DocumentCode :
1248942
Title :
Write-Once Read-Many Oblivious RAM
Author :
Carbunar, Bogdan ; Sion, Radu
Author_Institution :
Sch. of Comput. & Inf. Sci., Florida Int. Univ., Miami, FL, USA
Volume :
6
Issue :
4
fYear :
2011
Firstpage :
1394
Lastpage :
1403
Abstract :
We introduce WORM-ORAM, a first mechanism that combines Oblivious RAM (ORAM) access privacy and data confidentiality with Write-Once Read-Many (WORM) regulatory data retention guarantees. Clients can outsource their database to a server with full confidentiality and data access privacy, and, for data retention, the server ensures client access WORM semantics. In general simple confidentiality and WORM assurances are easily achievable, e.g., via an encrypted outsourced data repository with server-enforced read-only access to existing records (albeit encrypted). However, this becomes hard when also access privacy is to be ensured-when client access patterns are necessarily hidden and the server cannot enforce access control directly. WORM-ORAM overcomes this by deploying a set of zero-knowledge proofs to convince the server that all stages of the protocol are WORM-compliant.
Keywords :
cryptography; data privacy; database management systems; outsourcing; random-access storage; client access WORM semantics; data access privacy; data confidentiality; data retention; database outsource; encrypted outsourced data repository; server enforced read only access; write once read many oblivious RAM; zero knowledge proofs; Client-server systems; Data privacy; Data security; Databases; Encryption; Government policies; Data privacy; data security; outsourcing;
fLanguage :
English
Journal_Title :
Information Forensics and Security, IEEE Transactions on
Publisher :
ieee
ISSN :
1556-6013
Type :
jour
DOI :
10.1109/TIFS.2011.2160169
Filename :
5898408
Link To Document :
بازگشت