kaashoek, Samuel Madden, Nickolai Zeldovich, Processing analytical queries over encrypted data Proceedings of the VLDB Endowment. ,vol. 6, pp. 289- 300 ,(2013) , 10.14778/2535573.2488336