Abstract
A new simple and efficient database encryption scheme is presented. The new scheme enables encrypting the entire content of the database without changing its structure. In addition, the scheme suggests how to convert the conventional database index to a secure index on the encrypted database so that the time complexity of all queries is maintained. No one with access to the encrypted database can learn anything about its content without having the encryption key.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Date, C.J.: An Introduction to Database Systems, 5th edn., vol. 1. Addison Wesley, Massachusetts (1990)
Fernandez, E.B., Summers, R.C., Wood, C.: Database Security and Integrity. Addison-Wesley, Massachusetts (1980)
Coper, J.A.: Computer & Communication Security: Strategies for the 1990s. McGraw-Hill, New York (1989)
Conway, R.W., Maxwell, W.L., Morgan, H.L.: On the implementation of security measures in information systems. Communications of the ACM 15(4), 211–220 (1972)
Graham, G.S., Denning, P.J.: Protection - Principles and practice. In: Proc. Spring Jt. Computer Conf., Montrale, N.J., vol. 40, pp. 417–429. AFIPS (1972)
Hwang, M.S., Yang, W.P.: A new dynamic access control scheme based on subjectobject- list. Data and Knowledge Engineering 14(1), 45–56 (1994)
Garvey, C., Wu, A.: ASD-Views. In: Proc. IEEE Symposium on Security and Privacy, Oakland, California, pp. 85–95 (1988)
Lunt, T.F., Denning, D.E., Schell, R.R., Heckman, M., Shockley, W.R.: The SeaView security model. IEEE Trans. on Software Engineering SE-16(6), 593–607 (1990)
Stachour, P.D., Thuraisingham, B.: Design of LDV: A multilevel secure relational database management system. IEEE Trans. on Knowledge and Data Engineering 2(2), 190–209 (1990)
National Bureau of Standards. Data Encryption Standard. FIPS, NBS (1977)
Rivest, R.L., Shamir, A., Adleman, L.: A method for obtaining digital signatures and public key cryptosystems. Communications of the ACM 21(2), 120–126 (1978)
Smid, M.E., Branstad, D.K.: The data encryption standard: past and future. Proc. IEEE 76(5), 550–559 (1988)
Davida, G.I., Wells, D.L., Kam, J.B.: A Database Encryption System with Subkeys. ACM Trans. Database Syst. 6, 312–328 (1981)
Min-Shiang, H., Wei-Pang, Y.: Multilevel secure database encryption with subkeys. Data and Knowledge Engineering 22, 117–131 (1997)
Damiani, E., De Capitani diVimercati, S., Jajodia, S., Paraboschi, S., Samarati, P.: Balancing Confidentiality and Efficiency in Untrusted Relational DBMSs. In: CCS 2003, Washington, pp. 27–31 (2003)
Denning, D.E.: Cryptography and Data Security. Addison-Wesley, Massachusetts (1982)
Hacigümüs, H., Iyer, B., Li, C., Mehrotra, S.: Executing SQL over encrypted data in the database-service-provider model. In: Proc. of the ACM SIGMOD 2002, Madison, Wisconsin, USA (2002)
Iyer, B., Mehrotra, S., Mykletun, E., Tsudik, G., Wu, Y.: A Framework for Efficient Storage Security in RDBMS. In: Bertino, E., Christodoulakis, S., Plexousakis, D., Christophides, V., Koubarakis, M., Böhm, K., Ferrari, E. (eds.) EDBT 2004. LNCS, vol. 2992, pp. 147–164. Springer, Heidelberg (2004)
Bouganim, L., Pucheral, P.: Chip-secured data access: Confidential data on untrusted servers. In: Proc. of the 28th International Conference on Very Large Data Bases, Hong Kong, China, pp. 131–142 (2002)
Database Encryption in Oracle9iTM. An Oracle Technical White Paper (2001)
Bayer, R., Metzger, J.K.: On the Encipherment of Search Trees and Random Access Files. ACM Trans Database Systems 1, 37–52 (1976)
Bertino, E., Ferrari, E.: Secure and Selective Dissemination of XML Documents. ACM Transactions on Information and System Security 5(3), 290–331 (2002)
Hwang, M.S., Yang, W.P.: A two-phase encryption scheme for enhancing database security. J. Systems and Software 31(12), 257–265 (1995)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Elovici, Y., Waisenberg, R., Shmueli, E., Gudes, E. (2004). A Structure Preserving Database Encryption Scheme. In: Jonker, W., Petković, M. (eds) Secure Data Management. SDM 2004. Lecture Notes in Computer Science, vol 3178. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30073-1_3
Download citation
DOI: https://doi.org/10.1007/978-3-540-30073-1_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-22983-4
Online ISBN: 978-3-540-30073-1
eBook Packages: Springer Book Archive