Equipe BD
Equipe BD
Laboratoire d'InfoRmatique en Images et Systèmes d'information
UMR 5205 CNRS/INSA de Lyon/Université Claude Bernard Lyon 1/Université Lumière Lyon 2/Ecole Centrale de Lyon

You are here

Privacy-Preserving Query Execution using a Decentralized Architecture and Tamper Resistant Hardware

Benjamin Nguyen - Université Versailles St-Quentin (UVSQ), PRiSM Lab, INRIA SMIS
Tuesday, March 11, 2014 - 13:00 to 14:00
INSA de Lyon, bât. Blaise Pascal, Salle du Liris

Current applications, from complex sensor systems (e.g. quantified self) to online e-markets acquire vast quantities of personal information which usually ends-up on central servers. Decentralized architectures, devised to help individuals keep full control of their data, hinder global treatments and queries, impeding the developmentof services of great interest.

This paper promotes the idea of pushing the security to the edges of applications, through the use of secure hardware devices controlling the data at the place of their acquisition. To solve this problem, we propose secure distributed querying protocols based on the use of a tangible physical element of trust, reestablishing the capacity to perform global computations without revealing any sensitive information to central servers. There are two main problems when trying to support SQL in this context: perform joins and perform aggregations. In this paper, we study the subset of SQL queries without joins and show how to secure their execution in the presence of honest-but-curious attackers. Cost models and experiments demonstrate that this approach can scale to nationwide infrastructures.

(article accepté à EDBT2014 http://www.edbticdt2014.gr/index.php/edbt-accepted-papers)