Partially materialized digest scheme: an efficient verification method for outsourced databases

Mouratidis, Kyriakos; Sacharidis, Dimitris; Pang, HweeHwa

doi:10.1007/s00778-008-0108-z

Cited by 63 publications

(45 citation statements)

References 34 publications

(53 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However those indexing authentication structures are not suitable to multitenant, because they incorporate the MHT into the data index while in SaaS the data index is shared by multiple tenants and some of them may not want the integrity guarantee, even all the tenants need the guarantee it is hard for those applied directly on the shared storage because there may be different data types contained in one column. Reference [12] proposes a partially materialized digest scheme in which they split the authentication structure from the data index and extend their work to the spatial database, but it does not apply for the multi-tenant circumstance.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Multi-tenant Data Authentication Model for SaaS

Li¹,

Kong²,

Yan³

et al. 2014

TOCSJ

View full text Add to dashboard Cite

Abstract:In SaaS, most tenants rely on the service provider for data maintenance and computation. As tenants no longer possess their application and data locally, it is of critical importance for the tenants to ensure that their data are being correctly stored and maintained. However, the customized multi-tenants sharing storage mode makes it hard for tenants to guarantee their data integrity because multiple tenants' data is stored in one physical universal table and different data types may be stored into a flex column based on tenants' customization. Meanwhile to ensure performances of query, adequate pivot table is set up. These introduce new challenges to data integrity protection for tenants. This paper presents a review of the state of the art solutions and recent patents in the fields of data authentication, and puts forward a multitenant data authentication model (MTDA). MTDA is a composite structure that constructs pivot authentication tree (PAT) on the pivot table and combines it with signature set (S-set) built on universal table to ensure that malicious insiders can't modify the data in pivot table and universal table. The main contribution of MTDA is it can guarantee the tenant query result in one tree travels and return the verification object, corresponding to the result on pivot table and universal table. We demonstrate effectiveness of our model compared with direct adoption of the MB tree based approaches on pivot table and universal table through the experiment. MTDA shows a better performance on VO verification.

show abstract

Section: Related Workmentioning

confidence: 99%

“…One is Merkle hash tree based approaches [8][9][10][11][12][13] the other is signature based [14][15][16][17][18]. And the MHT based approaches shows advantage over the signatures based, due to the efficiency of hashing computing compared to signature computing.…”

Section: Introductionmentioning

confidence: 99%

Multi-tenant Data Authentication Model for SaaS

Li¹,

Kong²,

Yan³

et al. 2014

TOCSJ

View full text Add to dashboard Cite

show abstract

“…The data owner selects transformation keys which are shared with trusted clients and it is infeasible to reconstruct the exact original data points from the transformed points without the key. Mouratidis et al [14] proposed the Partially Materialized Digest scheme which avoids unnecessary query processing costs and outperforms existing solutions by employing separate indexes for the data and for their associated verification information. However, these researches [24,25,14] did not consider data privacy protection and query integrity auditing jointly in their design.…”

Section: Query Integrity Assurancementioning

confidence: 99%

“…Mouratidis et al [14] proposed the Partially Materialized Digest scheme which avoids unnecessary query processing costs and outperforms existing solutions by employing separate indexes for the data and for their associated verification information. However, these researches [24,25,14] did not consider data privacy protection and query integrity auditing jointly in their design. The related work closest to ours is presented by Wang et al [23] which focuses on numerical data integrity authentication.…”

Section: Query Integrity Assurancementioning

confidence: 99%

“…Several previous studies [1,5] proposed solutions for supporting encrypted queries over encrypted databases to protect data owners' privacy. Another set of studies [14,21,17,15,3] focus on the problem of integrity in outsourced databases by guaranteeing that the results returned by the service provider for a client query are both correct and complete.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Query Integrity Assurance of Location-Based Services Accessing Outsourced Spatial Databases

Shahabi

et al. 2009

Advances in Spatial and Temporal Databases

View full text Add to dashboard Cite

Abstract. Outsourcing data to third party data providers is becoming a common practice for data owners to avoid the cost of managing and maintaining databases. Meanwhile, due to the popularity of locationbased-services (LBS), the need for spatial data (e.g., gazetteers, vector data) is increasing exponentially. Consequently, we are witnessing a new trend of outsourcing spatial datasets by data collectors. Two main challenges with outsourcing datasets is to keep the data private (from the data provider) and ensure the integrity of the query result (for the clients). Unfortunately, most of the techniques proposed for privacy and integrity do not extend to spatial data in a straightforward manner. Hence, recent studies proposed various techniques to support either privacy or integrity (but not both) on spatial datasets. In this paper, for the first time, we propose a technique that can ensure both privacy and integrity for outsourced spatial data. In particular, we first use a one-way spatial transformation method based on Hilbert curves, which encrypts the spatial data before outsourcing and hence ensures its privacy. Next, by probabilistically replicating a portion of the data and encrypting it with a different encryption key, we devise a technique for the client to audit the trustworthiness of the query results. We show the applicability of our approach for both k-nearest-neighbor and spatial range queries, the building blocks of any LBS application. Finally, we evaluate the validity and performance of our algorithms with real-world datasets.

show abstract

Data integrity verification scheme with designated verifiers for dynamic outsourced databases

Wang

Yue

Guo-xiang

2013

Security Comm Networks

View full text Add to dashboard Cite

In order to verify the integrity of the query results in outsourced database model, we first present a new authenticated data structure by combining skip lists with polynomial functions and accumulators and then construct a data integrity verification scheme for range query. Our scheme can verify the integrity of the query results with constant time verification and constant size proof and support dynamic maintenance with constant computational cost. Compared with that of previous schemes, the communication cost in our scheme is independent of the size of the authenticated dataset and is lower. When dataset size gets larger enough, our scheme outperforms previous schemes in terms of the computational cost and verification cost. In addition, we introduce the designated verifier idea into our scheme, so our scheme achieves the result that none but subscribers can verify the integrity of the query results and then meets the practical demands such as the payment service. The proof of security and analysis of experiment performance show that our scheme is secure and efficient for larger outsourced databases. Copyright © 2013 John Wiley & Sons, Ltd.

show abstract

Partially materialized digest scheme: an efficient verification method for outsourced databases

Cited by 63 publications

References 34 publications

Multi-tenant Data Authentication Model for SaaS

Multi-tenant Data Authentication Model for SaaS

Query Integrity Assurance of Location-Based Services Accessing Outsourced Spatial Databases

Data integrity verification scheme with designated verifiers for dynamic outsourced databases

Contact Info

Product

Resources

About