DocumentCode
680797
Title
Access Control Enforcement on Query-Aware Encrypted Cloud Databases
Author
Ferretti, Luca ; Colajanni, Michele ; Marchetti, Mirco
Author_Institution
Univ. of Modena & Reggio Emilia, Modena, Italy
Volume
2
fYear
2013
fDate
2-5 Dec. 2013
Firstpage
219
Lastpage
219
Abstract
The diffusion of cloud database services requires a lot of efforts to improve confidentiality of data stored in external infrastructures. We propose a novel scheme that integrates data encryption with users access control mechanisms. It can be used to guarantee confidentiality of data with respect to a public cloud infrastructure, and to minimize the risks of internal data leakage even in the worst case of a legitimate user colluding with some cloud provider personnel. The correctness and feasibility of the proposal is demonstrated through formal models, while the integration in a cloud-based architecture is left to future work.
Keywords
authorisation; cloud computing; cryptography; data privacy; formal verification; access control enforcement; data confidentiality; data encryption; formal model; internal data leakage; public cloud infrastructure; query-aware encrypted cloud database; Authorization; Cloud computing; Data models; Databases; Encryption;
fLanguage
English
Publisher
ieee
Conference_Titel
Cloud Computing Technology and Science (CloudCom), 2013 IEEE 5th International Conference on
Conference_Location
Bristol
Type
conf
DOI
10.1109/CloudCom.2013.172
Filename
6735422
Link To Document