Title :
Scalable Architecture for Multi-User Encrypted SQL Operations on Cloud Database Services
Author :
Ferretti, Luca ; Pierazzi, Fabio ; Colajanni, Michele ; Marchetti, Mirco
Author_Institution :
Dept. of Eng. Enzo Ferrari, Univ. of Modena & Reggio Emilia, Modena, Italy
Abstract :
The success of the cloud database paradigm is strictly related to strong guarantees in terms of service availability, scalability and security, but also of data confidentiality. Any cloud provider assures the security and availability of its platform, while the implementation of scalable solutions to guarantee confidentiality of the information stored in cloud databases is an open problem left to the tenant. Existing solutions address some preliminary issues through SQL operations on encrypted data. We propose the first complete architecture that combines data encryption, key management, authentication and authorization solutions, and that addresses the issues related to typical threat scenarios for cloud database services. Formal models describe the proposed solutions for enforcing access control and for guaranteeing confidentiality of data and metadata. Experimental evaluations based on standard benchmarks and real Internet scenarios show that the proposed architecture satisfies also scalability and performance requirements.
Keywords :
SQL; authorisation; cloud computing; cryptography; data privacy; distributed databases; meta data; Internet scenarios; access control; authorization solutions; cloud database services; data encryption; formal models; information confidentiality; key authentication; key management; metadata confidentiality; multiuser encrypted SQL operations; service availability; service scalability; service security; Authorization; Cloud computing; Computer architecture; Computer security; Databases; Encryption; Access Control; Confidentiality; Database; Encryption; access control; confidentiality; encryption;
Journal_Title :
Cloud Computing, IEEE Transactions on
DOI :
10.1109/TCC.2014.2378782
