searchable security scheme for cloud nosql
play

Searchable Security Scheme for Cloud NoSQL Mohammad Ahmadian - PowerPoint PPT Presentation

Oct 19, 2022 •504 likes •1.31k views

Searchable Security Scheme for Cloud NoSQL Mohammad Ahmadian ahmadian@knights.ucf.edu Advisor: Professor Dan C. Marinescu University of Central Florida September 16, 2017 Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 1 / 48 Goal

  1. Searchable Security Scheme for Cloud NoSQL Mohammad Ahmadian ahmadian@knights.ucf.edu Advisor: Professor Dan C. Marinescu University of Central Florida September 16, 2017 Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 1 / 48

  2. Goal Research goal is to find an answer to: Is it possible to delegate processing of a private data to third-party without getting revealed? Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 2 / 48

  3. Outline I Introduction And Motivation 1 Cloud Relational Database Cloud Data Storage And Management Components Cloud NoSQL Data Models For NoSQL Cryptosystems For Outsourced Data Store RELATED WORK 2 RESEARCH OBJECTIVES AND APPROACH 3 Research Objectives Threat Model JSON And BSON CURRENT WORK AND PRELIMINARY RESULTS 4 SecureNoSQL Research Plan 5 Work In Progress And Tasks Time Table Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 3 / 48

  4. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  5. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  6. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  7. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  8. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  9. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  10. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  11. Introduction And Motivation Database as a Service (DBaaS) Database as a Service (DBaaS) is a cloud-based approach to the storage and management of structured data. DBaaS delivers database functionality similar to what is found in on-premise database management systems such as relational and non-relational database systems. Cloud Relational Database Searchable Security Scheme for RDBMS Databases Cloud Data Storage And Management Components Cloud NoSQL Databases Data Models For NoSQL Databases Searchable Security Scheme For NoSQL Databases Crypto-systems For Outsourced Data Store Leakage Proof Data Processing In Public Cloud Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 4 / 48

  12. Introduction- Cloud Relational Database Cloud storage is cost-effective, but it poses significant security and privacy risks. The owner of the data has no longer control on where it is stored and how it is protected against unauthorized access. For instance, AWS offers an array of flexible and affordable data management services including Simple Storage Service (S3), SimpleDB, RDS 1 , Elastic Compute Cloud (EC2) and DynamoDB. 1 Amazon Relational Database Service Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 5 / 48

  13. Introduction- Cloud Data Storage And Management Components Amazon Simple Storage Service (AWS S3) AWS S3 uses a simple data model: Objects: like files, contain data and metadata but, objects are not organized in a hierarchy and every object exists at the same level. Buckets: a logical unit of storage used to store objects Only authenticated user have access to Amazon S3. Access control does not provide protection for S3 data against malicious insider. Encryption can be applied for the stored data to protect from the cloud internal. Amazon Elastic Compute Cloud (EC2) EC2 uses the public key part of the key pair associated with the AWS account to secure login, so that only someone with the corresponding private key can access to the EC2 instance. In addition, by using concept of security group that are basically collections of rules the traffic of EC2 instance is manageable. Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 6 / 48

  14. Introduction- Cloud Data Storage And Management Components Amazon Simple Storage Service (AWS S3) AWS S3 uses a simple data model: Objects: like files, contain data and metadata but, objects are not organized in a hierarchy and every object exists at the same level. Buckets: a logical unit of storage used to store objects Only authenticated user have access to Amazon S3. Access control does not provide protection for S3 data against malicious insider. Encryption can be applied for the stored data to protect from the cloud internal. Amazon Elastic Compute Cloud (EC2) EC2 uses the public key part of the key pair associated with the AWS account to secure login, so that only someone with the corresponding private key can access to the EC2 instance. In addition, by using concept of security group that are basically collections of rules the traffic of EC2 instance is manageable. Mohammad Ahmadian (UCF) Secure NoSQL September 16, 2017 6 / 48

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Searchable Symmetric Encryption Seny Kamara Advanced Topics in Network Security Spring 2006 1

Searchable Symmetric Encryption Seny Kamara Advanced Topics in Network Security Spring 2006 1

Searchable Symmetric Encryption Seny Kamara Advanced Topics in Network Security Spring 2006 1 Yesterday Motivation for searchable encryption First SSE scheme [SWP00] Attacks on [SWP00] Conjunctive SSE [GSW04,PKL04,BKM05] 2

703 views • 24 slides
1 1.2. Guidelines for Information Security of Cloud Computing Category Main contents of measure

1 1.2. Guidelines for Information Security of Cloud Computing Category Main contents of measure

Agenda Related Polices to Cloud Computing I. Guidelines for Information Security of Cloud II. Computing Cloud Security Certification Scheme in KOREA Cloud Security Certification Program in Korea III. April. 11, 2017 Jungduk (JD) KIM, Ph.

403 views • 5 slides
Final Public-Private recommendation for a European Cloud Security Certification Scheme Timeline

Final Public-Private recommendation for a European Cloud Security Certification Scheme Timeline

Amsterdam 12 th June 2019 Final Public-Private recommendation for a European Cloud Security Certification Scheme Timeline To explore the possibility of developing a European Cloud Certification Scheme in the context of the Cybersecurity Act

663 views • 42 slides
Public-Private proposal for a European Cloud Security Certification Scheme C5 success story and

Public-Private proposal for a European Cloud Security Certification Scheme C5 success story and

Berlin 2 nd April 2019 Public-Private proposal for a European Cloud Security Certification Scheme C5 success story and the way forward to a European certification for cloud services Clemens Doubrava Head of Section of Information Security in

367 views • 36 slides
CS2 : A Searchable Cryptographic Cloud Storage System Seny Kamara (MSR) Charalampos Papamanthou

CS2 : A Searchable Cryptographic Cloud Storage System Seny Kamara (MSR) Charalampos Papamanthou

CS2 : A Searchable Cryptographic Cloud Storage System Seny Kamara (MSR) Charalampos Papamanthou (UC Berkeley) Tom Roeder (MSR) Cloud Computing Cloud Computing o Main concern o will my data be safe? o will anyone see it? o can anyone modify it?

960 views • 42 slides
Proposal for an European Cloud Security Certification Scheme for the EU An update by the CSP

Proposal for an European Cloud Security Certification Scheme for the EU An update by the CSP

Proposal for an European Cloud Security Certification Scheme for the EU An update by the CSP Certification WG with Q&A Objectives 1. The objective of the group is to explore the possibility of developing a European Cloud Certification

144 views • 13 slides
Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security

Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security

Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security risks. Attacks in a cloud environment, top threats. Security, a major concern for cloud users. Privacy. Trust. Operating systems

661 views • 38 slides
Security and Performance Analysis of Encrypted NoSQL Databases M.W. Grim BSc., Abe Wiersma BSc.

Security and Performance Analysis of Encrypted NoSQL Databases M.W. Grim BSc., Abe Wiersma BSc.

Security and Performance Analysis of Encrypted NoSQL Databases M.W. Grim BSc., Abe Wiersma BSc. Supervisor: F. Turkmen PhD February 6, 2017 University of Amsterdam Introduction Problem Securely storing BigData on NoSQL database systems.

669 views • 48 slides
in Searchable Symmetric Encryption Kaoru Kurosawa and Yasuhiro Ohtaki Ibaraki University, Japan

in Searchable Symmetric Encryption Kaoru Kurosawa and Yasuhiro Ohtaki Ibaraki University, Japan

How to Update Documents Verifiably in Searchable Symmetric Encryption Kaoru Kurosawa and Yasuhiro Ohtaki Ibaraki University, Japan Outline (1) Introduction (2) Our (previous) verifiable SSE scheme (3) Extend it to a dynamic SSE scheme (but

1.13k views • 70 slides
Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the Cloud? How the Cloud is delivered: Iaas, PaaS and SaaS Cloud security challenges and risk Current Cloud security report Cloud security technology

302 views • 27 slides
CSCI403 Lecture 36: NoSQL, Distributed DBs, DBs in the Cloud So you want a database... Imagine

CSCI403 Lecture 36: NoSQL, Distributed DBs, DBs in the Cloud So you want a database... Imagine

CSCI403 Lecture 36: NoSQL, Distributed DBs, DBs in the Cloud So you want a database... Imagine Relational Doesnt Exist MongoDB (from "humongous") is a scalable, high-performance, open source, document-oriented database.

701 views • 20 slides
NoSQL Source: Pramod J. Sadalage and Martin Fowler NoSQL Distilled: A Brief Guide to the

NoSQL Source: Pramod J. Sadalage and Martin Fowler NoSQL Distilled: A Brief Guide to the

NoSQL Source: Pramod J. Sadalage and Martin Fowler NoSQL Distilled: A Brief Guide to the Emerging World of Polyglot Persistence , Pearson Education, 2013 Objectives Introduce some key concepts behind the NoSQL family of databases Why NoSQL?

919 views • 19 slides
NO SQL! NO INJECTION? A talk on the state of NoSQL security IBM Cyber Security Center of IBM

NO SQL! NO INJECTION? A talk on the state of NoSQL security IBM Cyber Security Center of IBM

NO SQL! NO INJECTION? A talk on the state of NoSQL security IBM Cyber Security Center of IBM AppScan Excellence Aviv Ron Emanuel Bronshtein Alexandra Shulman-Peleg IBM Security Systems Cyber Center of Excellence AVIV RON Security

452 views • 27 slides
Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined)

Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined)

Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined) Administrative discussions Stephen McCamant University of Minnesota Multi-Cloud Oblivious Storage Old and new topics in security Cloud threats, old and new

645 views • 8 slides
NoSQL and MongoDB 1 2 Introduction to NoSQL Based on a presentation by Traversy Media 3 What

NoSQL and MongoDB 1 2 Introduction to NoSQL Based on a presentation by Traversy Media 3 What

NoSQL and MongoDB 1 2 Introduction to NoSQL Based on a presentation by Traversy Media 3 What is NoSQL? Not only SQL SQL means Relational model Strong typing ACID compliance Normalization NoSQL means more freedom or flexibility 4

376 views • 34 slides
Encrypted Cloud Storage David Cash Paul Grubbs Jason Perry Tom Ristenpart Rutgers U Skyhigh

Encrypted Cloud Storage David Cash Paul Grubbs Jason Perry Tom Ristenpart Rutgers U Skyhigh

Security of Searchable Encrypted Cloud Storage David Cash Paul Grubbs Jason Perry Tom Ristenpart Rutgers U Skyhigh Networks Lewis U Cornell Tech Outsourced storage and searching client cloud provider give me all records containing

508 views • 36 slides
Improving Cloud Security with Attacker Profiling Bryan D. Payne Engineering Manager, Platform

Improving Cloud Security with Attacker Profiling Bryan D. Payne Engineering Manager, Platform

Improving Cloud Security with Attacker Profiling Bryan D. Payne Engineering Manager, Platform Security Who is out to get me? What do they want? Why are we losing? Platform Security at Netflix Netflix Open Connect Appliance - AWS Mgmt -

498 views • 45 slides
Application on MobilityFirst Karthikeyan Ganesan, Wuyang Zhang, Zihong Zheng Shantanu Ghosh, Avi

Application on MobilityFirst Karthikeyan Ganesan, Wuyang Zhang, Zihong Zheng Shantanu Ghosh, Avi

Real-Time Cyber Physical Systems Application on MobilityFirst Karthikeyan Ganesan, Wuyang Zhang, Zihong Zheng Shantanu Ghosh, Avi Cooper WINLAB SUMMER 2015 TEAM M MEMBER BERS Karthi hikey eyan an Ganes esan an Wuyang ang Zhang ng

499 views • 15 slides
Extending the Hill Cipher Two secure modifications of the classic cipher John Chase Matt Davis

Extending the Hill Cipher Two secure modifications of the classic cipher John Chase Matt Davis

Introduction SVK Hill Cipher TF Hill Cipher Summary Extending the Hill Cipher Two secure modifications of the classic cipher John Chase Matt Davis Cryptography 625.480 December 2, 2010 / Final Paper Presentation Introduction SVK Hill

1.31k views • 90 slides
Command and Control Mechanism Trends in Exploit Kits, RATs, APTs, and Other Malware January 13,

Command and Control Mechanism Trends in Exploit Kits, RATs, APTs, and Other Malware January 13,

Command and Control Mechanism Trends in Exploit Kits, RATs, APTs, and Other Malware January 13, 2016 Mark Mager US-CERT Code Analysis Team Homeland National Cybersecurity and Communications Integration Center Security Agenda About Me

348 views • 22 slides
in Southeast Asia and Beyond RightsCon, 30 th March 2017 Ng Swee Meng (Sinar Project) & Maria

in Southeast Asia and Beyond RightsCon, 30 th March 2017 Ng Swee Meng (Sinar Project) & Maria

Collecting Evidence of Internet Censorship in Southeast Asia and Beyond RightsCon, 30 th March 2017 Ng Swee Meng (Sinar Project) & Maria Xynou (OONI) Sinar Project is an initiative using open technology and applications to systematically make

553 views • 33 slides
Digital footprints Respect and manners Who can view their content? Keep their

Digital footprints Respect and manners Who can view their content? Keep their

08/02/2016 Digital footprints Respect and manners Who can view their content? Keep their personal information safe Reporting 1 08/02/2016 Adult content Hurtful and harmful content Reliable

87 views • 4 slides
DIRBS Telecommunication/ICT devices that do not comply with a country's applicable national

DIRBS Telecommunication/ICT devices that do not comply with a country's applicable national

Sept 6, 2019 Addressing Illegal, Counterfeit and Stolen Devices with DIRBS Telecommunication/ICT devices that do not comply with a country's applicable national conformity processes and regulatory requirements or other applicable legal

985 views • 12 slides
MVAPICH2-GDR: Pushing the Frontier of HPC and Deep Learning GPU Technology Conference GTC 2017

MVAPICH2-GDR: Pushing the Frontier of HPC and Deep Learning GPU Technology Conference GTC 2017

MVAPICH2-GDR: Pushing the Frontier of HPC and Deep Learning GPU Technology Conference GTC 2017 by Hari Subramoni Dhabaleswar K. (DK) Panda The Ohio State University The Ohio State University E-mail: subramon@cse.ohio-state.edu E-mail:

619 views • 49 slides

More recommend