《计算机应用研究》|Application Research of Computers

强制数据隐私和用户隐私的外包数据库服务研究

Enforcing data privacy and user privacy over outsourced database service

免费全文下载 (已被下载 次)  
获取PDF全文
作者 余永红,柏文阳
机构 1.安徽财经大学 管理科学与工程学院,安徽 蚌埠 233030;2.南京大学 计算机软件新技术国家重点实验室,南京 210093
统计 摘要被查看 次,已被下载
文章编号 1001-3695(2011)01-0304-05
DOI 10.3969/j.issn.1001-3695.2011.01.086
摘要 外包数据库中的数据隐私和用户隐私保护是现代外包数据库服务面临的新挑战,针对目前外包数据库服务中单方面考虑数据隐私保护或用户隐私保护技术难以同时满足外包数据库安全需求的不足,提出一种可同时强制数据隐私和用户隐私保护的外包数据库服务模型,采用属性分解和部分属性加密技术,基于结合准标志集自动检测技术的近似算法实现外包数据的最小加密属性分解,同时把密码学应用于辅助随机服务器协议,以实现数据库访问时的用户隐私保护。理论分析和实验结果表明,该模型可以提供有效的数据隐私保护和查询处理,以及较好的用户隐私保护计算复杂度。
关键词 外包数据库服务;数据隐私;用户隐私;属性分解;加密
基金项目 国家“863”计划资助项目(2007AA01Z448);安徽省省级高校自然科学研究重点项目(KJ2010A003);南京大学计算机软件新技术国家重点实验室开放课题(KFKT2010B01)
本文URL http://www.arocmag.com/article/1001-3695(2011)01-0304-05.html
英文标题 Enforcing data privacy and user privacy over outsourced database service
作者英文名 YU Yong-hong, BAI Wen-yang
机构英文名 1. School of Management Science & Engineering, Anhui University of Finance & Economics, Bengbu Anhui 233030, China; 2. State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing 210093, China
英文摘要 It is crucial to design solutions able to respond to privacy guarantees with a clear integration strategy for existing applications and a consideration of the performance impact of the protection measures. This paper proposed a novel solution to enforce data privacy and user privacy over outsourced database services. The approach started from a flexible definition of privacy constraints on a relational schema, applied encryption on information in a parsimonious way and mostly relied on attribute partition to protect sensitive information. Based on the approximation algorithm for the minimal encryption attribute partition with quasi-identifier detection, the approach allow storing the outsourced data on an untrusted database server and minimizing the amount of data represented in encrypted format, it could also solve the problem of private information retrieval to protect user privacy by applying cryptographic technology on the auxiliary random server protocol. The theoretical analysis and experimental results show that the new model can provide efficient data privacy protection and query processing, efficient in computational complexity and dose not increase the cost of communication complexity of user privacy protection.
英文关键词 outsourced database services; data privacy; user privacy; attribute partition; encryption
参考文献 查看稿件参考文献
 
收稿日期
修回日期
页码 304-308
中图分类号
文献标志码 A