poster

ABSS: An Attribute-based Sanitizable Signature for Integrity of Outsourced Database with Public Cloud

Authors:

Lei Xu,

Xinwen Zhang,

Xiaoxin Wu,

Weidong ShiAuthors Info & Claims

CODASPY '15: Proceedings of the 5th ACM Conference on Data and Application Security and Privacy

Pages 167 - 169

https://doi.org/10.1145/2699026.2699135

Published: 02 March 2015 Publication History

Get Access

Abstract

Database outsourcing is an important application of cloud computing, and security is one of the most critical concerns in adopting this application model, such as data privacy, query privacy, etc. Data integrity is another essential requirement for outsourced database system. When the database is outsourced to public cloud, the situation is more complex as different users may modify the data and these users may hold different privileges for different parts of the database. Furthermore, as the cloud is in charge of the management of the database, users have to rely on the cloud to guarantee data integrity. We propose ABSS to protect the integrity of outsourced database which supports fine-grained modification policy. ABSS utilizes an attribute based sanitizable signature scheme, which combining the ingredients of attribute based encryption and sanitizable signature. ABSS enables the database owner to deploy fine-grained policy of database modification and can detect illegal modifications without trusting the cloud. We also discuss the security properties and performance of ABSS to show its practicability.

References

[1]

Apache. Accumulo https://accumulo.apache.org/.

Google Scholar

[2]

G. Ateniese, D. H. Chou, B. de Medeiros, and G. Tsudik. Sanitizable signatures. In S. D. C. di Vimercati, P. F. Syverson, and D. Gollmann, editors, European Symposium on Research in Computer Security - ESORICS 2005, volume 7459 of LNCS, pages 159--177. Springer-Verlag, 2005.

Digital Library

Google Scholar

[3]

G. Ateniese and B. de Medeiros. On the key exposure problem in chameleon hashes. In C. Blundo and S. Cimato, editors, Security in Communication Networks - SCN 2004, volume 3352 of LNCS, pages 165--179. Springer-Verlag, 2004.

Digital Library

Google Scholar

[4]

S. Bajaj and R. Sion. TrustedDB: A trusted hardware-based database with privacy and data confidentiality. IEEE Transactions on Knowledge and Data Engineering, 26(3):752--765, 2014.

Digital Library

Google Scholar

[5]

J. Bethencourt, A. Sahai, and B. Waters. Ciphertext-policy attribute-based encryption. In IEEE Symposium on Security and Privacy - S&P 2007, pages 321--334. IEEE Computer Society, 2007.

Digital Library

Google Scholar

[6]

Y. Deswarte, J.-J. Quisquater, and A. Saïdane. Remote integrity checking. In Integrity and Internal Control in Information Systems VI, pages 1--11. Springer, 2004.

Crossref

Google Scholar

[7]

H. Hacigumus, B. R. Iyer, C. Li, and S. Mehrotra. Executing sql over encrypted data in the database-service-provider model. In M. J. Franklin, B. Moon, and A. Ailamaki, editors, Proceedings of the ACM International Conference on Management of Data - SIGMOD 2002, pages 216--227. ACM, 2002.

Digital Library

Google Scholar

[8]

H. Hacigumus, B. Iyer, and S. Mehrotra. Ensuring the integrity of encrypted databases in the database-as-a-service model. In Data and Applications Security XVII, pages 61--74. Springer, 2004.

Crossref

Google Scholar

[9]

M. Klonowski and A. Lauks. Extended sanitizable signatures. In M. S. Rhee and B. Lee, editors, Information Security and Cryptology - ICISC 2006, volume 4296 of LNCS, pages 343--355. Springer-Verlag, 2006.

Digital Library

Google Scholar

[10]

M. Narasimha and G. Tsudik. Dsac: integrity for outsourced databases with signature aggregation and chaining. In Proceedings of the 14th ACM international conference on Information and knowledge management, pages 235--236. ACM, 2005.

Digital Library

Google Scholar

[11]

R. Sion. Query execution assurance for outsourced databases. In Proceedings of the 31st international conference on Very large data bases, pages 601--612. VLDB Endowment, 2005.

Digital Library

Google Scholar

[12]

H. Wang, J. Yin, C.-s. Perng, C.-s., and P. S. Yu. Dual encryption for query integrity assurance. In Proceedings of the 17th ACM conference on Information and knowledge management, pages 863--872. ACM, 2008.

Digital Library

Google Scholar

[13]

Y. Zhu, H. Wang, Z. Hu, G.-J. Ahn, H. Hu, and S. S. Yau. Dynamic audit services for integrity verification of outsourced storages in clouds. In Proceedings of the 2011 ACM Symposium on Applied Computing, pages 1550--1557. ACM, 2011.

Digital Library

Google Scholar

Cited By

View all

Hou HNing JZhao YDeng R(2022)Fine-Grained and Controllably Editable Data Sharing With Accountability in Cloud StorageIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2021.310040119:5(3448-3463)Online publication date: 1-Sep-2022
https://doi.org/10.1109/TDSC.2021.3100401
Mo RMa JLiu XLi Q(2018)FABSS: Attribute-Based Sanitizable Signature for Flexible Access StructureInformation and Communications Security10.1007/978-3-319-89500-0_3(39-50)Online publication date: 10-Apr-2018
https://doi.org/10.1007/978-3-319-89500-0_3
Ahmadian MPlochan FRoessler ZMarinescu D(2017)SecureNoSQLInternational Journal of Information Management: The Journal for Information Professionals10.1016/j.ijinfomgt.2016.11.00537:2(63-74)Online publication date: 1-Apr-2017
https://dl.acm.org/doi/10.1016/j.ijinfomgt.2016.11.005
Show More Cited By

Index Terms

ABSS: An Attribute-based Sanitizable Signature for Integrity of Outsourced Database with Public Cloud
1. Security and privacy
  1. Systems security
    1. Operating systems security

Recommendations

CL-PRE: a certificateless proxy re-encryption scheme for secure data sharing with public cloud
ASIACCS '12: Proceedings of the 7th ACM Symposium on Information, Computer and Communications Security

We propose CL-PRE, a certificateless proxy re-encryption scheme for secure data sharing with public cloud, which leverages maximal cloud resources to reduce the computing and communication cost for data owner. Towards running proxy in public cloud ...
Poster: a certificateless proxy re-encryption scheme for cloud-based data sharing
CCS '11: Proceedings of the 18th ACM conference on Computer and communications security

We propose CL-PRE, a certificateless proxy re-encryption scheme for data sharing with cloud. In CL-PRE, a data owner encrypts shared data in cloud with an encryption key, which is further encrypted and transformed by cloud, and then distributed to ...
Secure, efficient and revocable multi-authority access control system in cloud storage

A multi-authority attribute-based access control system for cloud storage is proposed.An adaptively secure multi-authority CP-ABE (MA-CP-ABE) scheme in the standard model.A decryption outsourcing method for the proposed MA-CP-ABE scheme.An attribute-...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

CODASPY '15: Proceedings of the 5th ACM Conference on Data and Application Security and Privacy

March 2015

362 pages

ISBN:9781450331913

DOI:10.1145/2699026

General Chair:
Jaehong Park
University of Texas at San Antonio, USA
,
Program Chair:
Anna Squicciarini
The Pennsylvania State University, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 02 March 2015

Check for updates

Author Tags

Qualifiers

Poster

Conference

CODASPY'15

Sponsor:

SIGSAC

CODASPY'15: Fifth ACM Conference on Data and Application Security and Privacy

March 2 - 4, 2015

Texas, San Antonio, USA

Acceptance Rates

CODASPY '15 Paper Acceptance Rate 19 of 91 submissions, 21%;

Overall Acceptance Rate 149 of 789 submissions, 19%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

4
Total Citations
View Citations
326
Total Downloads

Downloads (Last 12 months)11
Downloads (Last 6 weeks)2

Reflects downloads up to 21 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Hou HNing JZhao YDeng R(2022)Fine-Grained and Controllably Editable Data Sharing With Accountability in Cloud StorageIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2021.310040119:5(3448-3463)Online publication date: 1-Sep-2022
https://doi.org/10.1109/TDSC.2021.3100401
Mo RMa JLiu XLi Q(2018)FABSS: Attribute-Based Sanitizable Signature for Flexible Access StructureInformation and Communications Security10.1007/978-3-319-89500-0_3(39-50)Online publication date: 10-Apr-2018
https://doi.org/10.1007/978-3-319-89500-0_3
Ahmadian MPlochan FRoessler ZMarinescu D(2017)SecureNoSQLInternational Journal of Information Management: The Journal for Information Professionals10.1016/j.ijinfomgt.2016.11.00537:2(63-74)Online publication date: 1-Apr-2017
https://dl.acm.org/doi/10.1016/j.ijinfomgt.2016.11.005
Siddiqa AHashem IYaqoob IMarjani MShamshirband SGani ANasaruddin F(2016)A survey of big data managementJournal of Network and Computer Applications10.1016/j.jnca.2016.04.00871:C(151-166)Online publication date: 1-Aug-2016
https://dl.acm.org/doi/10.1016/j.jnca.2016.04.008

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

CL-PRE: a certificateless proxy re-encryption scheme for secure data sharing with public cloud

Poster: a certificateless proxy re-encryption scheme for cloud-based data sharing

Secure, efficient and revocable multi-authority access control system in cloud storage