Scalable Architecture for Multi-User Encrypted SQL Operations on Cloud Database Services

The success of the cloud database paradigm is strictly related to strong guarantees in terms of service availability, scalability and security, but also of data confidentiality. Any cloud provider assures the security and availability of its platform, while the implementation of scalable solutions t...

Full description

Saved in:
Bibliographic Details
Published in:IEEE transactions on cloud computing 2014-10, Vol.2 (4), p.448-458
Main Authors: Ferretti, Luca, Pierazzi, Fabio, Colajanni, Michele, Marchetti, Mirco
Format: Article
Language:English
Subjects:
Access Control
Authorization
Cloud computing
Computer architecture
Computer security
Confidentiality
Encryption
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
cited_by cdi_FETCH-LOGICAL-c399t-75f6632a8ee004d9ed0e529ce962b03c5b316e4495b124c3a847191a3b7d5313
cites cdi_FETCH-LOGICAL-c399t-75f6632a8ee004d9ed0e529ce962b03c5b316e4495b124c3a847191a3b7d5313
container_end_page 458
container_issue 4
container_start_page 448
container_title IEEE transactions on cloud computing
container_volume 2
creator Ferretti, Luca
Pierazzi, Fabio
Colajanni, Michele
Marchetti, Mirco
description The success of the cloud database paradigm is strictly related to strong guarantees in terms of service availability, scalability and security, but also of data confidentiality. Any cloud provider assures the security and availability of its platform, while the implementation of scalable solutions to guarantee confidentiality of the information stored in cloud databases is an open problem left to the tenant. Existing solutions address some preliminary issues through SQL operations on encrypted data. We propose the first complete architecture that combines data encryption, key management, authentication and authorization solutions, and that addresses the issues related to typical threat scenarios for cloud database services. Formal models describe the proposed solutions for enforcing access control and for guaranteeing confidentiality of data and metadata. Experimental evaluations based on standard benchmarks and real Internet scenarios show that the proposed architecture satisfies also scalability and performance requirements.
doi_str_mv 10.1109/TCC.2014.2378782
format article
fullrecord <record><control><sourceid>crossref_ieee_</sourceid><recordid>TN_cdi_crossref_primary_10_1109_TCC_2014_2378782</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>6977940</ieee_id><sourcerecordid>10_1109_TCC_2014_2378782</sourcerecordid><originalsourceid>FETCH-LOGICAL-c399t-75f6632a8ee004d9ed0e529ce962b03c5b316e4495b124c3a847191a3b7d5313</originalsourceid><addsrcrecordid>eNpNkF1LwzAUhoMoOObuBW_yBzpzkjRpLkedHzAZsgrelTQ9xUptR5IK-_d2bIjvzXkvznM4PITcAlsCMHNf5PmSM5BLLnSmM35BZhxUlmhQcPmvX5NFCF9sSpaCATMjHztnO1t1SFfefbYRXRw90mbw9HXsYpu8B_R03Tt_2Ees6e5tQ7d79Da2Qx_o0NO8G8aaPthoKxuQ7tD_tA7DDblqbBdwcZ5zUjyui_w52WyfXvLVJnHCmJjotFFKcJshMiZrgzXDlBuHRvGKCZdWAhRKadIKuHTCZlJPn1tR6ToVIOaEnc46P4TgsSn3vv22_lACK49uyslNeXRTnt1MyN0JaRHxb10ZrY1k4heVa19B</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Scalable Architecture for Multi-User Encrypted SQL Operations on Cloud Database Services</title><source>IEEE Electronic Library (IEL) Journals</source><creator>Ferretti, Luca ; Pierazzi, Fabio ; Colajanni, Michele ; Marchetti, Mirco</creator><creatorcontrib>Ferretti, Luca ; Pierazzi, Fabio ; Colajanni, Michele ; Marchetti, Mirco</creatorcontrib><description>The success of the cloud database paradigm is strictly related to strong guarantees in terms of service availability, scalability and security, but also of data confidentiality. Any cloud provider assures the security and availability of its platform, while the implementation of scalable solutions to guarantee confidentiality of the information stored in cloud databases is an open problem left to the tenant. Existing solutions address some preliminary issues through SQL operations on encrypted data. We propose the first complete architecture that combines data encryption, key management, authentication and authorization solutions, and that addresses the issues related to typical threat scenarios for cloud database services. Formal models describe the proposed solutions for enforcing access control and for guaranteeing confidentiality of data and metadata. Experimental evaluations based on standard benchmarks and real Internet scenarios show that the proposed architecture satisfies also scalability and performance requirements.</description><identifier>ISSN: 2168-7161</identifier><identifier>EISSN: 2168-7161</identifier><identifier>EISSN: 2372-0018</identifier><identifier>DOI: 10.1109/TCC.2014.2378782</identifier><identifier>CODEN: ITCCF6</identifier><language>eng</language><publisher>IEEE Computer Society</publisher><subject>Access Control ; Authorization ; Cloud computing ; Computer architecture ; Computer security ; Confidentiality ; Encryption</subject><ispartof>IEEE transactions on cloud computing, 2014-10, Vol.2 (4), p.448-458</ispartof><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c399t-75f6632a8ee004d9ed0e529ce962b03c5b316e4495b124c3a847191a3b7d5313</citedby><cites>FETCH-LOGICAL-c399t-75f6632a8ee004d9ed0e529ce962b03c5b316e4495b124c3a847191a3b7d5313</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/6977940$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>314,780,784,27922,27923,54794</link.rule.ids></links><search><creatorcontrib>Ferretti, Luca</creatorcontrib><creatorcontrib>Pierazzi, Fabio</creatorcontrib><creatorcontrib>Colajanni, Michele</creatorcontrib><creatorcontrib>Marchetti, Mirco</creatorcontrib><title>Scalable Architecture for Multi-User Encrypted SQL Operations on Cloud Database Services</title><title>IEEE transactions on cloud computing</title><addtitle>TCC</addtitle><description>The success of the cloud database paradigm is strictly related to strong guarantees in terms of service availability, scalability and security, but also of data confidentiality. Any cloud provider assures the security and availability of its platform, while the implementation of scalable solutions to guarantee confidentiality of the information stored in cloud databases is an open problem left to the tenant. Existing solutions address some preliminary issues through SQL operations on encrypted data. We propose the first complete architecture that combines data encryption, key management, authentication and authorization solutions, and that addresses the issues related to typical threat scenarios for cloud database services. Formal models describe the proposed solutions for enforcing access control and for guaranteeing confidentiality of data and metadata. Experimental evaluations based on standard benchmarks and real Internet scenarios show that the proposed architecture satisfies also scalability and performance requirements.</description><subject>Access Control</subject><subject>Authorization</subject><subject>Cloud computing</subject><subject>Computer architecture</subject><subject>Computer security</subject><subject>Confidentiality</subject><subject>Encryption</subject><issn>2168-7161</issn><issn>2168-7161</issn><issn>2372-0018</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2014</creationdate><recordtype>article</recordtype><recordid>eNpNkF1LwzAUhoMoOObuBW_yBzpzkjRpLkedHzAZsgrelTQ9xUptR5IK-_d2bIjvzXkvznM4PITcAlsCMHNf5PmSM5BLLnSmM35BZhxUlmhQcPmvX5NFCF9sSpaCATMjHztnO1t1SFfefbYRXRw90mbw9HXsYpu8B_R03Tt_2Ees6e5tQ7d79Da2Qx_o0NO8G8aaPthoKxuQ7tD_tA7DDblqbBdwcZ5zUjyui_w52WyfXvLVJnHCmJjotFFKcJshMiZrgzXDlBuHRvGKCZdWAhRKadIKuHTCZlJPn1tR6ToVIOaEnc46P4TgsSn3vv22_lACK49uyslNeXRTnt1MyN0JaRHxb10ZrY1k4heVa19B</recordid><startdate>201410</startdate><enddate>201410</enddate><creator>Ferretti, Luca</creator><creator>Pierazzi, Fabio</creator><creator>Colajanni, Michele</creator><creator>Marchetti, Mirco</creator><general>IEEE Computer Society</general><scope>97E</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope></search><sort><creationdate>201410</creationdate><title>Scalable Architecture for Multi-User Encrypted SQL Operations on Cloud Database Services</title><author>Ferretti, Luca ; Pierazzi, Fabio ; Colajanni, Michele ; Marchetti, Mirco</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c399t-75f6632a8ee004d9ed0e529ce962b03c5b316e4495b124c3a847191a3b7d5313</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2014</creationdate><topic>Access Control</topic><topic>Authorization</topic><topic>Cloud computing</topic><topic>Computer architecture</topic><topic>Computer security</topic><topic>Confidentiality</topic><topic>Encryption</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Ferretti, Luca</creatorcontrib><creatorcontrib>Pierazzi, Fabio</creatorcontrib><creatorcontrib>Colajanni, Michele</creatorcontrib><creatorcontrib>Marchetti, Mirco</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Xplore / Electronic Library Online (IEL)</collection><collection>CrossRef</collection><jtitle>IEEE transactions on cloud computing</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Ferretti, Luca</au><au>Pierazzi, Fabio</au><au>Colajanni, Michele</au><au>Marchetti, Mirco</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Scalable Architecture for Multi-User Encrypted SQL Operations on Cloud Database Services</atitle><jtitle>IEEE transactions on cloud computing</jtitle><stitle>TCC</stitle><date>2014-10</date><risdate>2014</risdate><volume>2</volume><issue>4</issue><spage>448</spage><epage>458</epage><pages>448-458</pages><issn>2168-7161</issn><eissn>2168-7161</eissn><eissn>2372-0018</eissn><coden>ITCCF6</coden><abstract>The success of the cloud database paradigm is strictly related to strong guarantees in terms of service availability, scalability and security, but also of data confidentiality. Any cloud provider assures the security and availability of its platform, while the implementation of scalable solutions to guarantee confidentiality of the information stored in cloud databases is an open problem left to the tenant. Existing solutions address some preliminary issues through SQL operations on encrypted data. We propose the first complete architecture that combines data encryption, key management, authentication and authorization solutions, and that addresses the issues related to typical threat scenarios for cloud database services. Formal models describe the proposed solutions for enforcing access control and for guaranteeing confidentiality of data and metadata. Experimental evaluations based on standard benchmarks and real Internet scenarios show that the proposed architecture satisfies also scalability and performance requirements.</abstract><pub>IEEE Computer Society</pub><doi>10.1109/TCC.2014.2378782</doi><tpages>11</tpages></addata></record>
fulltext fulltext
identifier ISSN: 2168-7161
ispartof IEEE transactions on cloud computing, 2014-10, Vol.2 (4), p.448-458
issn 2168-7161
2168-7161
2372-0018
language eng
recordid cdi_crossref_primary_10_1109_TCC_2014_2378782
source IEEE Electronic Library (IEL) Journals
subjects Access Control
Authorization
Cloud computing
Computer architecture
Computer security
Confidentiality
Encryption
title Scalable Architecture for Multi-User Encrypted SQL Operations on Cloud Database Services
url http://sfxeu10.hosted.exlibrisgroup.com/loughborough?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-13T12%3A06%3A55IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-crossref_ieee_&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Scalable%20Architecture%20for%20Multi-User%20Encrypted%20SQL%20Operations%20on%20Cloud%20Database%20Services&rft.jtitle=IEEE%20transactions%20on%20cloud%20computing&rft.au=Ferretti,%20Luca&rft.date=2014-10&rft.volume=2&rft.issue=4&rft.spage=448&rft.epage=458&rft.pages=448-458&rft.issn=2168-7161&rft.eissn=2168-7161&rft.coden=ITCCF6&rft_id=info:doi/10.1109/TCC.2014.2378782&rft_dat=%3Ccrossref_ieee_%3E10_1109_TCC_2014_2378782%3C/crossref_ieee_%3E%3Cgrp_id%3Ecdi_FETCH-LOGICAL-c399t-75f6632a8ee004d9ed0e529ce962b03c5b316e4495b124c3a847191a3b7d5313%3C/grp_id%3E%3Coa%3E%3C/oa%3E%3Curl%3E%3C/url%3E&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=6977940&rfr_iscdi=true