Privacy-Preserving Query Execution using a Decentralized Architecture and Tamper Resistant Hardware

Cuong Quoc To 1, 2 Benjamin Nguyen 1, 2 Philippe Pucheral 1, 2
1 SMIS - Secured and Mobile Information Systems
PRISM - Parallélisme, Réseaux, Systèmes, Modélisation, UVSQ - Université de Versailles Saint-Quentin-en-Yvelines, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR8144
Abstract : Current applications, from complex sensor systems (e.g. quantified self) to online e-markets acquire vast quantities of personal information which usually ends-up on central servers. Decentralized architectures, devised to help individuals keep full control of their data, hinder global treatments and queries, impeding the development of services of great interest. This paper promotes the idea of pushing the security to the edges of applications, through the use of secure hardware devices controlling the data at the place of their acquisition. To solve this problem, we propose secure distributed querying protocols based on the use of a tangible physical element of trust, reestablishing the capacity to perform global computations without revealing any sensitive information to central servers. There are two main problems when trying to support SQL in this context: perform joins and perform aggregations. In this paper, we study the subset of SQL queries without joins and show how to secure their execution in the presence of honest-but-curious attackers. Cost models and experiments demonstrate that this approach can scale to nationwide infrastructures.
Type de document :
Communication dans un congrès
17th International Conference on Extending Database Technology (EDBT), Mar 2014, Athens, Greece. 2014, 〈10.5441/002/edbt.2014.44〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01096639
Contributeur : Luc Bouganim <>
Soumis le : mercredi 17 décembre 2014 - 18:45:24
Dernière modification le : mardi 17 avril 2018 - 11:26:51

Identifiants

Collections

Citation

Cuong Quoc To, Benjamin Nguyen, Philippe Pucheral. Privacy-Preserving Query Execution using a Decentralized Architecture and Tamper Resistant Hardware. 17th International Conference on Extending Database Technology (EDBT), Mar 2014, Athens, Greece. 2014, 〈10.5441/002/edbt.2014.44〉. 〈hal-01096639〉

Partager

Métriques

Consultations de la notice

218