Dodrant-homomorphic encryption for cloud databases using table lookup

Users of large commercial databases increasingly want to outsource their database operations to a cloud service providers, but guaranteeing the privacy of data in an outsourced database has become the major obstacle to this move. Encrypting all data solves the privacy issue, but makes many operations on the data impossible in the cloud, unless the service provider has the capacity to decrypt data temporarily. Homomorphic encryption would solve this issue, but despite great and on-going progress, it is still far from being operationally feasible. In 2015, we presented what we now call dodrant-homomorphic encryption, a method that encrypts numeric values deterministically using the additively homomorphic Paillier encryption and uses table lookup in order to implement multiplications. We discuss here the security implications of determinism and discuss options to avoid these pitfalls.

[1]  Hakan Hacigümüs,et al.  Executing SQL over encrypted data in the database-service-provider model , 2002, SIGMOD '02.

[2]  Carlo Curino,et al.  Relational Cloud: a Database Service for the cloud , 2011, CIDR.

[3]  Samuel Madden,et al.  Processing Analytical Queries over Encrypted Data , 2013, Proc. VLDB Endow..

[4]  Berk Sunar,et al.  On the Difficulty of Securing Web Applications Using CryptDB , 2014, 2014 IEEE Fourth International Conference on Big Data and Cloud Computing.

[5]  Charles V. Wright,et al.  Inference Attacks on Property-Preserving Encrypted Databases , 2015, CCS.

[6]  Raghav Kaushik,et al.  Oblivious Query Processing , 2013, ICDT.

[7]  Ramarathnam Venkatesan,et al.  Orthogonal Security with Cipherbase , 2013, CIDR.

[8]  B. Welford Note on a Method for Calculating Corrected Sums of Squares and Products , 1962 .

[9]  Hari Balakrishnan,et al.  CryptDB: processing queries on an encrypted database , 2012, CACM.

[10]  Jajodia Sushil,et al.  Trusted cloud SQL DBS with on-the-fly AES decryption/encryption , 2016 .

[11]  Radu Sion,et al.  TrustedDB: A Trusted Hardware-Based Database with Privacy and Data Confidentiality , 2011, IEEE Transactions on Knowledge and Data Engineering.

[12]  Carlo Curino,et al.  Relational Cloud: The Case for a Database Service , 2010 .

[13]  Sushil Jajodia,et al.  Numerical SQL Value Expressions Over Encrypted Cloud Databases , 2015, DEXA.

[14]  Hakan Hacigümüs,et al.  Managing and Querying Encrypted Data , 2008, Handbook of Database Security.

[15]  Sushil Jajodia,et al.  On-the-Fly AES256 Decryption/Encryption for Trusted Cloud SQL DBS: Position Statement , 2016, 2016 27th International Workshop on Database and Expert Systems Applications (DEXA).

[16]  Radu Sion,et al.  TrustedDB: A Trusted Hardware-Based Database with Privacy and Data Confidentiality , 2014, IEEE Trans. Knowl. Data Eng..