Semantic Hiding Databases: Cloud Encryption

Faculty Mentor Information

Jyh-haw Yeh

Presentation Date

7-2016

Abstract

Using cloud services, users are able to store information from one device and easily access the same data from a completely different device. Data stored on the cloud is usually secure from outside attack; however, it not secure against insider threats and can be viewed by anyone with access to the server, i.e. an employee of the cloud service. A Semantic Hiding Database (SHDB) is a cloud security strategy where data is selectively and strategically encrypted before it is stored in a cloud server, which renders the data unintelligible to both outside attackers and malicious insiders. The strategic encryption allows for queries to be run over the encrypted data on the server without decryption. Decryption keys are stored within the data owner’s organization and are never revealed to the server, meaning it cannot be decrypted by anyone besides the owner. This allows entities to store highly sensitive data on cloud services without the extra risk associated with cloud storage.

Comments

Poster #Th42

This document is currently not available here.

Share

COinS
 

Semantic Hiding Databases: Cloud Encryption

Using cloud services, users are able to store information from one device and easily access the same data from a completely different device. Data stored on the cloud is usually secure from outside attack; however, it not secure against insider threats and can be viewed by anyone with access to the server, i.e. an employee of the cloud service. A Semantic Hiding Database (SHDB) is a cloud security strategy where data is selectively and strategically encrypted before it is stored in a cloud server, which renders the data unintelligible to both outside attackers and malicious insiders. The strategic encryption allows for queries to be run over the encrypted data on the server without decryption. Decryption keys are stored within the data owner’s organization and are never revealed to the server, meaning it cannot be decrypted by anyone besides the owner. This allows entities to store highly sensitive data on cloud services without the extra risk associated with cloud storage.