Security Limitations of Using Secret Sharing for Data Outsourcing

Abstract : Three recently proposed schemes use secret sharing to support privacy-preserving data outsourcing. Each secret in the database is split into n shares, which are distributed to independent data servers. A trusted client can use any k shares to reconstruct the secret. These schemes claim to offer security even when k or more servers collude, as long as certain information such as the finite field prime is known only to the client. We present a concrete attack that refutes this claim by demonstrating that security is lost in all three schemes when k or more servers collude. Our attack runs on commodity hardware and recovers a 8192-bit prime and all secret values in less than an hour for k = 8.
Type de document :
Communication dans un congrès
Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.145-160, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_12〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01534766
Contributeur : Hal Ifip <>
Soumis le : jeudi 8 juin 2017 - 11:06:31
Dernière modification le : jeudi 8 juin 2017 - 11:09:27
Document(s) archivé(s) le : samedi 9 septembre 2017 - 12:51:52

Fichier

978-3-642-31540-4_12_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Jonathan Dautrich, Chinya Ravishankar. Security Limitations of Using Secret Sharing for Data Outsourcing. Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.145-160, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_12〉. 〈hal-01534766〉

Partager

Métriques

Consultations de la notice

42

Téléchargements de fichiers

12