Practical private range search revisited

Ioannis Demertzis; Stavros Papadopoulos; Odysseas Papapetrou; Antonios Deligiannakis; Minos Garofalakis

doi:10.1145/2882903.2882911

Practical private range search revisited

Ioannis Demertzis, Stavros Papadopoulos, Odysseas Papapetrou, Antonios Deligiannakis, Minos Garofalakis

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

125 Citations (Scopus)

Abstract

We consider a data owner that outsources its dataset to an untrusted server. The owner wishes to enable the server to answer range queries on a single attribute, without compromising the privacy of the data and the queries. There are several schemes on "practical" private range search (mainly in Databases venues) that attempt to strike a trade-off between efficiency and security. Nevertheless, these methods either lack provable security guarantees, or permit unacceptable privacy leakages. In this paper, we take an interdisciplinary approach, which combines the rigor of Security formulations and proofs with efficient Data Management techniques. We construct a wide set of novel schemes with realistic security/performance trade-offs, adopting the notion of Searchable Symmetric Encryption (SSE) primarily proposed for keyword search. We reduce range search to multi- keyword search using range covering techniques with treelike indexes. We demonstrate that, given any secure SSE scheme, the challenge boils down to (i) formulating leakages that arise from the index structure, and (ii) minimizing false positives incurred by some schemes under heavy data skew. We analytically detail the superiority of our proposals over prior work and experimentally confirm their practicality.

Original language	English
Title of host publication	SIGMOD 2016 - Proceedings of the 2016 International Conference on Management of Data
Place of Publication	New York
Publisher	Association for Computing Machinery, Inc
Pages	185-198
Number of pages	14
ISBN (Electronic)	9781450335317
DOIs	https://doi.org/10.1145/2882903.2882911
Publication status	Published - 26 Jun 2016
Externally published	Yes
Event	2016 ACM SIGMOD International Conference on Management of Data, SIGMOD 2016 - San Francisco, United States Duration: 26 Jun 2016 → 1 Jul 2016

Conference

Conference	2016 ACM SIGMOD International Conference on Management of Data, SIGMOD 2016
Country/Territory	United States
City	San Francisco
Period	26/06/16 → 1/07/16

Funding

This work was partially supported by the European Commission under ICT-FP7-LEADS-318809 (Large-Scale Elastic Architecture for Data-as-a-Service) and ICT-FP7-Quali-Master-619525 (A Configurable Real-time Data Processing Infrastructure Mastering Autonomous Quality Adaptation).

Access to Document

10.1145/2882903.2882911

Cite this

@inproceedings{ec358e30cca04094a36c3e026e5f8ab7,

title = "Practical private range search revisited",

abstract = "We consider a data owner that outsources its dataset to an untrusted server. The owner wishes to enable the server to answer range queries on a single attribute, without compromising the privacy of the data and the queries. There are several schemes on {"}practical{"} private range search (mainly in Databases venues) that attempt to strike a trade-off between efficiency and security. Nevertheless, these methods either lack provable security guarantees, or permit unacceptable privacy leakages. In this paper, we take an interdisciplinary approach, which combines the rigor of Security formulations and proofs with efficient Data Management techniques. We construct a wide set of novel schemes with realistic security/performance trade-offs, adopting the notion of Searchable Symmetric Encryption (SSE) primarily proposed for keyword search. We reduce range search to multi- keyword search using range covering techniques with treelike indexes. We demonstrate that, given any secure SSE scheme, the challenge boils down to (i) formulating leakages that arise from the index structure, and (ii) minimizing false positives incurred by some schemes under heavy data skew. We analytically detail the superiority of our proposals over prior work and experimentally confirm their practicality.",

author = "Ioannis Demertzis and Stavros Papadopoulos and Odysseas Papapetrou and Antonios Deligiannakis and Minos Garofalakis",

year = "2016",

month = jun,

day = "26",

doi = "10.1145/2882903.2882911",

language = "English",

pages = "185--198",

booktitle = "SIGMOD 2016 - Proceedings of the 2016 International Conference on Management of Data",

publisher = "Association for Computing Machinery, Inc",

address = "United States",

note = "2016 ACM SIGMOD International Conference on Management of Data, SIGMOD 2016 ; Conference date: 26-06-2016 Through 01-07-2016",

}

Demertzis, I, Papadopoulos, S, Papapetrou, O, Deligiannakis, A & Garofalakis, M 2016, Practical private range search revisited. in SIGMOD 2016 - Proceedings of the 2016 International Conference on Management of Data. Association for Computing Machinery, Inc, New York, pp. 185-198, 2016 ACM SIGMOD International Conference on Management of Data, SIGMOD 2016, San Francisco, United States, 26/06/16. https://doi.org/10.1145/2882903.2882911

Practical private range search revisited. / Demertzis, Ioannis; Papadopoulos, Stavros; Papapetrou, Odysseas et al.
SIGMOD 2016 - Proceedings of the 2016 International Conference on Management of Data. New York: Association for Computing Machinery, Inc, 2016. p. 185-198.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Practical private range search revisited

AU - Demertzis, Ioannis

AU - Papadopoulos, Stavros

AU - Papapetrou, Odysseas

AU - Deligiannakis, Antonios

AU - Garofalakis, Minos

PY - 2016/6/26

Y1 - 2016/6/26

N2 - We consider a data owner that outsources its dataset to an untrusted server. The owner wishes to enable the server to answer range queries on a single attribute, without compromising the privacy of the data and the queries. There are several schemes on "practical" private range search (mainly in Databases venues) that attempt to strike a trade-off between efficiency and security. Nevertheless, these methods either lack provable security guarantees, or permit unacceptable privacy leakages. In this paper, we take an interdisciplinary approach, which combines the rigor of Security formulations and proofs with efficient Data Management techniques. We construct a wide set of novel schemes with realistic security/performance trade-offs, adopting the notion of Searchable Symmetric Encryption (SSE) primarily proposed for keyword search. We reduce range search to multi- keyword search using range covering techniques with treelike indexes. We demonstrate that, given any secure SSE scheme, the challenge boils down to (i) formulating leakages that arise from the index structure, and (ii) minimizing false positives incurred by some schemes under heavy data skew. We analytically detail the superiority of our proposals over prior work and experimentally confirm their practicality.

AB - We consider a data owner that outsources its dataset to an untrusted server. The owner wishes to enable the server to answer range queries on a single attribute, without compromising the privacy of the data and the queries. There are several schemes on "practical" private range search (mainly in Databases venues) that attempt to strike a trade-off between efficiency and security. Nevertheless, these methods either lack provable security guarantees, or permit unacceptable privacy leakages. In this paper, we take an interdisciplinary approach, which combines the rigor of Security formulations and proofs with efficient Data Management techniques. We construct a wide set of novel schemes with realistic security/performance trade-offs, adopting the notion of Searchable Symmetric Encryption (SSE) primarily proposed for keyword search. We reduce range search to multi- keyword search using range covering techniques with treelike indexes. We demonstrate that, given any secure SSE scheme, the challenge boils down to (i) formulating leakages that arise from the index structure, and (ii) minimizing false positives incurred by some schemes under heavy data skew. We analytically detail the superiority of our proposals over prior work and experimentally confirm their practicality.

UR - http://www.scopus.com/inward/record.url?scp=84979666710&partnerID=8YFLogxK

U2 - 10.1145/2882903.2882911

DO - 10.1145/2882903.2882911

M3 - Conference contribution

AN - SCOPUS:84979666710

SP - 185

EP - 198

BT - SIGMOD 2016 - Proceedings of the 2016 International Conference on Management of Data

PB - Association for Computing Machinery, Inc

CY - New York

T2 - 2016 ACM SIGMOD International Conference on Management of Data, SIGMOD 2016

Y2 - 26 June 2016 through 1 July 2016

ER -

Practical private range search revisited

Abstract

Conference

Funding

Access to Document

Other files and links

Fingerprint

Cite this