论文信息 - Trusted cloud SQL DBS with on-the-fly AES decryption/encryption

Trusted cloud SQL DBS with on-the-fly AES decryption/encryption

A Trusted Cloud Database System manages client-side encrypted cloud DBs. Queries may include encryption keys. The DBS decrypts/encrypts the data on-the-fly at the cloud. Plaintext is only in protected run-time variables. Stored data are by default probabilistically encrypted through AES. Any SQL queries are feasible, with negligible processing overhead and practical storage overhead. This is a major advance over the current alternative research proposals. We detail capabilities of a trusted DBS. We adapt SQL to client-side key management. Queries may remain usually almost as nonprocedural as now. A prototype implementation appears easy.

Sushil Jajodia | Witold Litwin | Thomas J. E. Schwarz

[1] Margo I. Seltzer,et al. An architecture a day keeps the hacker away , 2005, CARN.

[2] M. David Allen,et al. Making Query Execution Over Encrypted Data Practical , 2014, Secure Cloud Computing.

[3] Sushil Jajodia,et al. Numerical SQL Value Expressions Over Encrypted Cloud Databases , 2015, DEXA.

[4] Ken Eguro,et al. Transaction processing on confidential data using cipherbase , 2015, 2015 IEEE 31st International Conference on Data Engineering.

[5] Sushil Jajodia,et al. On-the fly AES Decryption/Encryption for Cloud SQL Databases , 2015, ArXiv.