| dc.contributor.author | Popa, Raluca Ada | |
| dc.contributor.author | Li, Frank H. | |
| dc.contributor.author | Zeldovich, Nickolai | |
| dc.date.accessioned | 2014-11-06T19:05:56Z | |
| dc.date.available | 2014-11-06T19:05:56Z | |
| dc.date.issued | 2013-05 | |
| dc.identifier.isbn | 978-0-7695-4977-4 | |
| dc.identifier.isbn | 978-1-4673-6166-8 | |
| dc.identifier.isbn | 978-0-7695-4977-4 | |
| dc.identifier.other | INSPEC Accession Number: 13597246 | |
| dc.identifier.uri | http://hdl.handle.net/1721.1/91476 | |
| dc.description.abstract | Order-preserving encryption - an encryption scheme where the sort order of ciphertexts matches the sort order of the corresponding plaintexts - allows databases and other applications to process queries involving order over encrypted data efficiently. The ideal security guarantee for order-preserving encryption put forth in the literature is for the ciphertexts to reveal no information about the plaintexts besides order. Even though more than a dozen schemes were proposed, all these schemes leak more information than order. This paper presents the first order-preserving scheme that achieves ideal security. Our main technique is mutable ciphertexts, meaning that over time, the ciphertexts for a small number of plaintext values change, and we prove that mutable ciphertexts are needed for ideal security. Our resulting protocol is interactive, with a small number of interactions. We implemented our scheme and evaluated it on microbenchmarks and in the context of an encrypted MySQL database application. We show that in addition to providing ideal security, our scheme achieves 1 - 2 orders of magnitude higher performance than the state-of-the-art order-preserving encryption scheme, which is less secure than our scheme. | en_US |
| dc.description.sponsorship | Google (Firm) | en_US |
| dc.description.sponsorship | National Science Foundation (U.S.) (NSF award IIS-1065219) | en_US |
| dc.language.iso | en_US | |
| dc.publisher | Institute of Electrical and Electronics Engineers (IEEE) | en_US |
| dc.relation.isversionof | http://dx.doi.org/10.1109/SP.2013.38 | en_US |
| dc.rights | Creative Commons Attribution-Noncommercial-Share Alike | en_US |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-sa/4.0/ | en_US |
| dc.source | MIT web domain | en_US |
| dc.title | An Ideal-Security Protocol for Order-Preserving Encoding | en_US |
| dc.type | Article | en_US |
| dc.identifier.citation | Popa, Raluca Ada, Frank H. Li, and Nickolai Zeldovich. “An Ideal-Security Protocol for Order-Preserving Encoding.” 2013 IEEE Symposium on Security and Privacy (May 2013), 19-22 May 2013, Berkeley, CA. p. 463-477. | en_US |
| dc.contributor.department | Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory | en_US |
| dc.contributor.mitauthor | Popa, Raluca Ada | en_US |
| dc.contributor.mitauthor | Li, Frank H. | en_US |
| dc.contributor.mitauthor | Zeldovich, Nickolai | en_US |
| dc.relation.journal | 2013 IEEE Symposium on Security and Privacy | en_US |
| dc.eprint.version | Author's final manuscript | en_US |
| dc.type.uri | http://purl.org/eprint/type/ConferencePaper | en_US |
| eprint.status | http://purl.org/eprint/status/NonPeerReviewed | en_US |
| dspace.orderedauthors | Popa, R. A.; Li, F. H.; Zeldovich, N. | en_US |
| dc.identifier.orcid | https://orcid.org/0000-0003-0238-2703 | |
| mit.license | OPEN_ACCESS_POLICY | en_US |
| mit.metadata.status | Complete | |
