Authentication and integrity in outsourced databases

ACM Transactions on Storage

Volumn 2, Issue 2, 2006, Pages 107-138

  Mykletun, Einar ^a   Narasimha, Maithili ^a   Tsudik, Gene ^a  

^a UNIVERSITY OF CALIFORNIA   (United States)

Author keywords

Authentication; Data authenticity; Data integrity; Integrity; Outsourced databases; Signature aggregation; Storage

Indexed keywords

AUTHENTICATION; DATA AUTHENTICITY; DATA INTEGRITY; OUTSOURCED DATABASES; SIGNATURE AGGREGATION;

COMPUTATION THEORY; COPYRIGHTS; DATA STRUCTURES; INFORMATION SERVICES; OUTSOURCING; QUERY LANGUAGES;

DATABASE SYSTEMS;

EID: 33747176236     PISSN: 15533077     EISSN: 15533093     Source Type: Journal    
DOI: 10.1145/1149976.1149977     Document Type: Article

References (37)

1. BELLARE, M., GARAY, J., AND RABIN, T. 1998. Fast batch verification for modular exponentiation and digital signatures. In Proceedings of the Eurocrypt Conference, vol. 1403, 191-204.
2. BELLARE, M. AND PALACIO, A. 2002. Gq and Schnorr identification schemes: Proofs of security against impersonation under active and concurrent attacks. In Advances in Cryptology - CRYPTO, M. Yung, ed. Lecture Notes in Computer Science, vol. 2442, Springer-Verlag, Berlin Germany, 162-177.
3. BELLARE, M. AND ROGAWAY, P. 1993. Random oracles are practical: A paradigm for designing efficient protocols. In Proceedings of the 1st ACM Conference on Computer and Communications Security. 62-73.
4. BONEH, D., GENTRY, C., LYNN, B., AND SHACHAM, H. 2003. Aggregate and verifiably encrypted signatures from bilinear maps. In Advances in Cryptology - EUROCRYPT, E. Biham, ed. LNCS, Springer-Verlag, Berlin.
5. BOYD, C. AND PAVLOVSKI, C. 2000. Attacking and repairing batch verification schemes. In Asiacrypt. 58-71.
6. CAMENISCH, J. 1998. Group signature schemes and paymen systems based on the discrete logarithm problem, vol. 2, ETH-Series in Information Security and Cryptography. Hartung-Gorre Verlag, Konstanz, Germany.
7. CAMENISCH, J. AND STADLER, M. 1997. Efficient group signature schemes for large groups. In Advances in Cryptology - CRYPTO, vol. 1294, Springer-Verlag, Berlin Germany. 410-424.
8. CHOR, B., GILBOA, N., AND NAOR, M. 1997. Private information retrieval by keywords. Tech. Rep. TR CS0917, Technion, University.
9. CHOR, B., GOLDREICH, O., KUSHILEVITZ, E., AND SUDAN, M. 1998. Private information retrieval. J. ACM 45, 6 (Nov.), 965-981.
10. DEVANBU, P., GERTZ, M., MARTEL, C., AND STUBBLEBINE, S. G. 2000. Authentic third-party data publication. In Proceedings of the 14th IFIP 11.3 Working Conference in Database Security, 101-112.
11. FIAT, A. AND SHAMIR, A. 1987. How to prove yourself: practical solutions to identification and signature problems. In Advances in Cryptology - CRYPTO '86, A. M. Odlyzko, ed, Lecture Notes in Computer Science, vol. 263, Springer-Verlag, Berlin Germany, Santa, 186-194.
12. FIAT, A. 1990. Batch RSA. In Advances in Cryptology - CRYPTO '89, G. Brassard, ed. Lecture Notes in Computer Science, vol. 435, Springer-Verlag, Berlin Germany, 175-185.
13. FIAT, A. 1997. Batch RSA. J. Cryptology 10, 2, 75-88.
14. GERTNER, Y., ISHAI, Y., KUSHILEVITZ, E., AND MALKIN, T. 1998. Protecting data privacy in private information retrieval schemes. In Proceedings of the 30th Annual Symposium on Theory of Computing (STOC) (Dallas, TX).
15. GOH, E.-J. 2003. Secure indexes for efficient searching on encrypted compressed data. Cryptology ePrint Archive, Rep. 2003/216 http://eprint.iacr. org/2003/216/
16. GUILLOU, L. AND QUISQUATER, J. J. 1988. A "paradoxical" identity-based signature scheme resulting from zero-knowledge. In Advances in Cryptology - CRYPTO, S. Goldwasser, ed. Lecture Notes in Computer Science, vol. 403, Springer-Verlag, Berlin Germany.
17. HACIGÜMÜŞ, H., IYER, B., LI, C., AND MEHROTRA, S. 2002. Executing SQL over encrypted data in the database-service-provider model. In Proceedings of the ACM SIGMOD Conference on Management of Data, 216-227.
18. HACIGÜMÜŞ, H., IYER, B., AND MEHROTRA, S. 2002a. Encrypted database integrity in database service provider model. In Proceedings of the International Workshop on Certification and Security in E-Services (CSESIFIP WCC).
19. HACIGÜMÜŞ, H., IYER, B., AND MEHROTRA, S. 2002b. Providing database as a service. In Proceedings of the International Conference on Data Engineering.
20. HARN, L. 1995. DSA-Type secure interactive batch verification protocols. Electron. Lett. 31, 4 (Feb.), 257-258.
21. HARN, L. 1998a. Batch verifying multiple DSA-Type digital signatures. Electron. Lett. 34, 9 (Apr.), 870-871.
22. HARN, L. 1998b. Batch verifying RSA signatures. Electron. Lett. 34, 12 (Apr.), 1219-1220.
23. JOUX, A. AND NGUYEN, K. 2001. Separating decision Diffie-Hellman from Diffie-Hellman in cryptographic groups. In Cryptology ePrint Archive. Number Rep. 2001/003.
24. LAW, P. 1996. The health insurance portability and accountability act of 1996 (HIPAA). http://www.cms.hhs.gov/hipaa/
25. MENEZES, A. J., VAN OORSCHOT, P. C., AND VANSTONE, S. A. 1997. Handbook of Applied Cryptography. CRC Press.
26. MERKLE, R. 1980. Protocols for public key cryptosystems. In Proceedings of the IEEE Symposium on Research in Security and Privacy.
27. MIRACL, LIBRARY. 2006 http://indigo.ie/~mscott
28. MYKLETUN, E., NARASIMHA, M., AND TSUDIK, G. 2004a. Authentication and integrity in outsourced databases. In Proceedings of the Symposium on Network and Distributed Systems Security (NDSS).
29. MYKLETUN E., NARASIMHA M., AND TSUDIK G. 2004b. Signature 'Bouquets': Immutability of Aggregated Signatures, In Proceedings of the European Symposium on Research in Computer Security (ESORICS).
30. NACCACHE, D., M'RAÏHI, D., RAPHAELI, D., AND VAUDENAY, S. 1994. Can DSA be improved: Complexity trade-offs with the digital signature standard. In Advances in Cryptology - EUROCRYPT, Lecture Notes in Computer Science, Springer-Verlag, Berlin Germany, 85-94.
31. NARASIMHA, M. AND TSUDIK, G. 2005. DSAC: Integrity of outsourced databases with signature aggregation and chaining. In Proceedings of the ACM Conference on Information and Knowledge Management.
32. OPENSSL PROJECT. 2006. http://www.openssl.org
33. PANG, H. AND TAN, K.-L. 2004. Authenticating query results in edge computing. In Proceedings of the International Conference on Data Engineering, 560-571.
34. RIVEST, R. L., SHAMIR, A., AND ADLEMAN, L. M. 1978. A method for obtaining digital signatures and public-key cryptosystems. Communi. ACM 21, 2 (Feb.), 120-126.
35. SONG, D., WAGNER, D., AND PERRIG, A. 2000. Practical techniques for searches on encrypted data. In Proceedings of the IEEE Symposium on Security and Privacy.
36. UNITED STATES CODE. 2002. Sarbanes-Oxley act of 2002, HR 3763, PL 107-204, 116 Stat 745. Codified in sections 11, 15, 18, 28, and 29 USC.
37. YEN, S. AND LAIH, C. 1995. Improved digital signature suitable for batch verification. IEEE Trans. Comput. 44, 7 (July), 957-959.