Title :
Towards Efficient Over-Encryption in Outsourced Databases Using Secret Sharing
Author :
Liu, Shuai ; Li, Wei ; Wang, Lingyu
Author_Institution :
Concordia Inst. for Inf. Syst. Eng., Concordia Univ., Montreal, QC
Abstract :
Over-encryption is a technique for managing evolving access control requirements in outsourced databases. In over-encryption, a data owner and outsourcing server collectively encrypt resources in such a way that users´ accesses can be effectively controlled without the need for shipping the resources back to the owner. One potential limitation of the original over-encryption scheme is that it requires publishing a large amount of tokens. In this paper, we present a new key-assignment approach based on secret sharing. We first give two different key derivation schemes, and then we combine them as one scheme. We analyze the amount of public tokens required by the original over-encryption scheme and our scheme, and we show that our scheme can provide the same over-encryption capability more efficiently.
Keywords :
cryptography; access control requirements; data owner; outsourced databases; outsourcing server; over-encryption scheme; public tokens; secret sharing; Access control; Cryptography; Data engineering; Data security; Databases; Engineering management; Management information systems; Protection; Quality management; Systems engineering and theory;
Conference_Titel :
New Technologies, Mobility and Security, 2008. NTMS '08.
Conference_Location :
Tangier
Print_ISBN :
978-1-42443547-0
DOI :
10.1109/NTMS.2008.ECP.100