Title :
Access Control Enforcement on Query-Aware Encrypted Cloud Databases
Author :
Ferretti, Luca ; Colajanni, Michele ; Marchetti, Mirco
Author_Institution :
Univ. of Modena & Reggio Emilia, Modena, Italy
Abstract :
The diffusion of cloud database services requires a lot of efforts to improve confidentiality of data stored in external infrastructures. We propose a novel scheme that integrates data encryption with users access control mechanisms. It can be used to guarantee confidentiality of data with respect to a public cloud infrastructure, and to minimize the risks of internal data leakage even in the worst case of a legitimate user colluding with some cloud provider personnel. The correctness and feasibility of the proposal is demonstrated through formal models, while the integration in a cloud-based architecture is left to future work.
Keywords :
authorisation; cloud computing; cryptography; data privacy; formal verification; access control enforcement; data confidentiality; data encryption; formal model; internal data leakage; public cloud infrastructure; query-aware encrypted cloud database; Authorization; Cloud computing; Data models; Databases; Encryption;
Conference_Titel :
Cloud Computing Technology and Science (CloudCom), 2013 IEEE 5th International Conference on
Conference_Location :
Bristol
DOI :
10.1109/CloudCom.2013.172
