Download
1 / 12
140 likes | 303 Vues
This paper explores innovative methods for secure data outsourcing, focusing on the integration of fragmentation and encryption techniques. By breaking sensitive associations between attributes, we enhance data confidentiality while allowing specified attribute release under defined constraints. The study discusses various examples, including singleton constraints and how to optimally fragment attributes in a distributed database setting. We delve into complexities of enforcing confidentiality constraints, maximizing visibility and attribute affinity, with insights into NP-hard problem challenges.
E N D
CS573 Data Privacy and Security Secure data outsourcing – Combining encryption and fragmentation
Combining Fragmentation and Encryption for outsourcing • Breaking sensitive associations between attributes
Confidentiality Constraints • Example: constraint {DoB, Zip, Illness} • Okay to release {DoB, Zip}, {Zip}, …
Basic ideas • Singleton constraints • encryption • Association constraints • encryption of any one attribute • Fragmentation of the attributes
Fragmentation • Classical distributed database design problem (vertical fragmentation) • Total number of possible fragmentations given N attributes? • What would be an optimal fragmentation?
Optimal fragmentation • Correctly enforce constraints • Maximal visibility • Minimal fragmentation • Maximal attribute affinity • Problem is NP hard
Algorithm without confidentiality constraints • Without confidentiality constraints - Hierarchical clustering • With confidentiality constraints? • {s}, {n,d}, {n,z}, {n, i}, {n, p}, {d, z, i}, {d, z, p}
References • Combining fragmentation and encryption to protect privacy in data storage, TISSEC, 2010 • Fragmentation design for efficient query execution over sensitive distributed databases, ICDCS, 2009
