Verified Query Results from Hybrid Authentication Trees

Nuckolls, Glen

doi:10.1007/11535706_7

Cited by 26 publications

(29 citation statements)

References 18 publications

(38 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Extensions of hash trees have been used to authenticate various types of queries, including basic operations (e.g., select, join) on databases [6], pattern matching in tries [12] and orthogonal range searching [1,12], path queries and connectivity queries on graphs and queries on geometric objects [9] and queries on XML documents [2,5]. Many of these queries can be reduced to one-dimensional range-search queries which can been verified optimally in [10,18] by combining collisionresistant hashing and one-way accumulators. Recently, more involved cryptographic primitives have been used for optimally verifying set operations [22].…”

Section: Additional Related Workmentioning

confidence: 99%

“…Finally, a growing body of works study the specific problem of authenticating SQL queries over outsourced relational databases typically in external-memory data management settings. Representatives of such works include the authentication of range search queries by using hash trees (e.g., [6,9]) and by combining hash trees with accumulators (e.g., [10,18]) or B-trees with signatures (e.g., [16,19]). Additional work includes an efficient hash-based B-tree-based authenticated indexing technique in [11], the authentication of join queries in [25] and of shortest path queries in [26].…”

Section: Additional Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Efficient verification of web-content searching through authenticated web crawlers

et al. 2012

View full text Add to dashboard Cite

We consider the problem of verifying the correctness and completeness of the result of a keyword search. We introduce the concept of an authenticated web crawler and present its design and prototype implementation. An authenticated web crawler is a trusted program that computes a speciallycrafted signature over the web contents it visits. This signature enables (i) the verification of common Internet queries on web pages, such as conjunctive keyword searches-this guarantees that the output of a conjunctive keyword search is correct and complete; (ii) the verification of the content returned by such Internet queries-this guarantees that web data is authentic and has not been maliciously altered since the computation of the signature by the crawler. In our solution, the search engine returns a cryptographic proof of the query result. Both the proof size and the verification time are proportional only to the sizes of the query description and the query result, but do not depend on the number or sizes of the web pages over which the search is performed. As we experimentally demonstrate, the prototype implementation of our system provides a low communication overhead between the search engine and the user, and fast verification of the returned results by the user.

show abstract

Section: Additional Related Workmentioning

confidence: 99%

Section: Additional Related Workmentioning

confidence: 99%

Efficient verification of web-content searching through authenticated web crawlers

et al. 2012

View full text Add to dashboard Cite

show abstract

“…[12,27,4]). In [25], Nuckolls proposed a variation of the MHT that maintains a certified one-way accumulator over the digests of selected nodes; this allows a consolidated evidence to replace the neighboring digests along the path from those nodes to the root, thus reducing the size of the verification object (VO). That variation was extended to multiple hash tree levels in [15], where the authors also showed that replay attacks could be eliminated by periodically re-signing the timestamped accumulator.…”

Section: Related Workmentioning

confidence: 99%

“…If IA ≥ IB, the earlier analysis is still applicable, so we shall focus on the situation where IA < IB. If I B I A > 2, Formula 4 becomes 1.9568 25, again assuming that |S.B| = 4, m = 8IB and F P = 0.0216. A sufficient condition for the inequality is 0.9784…”

Section: Authenticating With Bloom Filtersmentioning

confidence: 99%

“…To copy otherwise, or to republish, to post on servers or to redistribute to lists, requires a fee and/or special permission from the publisher, ACM. VLDB '09, August [24][25][26][27][28]2009, Lyon, France Copyright 2009 VLDB Endowment, ACM 000-0-00000-000-0/00/00. receive updated price quotes early could act ahead of their competitors, so the advantage of data freshness would justify investing in the computing infrastructure.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Scalable verification for outsourced dynamic databases

2009

View full text Add to dashboard Cite

Query answers from servers operated by third parties need to be verified, as the third parties may not be trusted or their servers may be compromised. Most of the existing authentication methods construct validity proofs based on the Merkle hash tree (MHT). The MHT, however, imposes severe concurrency constraints that slow down data updates. We introduce a protocol, built upon signature aggregation, for checking the authenticity, completeness and freshness of query answers. The protocol offers the important property of allowing new data to be disseminated immediately, while ensuring that outdated values beyond a pre-set age can be detected. We also propose an efficient verification technique for ad-hoc equijoins, for which no practical solution existed. In addition, for servers that need to process heavy query workloads, we introduce a mechanism that significantly reduces the proof construction time by caching just a small number of strategically chosen aggregate signatures. The efficiency and efficacy of our proposed mechanisms are confirmed through extensive experiments.

show abstract