Collaborative Research: SaTC: CORE: Medium: The Next Generation of Leakage Attacks and Defenses for Encrypted Databases

协作研究：SaTC：核心：中：加密数据库的下一代泄漏攻击和防御

• 批准号: 2154490
• 负责人: Roberto Tamassia
• 金额: $ 40万
• 依托单位: Brown University
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2022
• 资助国家: 美国
• 起止时间: 2022-07-15 至 2025-06-30
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2154490&HistoricalAwards=false
• 关键词: Collaborative; Research; SaTC; CORE; Medium

growing number of works explore the area of encrypted databases as a practical approach to searching on encrypted data stored at a server. The client encrypts the data before uploading it to the server. The server is not given the decryption key, yet the server can execute searches on the encrypted data requested by the client and return the corresponding encrypted answers. An encrypted database efficiently achieves the above functionality by allowing some leakage about the original (plaintext) data that appears harmless but could be exploited by an attacker who attempts to reconstruct the original data by synthesizing leakage from the encrypted answers and encrypted queries over time. This project aims to develop the next generation of methods for building efficient encrypted databases and for analyzing their resilience to reconstruction attacks. To achieve this goal, it uses methods from algorithms, statistics, geometry, databases, and computer systems. Specific research activities include cryptanalysis of the leakage from encrypted databases with suppressed leakage as well as cryptanalysis and schemes for high-dimensional encrypted queries. Informed by the above research thrusts, this project will develop a principled analysis of defenses as well as a framework for quantifying the impact of leakage in the context of encrypted databases. Toward achieving broader impacts, this project includes curriculum development for computer security courses, efforts to include members of underrepresented groups in research activities, and outreach to industry and government audiences.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

越来越多的作品探讨了加密数据库的区域，以此作为搜索存储在服务器上的加密数据的实用方法。客户端将数据上传到服务器之前对数据进行加密。服务器没有给出解密密钥，但是服务器可以在客户端请求的加密数据上执行搜索并返回相应的加密答案。加密的数据库有效地实现了上述功能，通过允许对原始（明文）数据进行一些泄漏，这些数据似乎无害但可以由攻击者利用，该数据试图通过从加密的答案中综合泄漏和加密的查询来综合泄漏来重建原始数据。该项目旨在开发下一代的方法，用于构建有效的加密数据库并分析其对重建攻击的韧性。为了实现此目标，它使用了算法，统计，几何，数据库和计算机系统中的方法。具体的研究活动包括对泄漏泄漏以及密码分析的加密数据库的泄漏的隐性分析以及用于高维加密查询的方案。在上述研究推力的情况下，该项目将对防御措施进行原则分析，以及在加密数据库中量化泄漏影响的框架。为了实现更广泛的影响，该项目包括针对计算机安全课程的课程开发，努力在研究活动中包括代表性不足的团体成员以及对行业和政府受众的推广。这项奖项反映了NSF的法定任务，并被认为是通过使用评估的支持值得的。基金会的智力优点和更广泛的影响审查标准。

项目成果

Time- and Space-Efficient Aggregate Range Queries over Encrypted Databases

• DOI: 10.56553/popets-2022-0128
• 发表时间: 2022-10
• 期刊: Proc. Priv. Enhancing Technol.
• 作者: Zachary Espiritu;Evangelia Anna Markatou;R. Tamassia

Range Search over Encrypted Multi-Attribute Data

• DOI: 10.14778/3574245.3574247
• 发表时间: 2022-12
• 期刊: Proc. VLDB Endow.
• 作者: Francesca Falzon;Evangelia Anna Markatou;Zachary Espiritu;R. Tamassia