Secure Normal Form: Mediation among Cross Cryptographic Leakages in Encrypted Databases

Authors

Shufan Zhang, University of Waterloo
Xi He, University of Waterloo
Ashish Kundu, Cisco Research
Sharad Mehrotra, University of California, Irvine
Shantanu Sharma, New Jersey Institute of Technology

Document Type

Conference Proceeding

Publication Date

1-1-2024

Abstract

Existing secure data outsourcing systems offer users ways to select from different cryptographic primitives supported by the system to encrypt their data to strike a balance between data confidentiality and query performance. Though prior work have identified the danger of mixing cryptographic primitives, they fall short of providing a systematic approach to guide users to prevent such cross-cryptographic leakages. Inspired by the database design theory, we envision Secure Normal Form, a new approach to normalize encrypted databases such that the leakages of the partitioned databases are limited to the users' specifications. In this work, we propose a new architecture to support secure normal form. This system includes several new components for secure data outsourcing: (i) an inference mechanism that reasons about additional leakages from weaker encryption techniques, based on semantic data properties (e.g., dependence between attribute values); (ii) a normalization mechanism that converts relational data into secure normal forms, so that the information leaked by the representation is limited to that specified by the user; and (iii) a secure query execution approach over encrypted data in secure normal forms. Our initial experimental results validate the performance improvement over naïve baseline and show that a careful data representation can be allowed without compromising security. We believe that our paper opens a new direction in secure data management.

Identifier

85200447941 (Scopus)

ISBN

[9798350317152]

Publication Title

Proceedings - International Conference on Data Engineering

External Full Text Location

https://doi.org/10.1109/ICDE60146.2024.00444

e-ISSN

23750286

ISSN

10844627

First Page

5560

Last Page

5573

Grant

2245374

Fund Ref

Natural Sciences and Engineering Research Council of Canada

Recommended Citation

Zhang, Shufan; He, Xi; Kundu, Ashish; Mehrotra, Sharad; and Sharma, Shantanu, "Secure Normal Form: Mediation among Cross Cryptographic Leakages in Encrypted Databases" (2024). Faculty Publications. 930.
https://digitalcommons.njit.edu/fac_pubs/930