Privacy-Preserving Query Execution using a Decentralized Architecture and Tamper Resistant Hardware

Cuong Quoc To 1, 2 Benjamin Nguyen 1, 2 Philippe Pucheral 1, 2
1 SMIS - Secured and Mobile Information Systems
PRISM - Parallélisme, Réseaux, Systèmes, Modélisation, UVSQ - Université de Versailles Saint-Quentin-en-Yvelines, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR8144
Abstract : Current applications, from complex sensor systems (e.g. quantified self) to online e-markets acquire vast quantities of personal information which usually ends-up on central servers. Decentralized architectures, devised to help individuals keep full control of their data, hinder global treatments and queries, impeding the development of services of great interest. This paper promotes the idea of pushing the security to the edges of applications, through the use of secure hardware devices controlling the data at the place of their acquisition. To solve this problem, we propose secure distributed querying protocols based on the use of a tangible physical element of trust, reestablishing the capacity to perform global computations without revealing any sensitive information to central servers. There are two main problems when trying to support SQL in this context: perform joins and perform aggregations. In this paper, we study the subset of SQL queries without joins and show how to secure their execution in the presence of honest-but-curious attackers. Cost models and experiments demonstrate that this approach can scale to nationwide infrastructures.
Document type :
Conference papers
Complete list of metadatas

https://hal.inria.fr/hal-01096639
Contributor : Luc Bouganim <>
Submitted on : Wednesday, December 17, 2014 - 6:45:24 PM
Last modification on : Tuesday, October 23, 2018 - 6:30:13 PM

Identifiers

Collections

Citation

Cuong Quoc To, Benjamin Nguyen, Philippe Pucheral. Privacy-Preserving Query Execution using a Decentralized Architecture and Tamper Resistant Hardware. 17th International Conference on Extending Database Technology (EDBT), Mar 2014, Athens, Greece. ⟨10.5441/002/edbt.2014.44⟩. ⟨hal-01096639⟩

Share

Metrics

Record views

267