When query authentication meets fine-grained access control: A zero-knowledge approach

Cheng Xu, Jianliang XU, Haibo HU, Man Ho Au

Research output: Chapter in book/report/conference proceedingConference proceedingpeer-review

37 Citations (Scopus)

Abstract

Query authentication has been extensively studied to ensure the integrity of query results for outsourced databases, which are often not fully trusted. However, access control, another important security concern, is largely ignored by existing works. Notably, recent breakthroughs in cryptography have enabled fine-grained access control over outsourced data. In this paper, we take the first step toward studying the problem of authenticating relational queries with fine-grained access control. The key challenge is how to protect information confidentiality during query authentication, which is essential to many critical applications. To address this challenge, we propose a novel access-policy-preserving (APP) signature as the primitive authenticated data structure. A useful property of the APP signature is that it can be used to derive customized signatures for unauthorized users to prove the inaccessibility while achieving the zero-knowledge confidentiality. We also propose a grid-indexbased tree structure that can aggregate APP signatures for efficient range and join query authentication. In addition to this, a number of optimization techniques are proposed to further improve the authentication performance. Security analysis and performance evaluation show that the proposed solutions and techniques are robust and efficient under various system settings.

Original languageEnglish
Title of host publicationSIGMOD 2018 - Proceedings of the 2018 International Conference on Management of Data
EditorsGautam Das, Christopher Jermaine, Ahmed Eldawy, Philip Bernstein
PublisherAssociation for Computing Machinery (ACM)
Pages147-162
Number of pages16
ISBN (Electronic)9781450317436
DOIs
Publication statusPublished - 27 May 2018
EventACM SIGMOD International Conference on Management of Data, SIGMOD 2018 - Houston, United States
Duration: 10 Jun 201815 Jun 2018

Publication series

NameProceedings of the ACM SIGMOD International Conference on Management of Data
ISSN (Print)0730-8078

Conference

ConferenceACM SIGMOD International Conference on Management of Data, SIGMOD 2018
Country/TerritoryUnited States
CityHouston
Period10/06/1815/06/18

Scopus Subject Areas

  • Software
  • Information Systems

User-Defined Keywords

  • Data integrity
  • Fine-grained access control
  • Query processing

Fingerprint

Dive into the research topics of 'When query authentication meets fine-grained access control: A zero-knowledge approach'. Together they form a unique fingerprint.

Cite this