why encrypt data
play

Why Encrypt Data? We have already discussed authentication and - PDF document

Jul 24, 2023 •556 likes •759 views

Security in Outsourced Databases II Outsourced Databases II (Query Processing on Encrypted Data) Disks replaced Data worthless if encrypted Customer Credit for maintenance Card Number Laptops stolen Backups lost p 1 Why Encrypt Data?

  1. Security in Outsourced Databases II Outsourced Databases II (Query Processing on Encrypted Data) Disks replaced Data worthless if encrypted Customer Credit for maintenance Card Number Laptops stolen Backups lost p 1 Why Encrypt Data? • We have already discussed authentication and access control as means to allow access to the data to control as means to allow access to the data to authorized persons only • However, authentication & access control may not be enough (DB administrators can still access and see the data; intrusion/sql injection, etc) • If data are sensitive it is also possible to encrypt them – Data encryption is the last barrier to protect sensitive data Data encryption is the last barrier to protect sensitive data confidentiality 2 1

  2. Why Encypt Data? - External requirements • Health Insurance Portability & Accountability Act (HIPPA): – Requires data safeguards that protect against “intentional or unintentional use or disclosure of protected health information” – It mandates “to ensure the confidentiality, integrity and availability of all electronic protected health information the covered entity creates, receives, maintains, or transmits” – It mandates “to implement a mechanism to encrypt and decrypt electronic protected health information” 3 Why Encypt Data? - Business Compliance • Payment Card Industry (PCI) Data S Security Standard it St d d – Stored cardholder data must be rendered unreadable , and it includes cryptographic methods in the recommended controls – Adopted by American Express, Visa, MasterCard and several other payment card companies p y p 4 2

  3. Three options for database encryption SQL Server TDE (Transparent Data Encryption) Oracle 10g/11g TDE 5 Can we offer better performance?  We DO NOT fully trust the service provider with sensitive information  Encrypt client’s data and store at server  Encrypt client s data and store at server  Client:  runs queries over encrypted remote data  verifies integrity/authenticity of results (covered in the last lecture)  Most of the processing work to be done by the server  Consider passive adversary  A malicious individual who has access to data but only tries to learn A li i i di id l h h t d t b t l t i t l sensitive information about the data without actively modifying it or disrupting any kind of services 6 3

  4. Service Provider Architecture Client Site Server Site (5) Encrypted Results (6a) Result Filt Filter Temporary (6b) Results (4) (3) Client Side Client Side Server Side Server Side ? Service Provider Query Query Query Query (7) (2) Query Translator Encrypted Database Metadata (1) Original Query Original Query ? Actual Results User ? 7 H. Hacigumus, B. R. Iyer, C. Li, S. Mehrotra: Executing SQL over encrypted data in the database-service-provider model. 2002 International Conference on Management of Data (SIGMOD'2002), 216-227 Query Processing 101… • At its core, query processing consists of: – Logical comparisons (> , <, = , <=, >=) – Pattern based queries (e.g., *Arnold*egger*) – Simple arithmetic (+, *, /, ^, log) • Higher level operators implemented using the above – Joins – Selections – Unions – Set difference S diff – … • To support any of the above over encrypted data, need to have mechanisms to support basic operations over encrypted data 8 4

  5. Searching over Encrypted Data • Want to be able to perform operations over encrypted data (for efficiency) SELECT AVG(E salary) SELECT AVG(E.salary) FROM EMP WHERE age > 55 • Fundamental observations – Basic operations do not need to be fully implemented over encrypted data – To test (AGE > 55), it might suffice to devise a strategy that To test (AGE 55), it might suffice to devise a strategy that allows the test to succeed in most cases (might not work in all cases) – If test does not result in a clear positive or negative over encrypted representation, resolve later at client-side, after decryption. 9 Relational Encryption Server Site etuple etuple N ID N_ID S_ID S ID P ID P_ID NAME NAME SALARY SALARY PIN PIN John 50000 2 fErf!$Q!!vddf>></| 50 1 10 Mary 110000 2 F%%3w&%gfErf!$ 65 2 10 James 95000 3 &%gfsdf$%343v<l 50 2 20 Lisa 105000 4 %%33w&%gfs##! 65 2 20 Store an encrypted string – etuple – for each tuple in the original table   This is called “row level encryption”  Any kind of encryption technique (e.g., AES, DES) can be used Create an index for each (or selected ) attribute(s) in the original table  10 5

  6. Building the Index • Partition function divides domain values into partitions (buckets) Partition ( R.A ) = { [0,200], (200,400], (400,600], (600,800], (800,1000] } – partition function has impact on performance as well as privacy – very much domain/attribute dependent – equi-width vs. equi-depth partitioning • Identification function assigns a partition id to each partition of attribute A Partition (Bucket) ids 2 7 5 1 4 0 0 200 200 400 400 600 600 800 800 1000 1000 Domain Values • e.g. ident R.A ( (200,400] ) = 7 • Any function can be use as identification function, e.g., hash functions • Client keeps partition and identification functions secret (as metadata ) 11 Building the Index • Mapping function maps a value v in the domain of attribute A to partition id Partition (Bucket) ids 2 7 5 1 4 0 200 400 600 800 1000 Domain Values – e.g., Map R.A ( 250 ) = 7 Map R.A ( 620 ) = 1 12 6

  7. Storing Encrypted Data R = < A, B, C >  R S = < etuple, A_id, B_id, C_id > etuple = encrypt ( A | B | C ) A_id = Map R.A ( A ), B_id = Map R.B ( B ), C_id = Map R.C ( C ) Table: EMPLOYEE S Table: EMPLOYEE NAME SALARY PIN Etuple N_ID S_ID P_ID John 50000 2 fErf!$Q!!vddf>></| 50 1 10 Mary 110000 2 F%%3w&%gfErf!$ 65 2 10 James 95000 3 &%gfsdf$%343v<l 50 2 20 Lisa 105000 4 %%33w&%gfs##! 65 2 20 13 Referring back to our example SELECT AVG(E.salary) FROM EMP WHERE age > 55 WHERE age 55 • Suppose the partitions on age are as follows: P1 - [20,30); P2 - [30,40); P3 - [40,50); P4 - [50,60); P5 - [60,100) • To test (AGE > 55), it suffices to retrieve all data that falls into partitions that contain at least one employee with age > 55 – P4 and P5 These partitions (e.g., P4) may contain records with age  55; they can be P4) may contain records with age  55; they can be – These partitions (e g examined at the client-side after records are decrypted. • Records belonging to partitions that contain only employees with age  55 (e.g., P1, P2 and P3) will not need to be returned. 14 7

  8. Mapping Conditions Q: SELECT name, pname FROM employee, project WHERE employee.pin=project.pin AND salary>100k • Server stores attribute indices determined by mapping functions • Client stores metadata and uses it to translate the query Conditions: Condition  Attribute op Value • Condition  Attribute op Attribute • Condition  (Condition  Condition) | (Condition  Condition)  (Co d t o • Co d t o Co d t o ) | (Co d t o Co d t o ) | (not Condition) Where op = { = , >,  , <,  } 15 Mapping Conditions (2) Example: Equality • Attribute = Value – Map cond ( A = v )  A S = Map A ( v ) – Map cond ( A = 250 )  A S = 7 Partition Ids 2 7 5 1 4 0 200 400 600 800 1000 210 355 250 390 At client site 16 8

  9. Mapping Conditions (3) Example: Inequality (<, >, etc.) • Attribute < Value – Map cond ( A < v )  A S  { ident A ( p j ) | p j .low  v ) } – Map cond ( A < 250 )  A S  {2,7} Partition Ids 2 7 5 1 4 0 200 400 600 800 1000 Domain Values 210 355 234 390 At client site 17 Mapping Conditions (4) • Attribute1 = Attribute2 (useful for JOIN-type queries) – Map cond ( A = B )   N (A S = ident A ( p k )  B S = ident B ( p l )) ( A = B )   )  B S = ident ( (A S = ident ( Map )) where N is p k  partition (A), p l  partition (B), p k  p l   Partitions A_id Partitions B_id [0,100] 2 [0,200] 9 (100,200] 4 (200,400] 8 (200,300] 3  C’ : (A_id = 2  B_id = 9) C : A = B  (A_id = 4  B_id = 9)  (A_id = 3  B_id = 8) 18 9

  10. Relational Operators over Encrypted Relations • Partition the computation of the operators across client and server • Compute (possibly) superset of answers at the server C t ( ibl ) t f t th • Filter the answers at the client • Objective : minimize the work at the client and process the answers as soon as they arrive requiring minimal storage at the client Operators: p – Selection – Join – Grouping and Aggregation – Others: Sort, duplicate elimination, set difference, union, projection 19 Selection Operator  c ( R ) =  c ( D (  S ) ) S Mapcond(c) ( R D = Decrypt Example:  A=250 Client Query  A=250 D  A_id = 7 TABLE E_TABLE Server Query 2 7 5 1 4 0 200 400 600 800 1000 20 10

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Shai Halevi IBM CRYPTO 2011 Wouldnt it be nice to be able to Encrypt my data before

Shai Halevi IBM CRYPTO 2011 Wouldnt it be nice to be able to Encrypt my data before

Shai Halevi IBM CRYPTO 2011 Wouldnt it be nice to be able to Encrypt my data before sending to the cloud While still allowing the cloud to search/sort/edit/ this data on my behalf Keeping the data in the cloud in encrypted form

956 views • 60 slides
Why Your Encrypted Database Is Not Secure Paul Grubbs Tom Ristenpart Vitaly Shmatikov

Why Your Encrypted Database Is Not Secure Paul Grubbs Tom Ristenpart Vitaly Shmatikov

Why Your Encrypted Database Is Not Secure Paul Grubbs Tom Ristenpart Vitaly Shmatikov Outsourced Applications Today Server data data Encrypt the data! Encrypt the Data App functionality no App functionality no longer works :( longer

1.42k views • 58 slides
Several possibilities for combination: So far: had cryptographic algorithms to achieve

Several possibilities for combination: So far: had cryptographic algorithms to achieve

Several possibilities for combination: So far: had cryptographic algorithms to achieve Encrypt-then MAC: encrypt message, then compute MAC of Privacy: use encryption ciphertext. Integrity: use MAC MAC-then-encrypt: First compute MAC, and then

203 views • 3 slides
Cybersecurity Considerations for Telework Security for Enterprises Enterprise Planning Plan

Cybersecurity Considerations for Telework Security for Enterprises Enterprise Planning Plan

Cybersecurity Considerations for Telework Security for Enterprises Enterprise Planning Plan telework-related security policies and controls based on a zero-trust model. Encrypt client devices storage, encrypt all sensitive data stored on

371 views • 9 slides
Close lid to encrypt Hard disk encryption in Linux suspend mode Tim Dittler FOSDEM, 02.02.2020

Close lid to encrypt Hard disk encryption in Linux suspend mode Tim Dittler FOSDEM, 02.02.2020

Close lid to encrypt Hard disk encryption in Linux suspend mode Tim Dittler FOSDEM, 02.02.2020 Whats Close lid to encrypt? Project by Jonas Meurer and me Freelancing systems engineers living in Germany Full-disk encryption

397 views • 16 slides
LETS ENCRYPT Olivier Yiptong oyiptong@mozilla.com PRIVACY MATTERS PRIVACY MATTERS: HTTPS

LETS ENCRYPT Olivier Yiptong oyiptong@mozilla.com PRIVACY MATTERS PRIVACY MATTERS: HTTPS

LETS ENCRYPT Olivier Yiptong oyiptong@mozilla.com PRIVACY MATTERS PRIVACY MATTERS: HTTPS Con fi dentiality Data Integrity Authentication NO PRIVACY: HTTP Public-only communication (Possibly?) Tampered messages Of

244 views • 23 slides
Why (Special Agent) Johnny (Still) Cant Encrypt: A Security Analysis of the APCO Project 25

Why (Special Agent) Johnny (Still) Cant Encrypt: A Security Analysis of the APCO Project 25

Why (Special Agent) Johnny (Still) Cant Encrypt: A Security Analysis of the APCO Project 25 Two-Way Radio System Sandy Clark | Travis Goodspeed | Perry Metzger Zachary Wasserman | Kevin Xu | Matt Blaze Usenix 2011 P25 Modulates voice

147 views • 14 slides
Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt

Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt

Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt numbers using a simple version of the RSA algorithm. Each team should have two members. Each team-member should complete the exercise as Bob, then pass

228 views • 4 slides
No domain left behind is Lets Encrypt democratizing encryption? M. Aertsen 1 , M. Korzyski 2

No domain left behind is Lets Encrypt democratizing encryption? M. Aertsen 1 , M. Korzyski 2

. . . . . . . . . . . . . . No domain left behind is Lets Encrypt democratizing encryption? M. Aertsen 1 , M. Korzyski 2 , G. Moura 3 1 National Cyber Security Centre The Netherlands 2 Delft University of Technology The

292 views • 18 slides
Encrypt ALL the things with LetsEncrypt Created by : Justin W. Flory Solomon Rubin

Encrypt ALL the things with LetsEncrypt Created by : Justin W. Flory Solomon Rubin

Encrypt ALL the things with LetsEncrypt Created by : Justin W. Flory Solomon Rubin License : CC-BY-SA 4.0 Introduction What is TLS and why do I need it? TLS stands for Transport Layer Security Difference between https and

360 views • 23 slides
POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1

POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1

POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1 INTRODUCTION Hanno Bck, freelance journalist and hacker. Writing for Golem.de and others. Fuzzing Project , funded by Linux Foundation's Core

1.09k views • 46 slides
No domain left behind: is Lets Encrypt democratizing encryption? Maarten Aertsen 1 , Maciej

No domain left behind: is Lets Encrypt democratizing encryption? Maarten Aertsen 1 , Maciej

No domain left behind: is Lets Encrypt democratizing encryption? Maarten Aertsen 1 , Maciej Korczy nski 2 , Giovane C. M. Moura 3 , Samaneh Tajalizadehkhoob 2 , Jan van den Berg 2 1 National Cyber Security Centre The Netherlands 2 Delft

423 views • 21 slides
Lets Encrypt as a Startup Success Story Security and Ops and Encrypting the web Daniel

Lets Encrypt as a Startup Success Story Security and Ops and Encrypting the web Daniel

Lets Encrypt as a Startup Success Story Security and Ops and Encrypting the web Daniel Jeffery Linux Foundation Why HTTPS? As our dependency on the internet has grown, the risk to users' privacy and safety has grown along with it.

746 views • 40 slides
tcpcrypt Mark Handley What would it take to encrypt all the traffic on the Internet, by

tcpcrypt Mark Handley What would it take to encrypt all the traffic on the Internet, by

tcpcrypt Mark Handley What would it take to encrypt all the traffic on the Internet, by default, all the time? Crypto 101: Encryption without authentication is useless. Encryption without authentication is like meeting a stranger in a

813 views • 31 slides
On the (In)Security of IPsec in MAC-then-Encrypt Configurations Jean Paul Degabriele Kenneth G.

On the (In)Security of IPsec in MAC-then-Encrypt Configurations Jean Paul Degabriele Kenneth G.

Motivation The Attacks Concluding Remarks On the (In)Security of IPsec in MAC-then-Encrypt Configurations Jean Paul Degabriele Kenneth G. Paterson Information Security Group Royal Holloway, University of London CCS 2010 Jean Paul

930 views • 68 slides
Why Can't Online Social Networks Encrypt? Ero Balsa , Filipe Beato, Seda Grses KU Leuven NYU

Why Can't Online Social Networks Encrypt? Ero Balsa , Filipe Beato, Seda Grses KU Leuven NYU

Why Can't Online Social Networks Encrypt? Ero Balsa , Filipe Beato, Seda Grses KU Leuven NYU W3C Workshop on Privacy and UserCentric Controls 1 20-21 November 2014, Berlin &lt;&lt; Facebook has been able to deploy end-to-end encryption

429 views • 10 slides
Com puter Security - Part Three Last tim e Multilevel and multilateral security Threats

Com puter Security - Part Three Last tim e Multilevel and multilateral security Threats

Com puter Security - Part Three Last tim e Multilevel and multilateral security Threats Security policies Confidentiality Policies Policy The Bell-LaPadula Model Specification Integrity Policies The Biba

698 views • 49 slides
Extending Security Protocol Analysis : New Challenges Mike Bond, Jolyon Clulow {Mike.Bond,

Extending Security Protocol Analysis : New Challenges Mike Bond, Jolyon Clulow {Mike.Bond,

Extending Security Protocol Analysis : New Challenges Mike Bond, Jolyon Clulow {Mike.Bond, Jolyon.Clulow}@cl.cam.ac.uk Workshop on Automated Reasoning for Security Protocols Analysis (ARSPA 2004) 4 th July 2004 Outline An introduction to

764 views • 31 slides
Trusted Platform Modules and Hardware-based Security Andreas Nilsson Masters Student at Nada,

Trusted Platform Modules and Hardware-based Security Andreas Nilsson Masters Student at Nada,

Trusted Platform Modules and Hardware-based Security Andreas Nilsson Masters Student at Nada, KTH Pointsec Mobile Technologies TPM Introduction Microcontroller affixed to the motherboard. Cryptographic functions like key storage

834 views • 35 slides
Analysis of Security Protocols Gavin Lowe Analysis of Security Protocols 02 Overview Brief

Analysis of Security Protocols Gavin Lowe Analysis of Security Protocols 02 Overview Brief

Analysis of Security Protocols 01 Analysis of Security Protocols Gavin Lowe Analysis of Security Protocols 02 Overview Brief introduction to security protocols; Model checking of security protocols, particularly using the process

1.28k views • 110 slides
Security Specification and Implementation for Mobile e-Health Services Ramon Mart, Jaime

Security Specification and Implementation for Mobile e-Health Services Ramon Mart, Jaime

Security Specification and Implementation for Mobile e-Health Services Ramon Mart, Jaime Delgado, Xavier Perramon Universitat Pompeu Fabra (UPF), Barcelona, Spain {ramon.marti, jaime.delgado, xavier.perramon}@upf.edu personal health data to be

137 views • 9 slides
A More Cautious Approach to Security Against Mass Surveillance Jean Paul Degabriele , Pooya

A More Cautious Approach to Security Against Mass Surveillance Jean Paul Degabriele , Pooya

Motivation Algorithm Substitution Attacks The BPR14 Model Analysis &amp; Results A More Cautious Approach to Security Against Mass Surveillance Jean Paul Degabriele , Pooya Farshim, and Bertram Poettering Royal Holloway, Queens University

292 views • 26 slides
ZISC Information Security Colloquium June 15, 2004 Direct Anonymous Attestation: Achieving

ZISC Information Security Colloquium June 15, 2004 Direct Anonymous Attestation: Achieving

Zurich Research Laboratory ZISC Information Security Colloquium June 15, 2004 Direct Anonymous Attestation: Achieving Privacy in Remote Authentication Jan Camenisch IBM Zurich Research Laboratory jca@zurich.ibm.com Joint work with Ernie

353 views • 24 slides
A CSCW System for Distributed Search/Collection Tasks using Wearable Computers 6 th IEEE Workshop

A CSCW System for Distributed Search/Collection Tasks using Wearable Computers 6 th IEEE Workshop

A CSCW System for Distributed Search/Collection Tasks using Wearable Computers 6 th IEEE Workshop on Mobile Computing Systems &amp; Applications Dec 2 nd 3 rd , 2004 English Lake District, UK Tetsuo Sumiya , Akifumi Inoue , Sadayuki

387 views • 23 slides

More recommend