|
|
计算机应用研究 2011
Enforcing data privacy and user privacy over outsourced database service
|
Abstract:
It is crucial to design solutions able to respond to privacy guarantees with a clear integration strategy for existing applications and a consideration of the performance impact of the protection measures. This paper proposed a novel solution to enforce data privacy and user privacy over outsourced database services. The approach started from a flexible definition of privacy constraints on a relational schema, applied encryption on information in a parsimonious way and mostly relied on attribute partition to protect sensitive information. Based on the approximation algorithm for the minimal encryption attribute partition with quasi-identifier detection, the approach allow storing the outsourced data on an untrusted database server and minimizing the amount of data represented in encrypted format, it could also solve the problem of private information retrieval to protect user privacy by applying cryptographic technology on the auxiliary random server protocol. The theoretical analysis and experimental results show that the new model can provide efficient data privacy protection and query processing, efficient in computational complexity and dose not increase the cost of communication complexity of user privacy protection.
