Proof of Violation for Trust and Accountability of Cloud Database Systems

Gwan Hwan Hwang, Shih Kai Fu

    研究成果: 書貢獻/報告類型會議貢獻

    3 引文 斯高帕斯(Scopus)

    摘要

    A cloud database is a system that typically runs on a cloud computing platform which is not maintained by the user but a service provider. The service provider can leak confidential data, modify the data, or return inconsistent data to users due to bugs, crashes, operator errors, or even malicious security attacks. Some cloud database systems provide Web interface or application programming interface for clients to access logs of database transactions. However, these logs are not cryptographic proofs. Clients cannot use these logs to prove whether a cloud service provider has violated some required properties such as data integrity, write serializability, and read freshness. A proof of violation (POV) scheme enables a client or a service provider to produce a precise proof of either the occurrence of the violation of properties or the innocence of the service provider. In this paper, we develop POV schemes for cloud database systems. First, we show that previously proposed cryptographic accountability protocols (CAPs), cannot be applied to cloud database systems directly. A CAP defines a multi-step handshaking protocol for clients and the service provider to exchange signed messages during service request and response so as to generate cryptographic proofs for later auditing. In addition, previously proposed auditing schemes are inappropriate to obtain the auditing requirements of SQL database according to collected cryptographic proofs. We design a new auditing scheme for cloud database systems. Implementation and experimental results are presented that demonstrate the feasibility of the proposed schemes. Service providers can use the proposed schemes to provide a mutual nonrepudiation guarantee for database transactions in their service-level agreements.

    原文英語
    主出版物標題Proceedings - 2016 16th IEEE/ACM International Symposium on Cluster, Cloud, and Grid Computing, CCGrid 2016
    發行者Institute of Electrical and Electronics Engineers Inc.
    頁面425-433
    頁數9
    ISBN(電子)9781509024520
    DOIs
    出版狀態已發佈 - 2016 七月 18
    事件16th IEEE/ACM International Symposium on Cluster, Cloud, and Grid Computing, CCGrid 2016 - Cartagena, 哥伦比亚
    持續時間: 2016 五月 162016 五月 19

    出版系列

    名字Proceedings - 2016 16th IEEE/ACM International Symposium on Cluster, Cloud, and Grid Computing, CCGrid 2016

    其他

    其他16th IEEE/ACM International Symposium on Cluster, Cloud, and Grid Computing, CCGrid 2016
    國家哥伦比亚
    城市Cartagena
    期間16/5/1616/5/19

    ASJC Scopus subject areas

    • Computer Networks and Communications

    指紋 深入研究「Proof of Violation for Trust and Accountability of Cloud Database Systems」主題。共同形成了獨特的指紋。

    引用此