Supporting secure keyword search in the personal cloud

Abstract : The Personal Cloud paradigm has emerged as a solution that allows individuals to manage under their control the collection, usage and sharing of their data. However, by regaining the full control over their data, the users also inherit the burden of protecting it against all forms of attacks and abusive usages. The Secure Personal Cloud architecture relieves the individual from this security task by employing a secure token (i.e., a tamper-resistant hardware device) to control all the sensitive information (e.g., encryption keys, metadata, indexes) and operations (e.g., authentication, data encryption/decryption, access control, and query processing). However, secure tokens are usually equipped with extremely low RAM but have significant Flash storage capacity (Gigabytes), which raises important barriers for embedded data management. This paper presents a new embedded search engine specifically designed for secure tokens, which applies to the important use-case of managing and securing documents in the Personal Cloud context. Conventional search engines privilege either insertion or query scalability but cannot meet both requirements at the same time. Moreover, very few solutions support data deletions and updates in this context. In this paper, we introduce three design principles, namely Write-Once Partitioning, Linear Pipelining and Background Linear Merging, and show how they can be combined to produce an embedded search engine matching the hardware constraints of secure tokens and reconciling high insert/delete/update rate and query scalability. Our experimental results, obtained with a prototype running on a representative hardware platform, demonstrate the scalability of the approach on large datasets and its superiority compared to state of the art methods. Finally, we also discuss the integration of our solution in another important real use-case related to performing information retrieval in smart objects.
Type de document :
Article dans une revue
Information Systems, Elsevier, 2017, 72, pp.1 - 26. 〈10.1016/j.is.2017.09.003〉
Liste complète des métadonnées

Littérature citée [42 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01660599
Contributeur : Iulian Sandu Popa <>
Soumis le : lundi 11 décembre 2017 - 10:33:52
Dernière modification le : vendredi 22 juin 2018 - 14:12:44

Fichier

InfoSys_2017_HAL.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Citation

Saliha Lallali, Nicolas Anciaux, Iulian Sandu Popa, Philippe Pucheral. Supporting secure keyword search in the personal cloud. Information Systems, Elsevier, 2017, 72, pp.1 - 26. 〈10.1016/j.is.2017.09.003〉. 〈hal-01660599〉

Partager

Métriques

Consultations de la notice

123

Téléchargements de fichiers

55