Publication Date

5-2019

Date of Final Oral Examination (Defense)

3-8-2019

Type of Culminating Activity

Thesis

Degree Title

Master of Science in Computer Science

Department

Computer Science

Major Advisor

Jyh-haw Yeh, Ph.D.

Advisor

Yantian Hou, Ph.D.

Advisor

Min Long, Ph.D.

Abstract

The adoption of cloud computing has created a huge shift in where data is processed and stored. Increasingly, organizations opt to store their data outside of their own network to gain the benefits offered by shared cloud resources. With these benefits also come risks; namely, another organization has access to all of the data. A malicious insider at the cloud services provider could steal any personal information contained on the cloud or could use the data for the cloud service provider's business advantage. By encrypting the data, some of these risks can be mitigated. Unfortunately, encrypting the data also means that some commonly used operations, such as equality testing or search, do not work because encryption also obfuscates these properties.

This thesis proposes a system that allows for data to be encrypted with a minimal impact on data accessibility and usability in its encrypted format. This is achieved by carefully selecting the encryption methods used with the goal of preserving properties of the data that are required for the SQL server's functionality. By preserving only order, equality, and the ability to perform addition, common data operations can still be performed. The system was implemented in Java as a proof-of-concept to show that the encrypted data is still operable on, and to compare it to existing systems. The impact from implementing this system on the database size, query encryption and decryption time, and data security is measured and compared to a similar system, showing that it is feasible for use.

DOI

10.18122/td/1520/boisestate

Download

Share

COinS