A Privacy-Preserving Access Control Protocol for Database as a Service

Database as a Service (DaaS) is a common service mode in Cloud Computing. Based on Feldman (t,n) VSS protocol and ElGamal homomorphism property, we proposed a privacy-preserving access control protocol for DaaS. Using Secret Sharing, we can protect the security of data owner's dataset, based on ElGamal homomorphism property, the data requester's query combining with the proxy servers' access control strategy, the data requesters can obtain the query results when they have enough permission. Theoretical analysis shows that without the Trust Third Party, the protocol can hide the proxy servers' access control information, while protecting both the data owner's and the data requesters' privacy.

[1]  Butler W. Lampson,et al.  Dynamic protection structures , 1899, AFIPS '69 (Fall).

[2]  Ramakrishnan Srikant,et al.  Order preserving encryption for numeric data , 2004, SIGMOD '04.

[3]  Sushil Jajodia,et al.  Selective Data Encryption in Outsourced Dynamic Environments , 2007, Electron. Notes Theor. Comput. Sci..

[4]  Sushil Jajodia,et al.  Preserving confidentiality of security policies in data outsourcing , 2008, WPES '08.

[5]  Ian Goldberg,et al.  Improving the Robustness of Private Information Retrieval , 2007 .

[6]  Philip S. Yu,et al.  Dual encryption for query integrity assurance , 2008, CIKM '08.

[7]  Zhang Min,et al.  Study on Cloud Computing Security , 2011 .

[8]  Rajeev Motwani,et al.  Two Can Keep A Secret: A Distributed Architecture for Secure Database Services , 2005, CIDR.

[9]  Sushil Jajodia,et al.  Fragmentation and Encryption to Enforce Privacy in Data Storage , 2007, ESORICS.

[10]  Gene Tsudik,et al.  Authentication and integrity in outsourced databases , 2006, TOS.

[11]  Dengguo Feng,et al.  Study on Cloud Computing Security: Study on Cloud Computing Security , 2011 .

[12]  Elisa Bertino,et al.  Database security - concepts, approaches, and challenges , 2005, IEEE Transactions on Dependable and Secure Computing.

[13]  Chen Xu-ri A privacy-preserving aggregate query scheme on outsourced databases , 2011 .

[14]  William Gasarch A Survey on Private Information Retrieval , 2004 .

[15]  Hakan Hacigümüs,et al.  Providing database as a service , 2002, Proceedings 18th International Conference on Data Engineering.