Issue No.03 - March (2014 vol.26)
Sumeet Bajaj , Stony Brook University, Stony Brook
Radu Sion , Stony Brook University, Stony Brook
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/TKDE.2013.38
Traditionally, as soon as confidentiality becomes a concern, data are encrypted before outsourcing to a service provider. Any software-based cryptographic constructs then deployed, for server-side query processing on the encrypted data, inherently limit query expressiveness. Here, we introduce TrustedDB, an outsourced database prototype that allows clients to execute SQL queries with privacy and under regulatory compliance constraints by leveraging server-hosted, tamper-proof trusted hardware in critical query processing stages, thereby removing any limitations on the type of supported queries. Despite the cost overhead and performance limitations of trusted hardware, we show that the costs per query are orders of magnitude lower than any (existing or) potential future software-only mechanisms. TrustedDB is built and runs on actual hardware, and its performance and costs are evaluated here.
Servers, Hardware, Encryption, Data privacy, Query processing,special-purpose hardware, Database architectures, security, privacy
Sumeet Bajaj, Radu Sion, "TrustedDB: A Trusted Hardware-Based Database with Privacy and Data Confidentiality", IEEE Transactions on Knowledge & Data Engineering, vol.26, no. 3, pp. 752-765, March 2014, doi:10.1109/TKDE.2013.38