Articles producció científica> Enginyeria Informàtica i Matemàtiques

Privacy-preserving data outsourcing in the cloud via semantic data splitting

  • Dades identificatives

    Identificador: PC:3209
    Autors:
    Sánchez, D.Batet, M.
    Resum:
    DOI: 10.1016/j.comcom.2017.06.012 URL: https://pubs-acs-org.sabidi.urv.cat/doi/abs/10.1021/jacs.7b06800 Filiació URV: SI
  • Altres:

    Autor segons l'article: Sánchez, D.; Batet, M.
    Departament: Enginyeria Informàtica i Matemàtiques
    Autor/s de la URV: SÁNCHEZ RUENES, DAVID; Batet, M.
    Paraules clau: Data outsourcing Data splitting Multi-cloud
    Resum: Even though cloud computing provides many intrinsic benefits (e.g., cost savings, availability, scalability, etc.), privacy concerns related to the lack of control over the storage and management of the outsourced (confidential) data still prevent many customers from migrating to the cloud. In this respect, several privacy-protection mechanisms based on a prior encryption of the data to be outsourced have been proposed. Data encryption offers robust security, but at the cost of hampering the efficiency of the service and limiting the functionalities that can be applied over the (encrypted) data stored on cloud premises. Because both efficiency and functionality are crucial advantages of cloud computing, especially in SaaS, in this paper we aim at retaining them by proposing a privacy-protection mechanism that relies on splitting (clear) data, and on the distributed storage offered by the increasingly popular notion of multi-clouds. Specifically, we propose a semantically-grounded data splitting mechanism that is able to automatically detect pieces of data that may cause privacy risks and split them on local premises, so that each chunk does not incur in those risks; then, chunks of clear data are independently stored into the separate locations of a multi-cloud, so that external entities (cloud service providers and attackers) cannot have access to the whole confidential data. Because partial data are stored in clear on cloud premises, outsourced functionalities are seamlessly and efficiently supported by just broadcasting queries to the different cloud locations. To enforce a robust privacy notion, our proposal relies on a privacy model that offers a priori privacy guarantees; to ensure its feasibility, we have designed heuristic algorithms that minimize the number of cloud storage locations we need; to show its potential and generality, we have applied it to the least structured and most challenging data type: plain textual documents.
    Grup de recerca: Seguretat i Privadesa
    Àrees temàtiques: Enginyeria informàtica Ingeniería informática Computer engineering
    Accès a la llicència d'ús: https://creativecommons.org/licenses/by/3.0/es/
    ISSN: 0140-3664
    Identificador de l'autor: 0000-0001-7275-7887;
    Data d'alta del registre: 2018-02-12
    Pàgina final: 201
    Volum de revista: 110
    Versió de l'article dipositat: info:eu-repo/semantics/acceptedVersion
    Enllaç font original: https://www.sciencedirect.com/science/article/abs/pii/S0140366417307405?via%3Dihub
    URL Document de llicència: https://repositori.urv.cat/ca/proteccio-de-dades/
    DOI de l'article: 10.1016/j.comcom.2017.06.012
    Entitat: Universitat Rovira i Virgili
    Any de publicació de la revista: 2017
    Pàgina inicial: 187
    Tipus de publicació: Article Artículo Article
  • Paraules clau:

    Protecció de dades
    Data outsourcing
    Data splitting
    Multi-cloud
    Enginyeria informàtica
    Ingeniería informática
    Computer engineering
    0140-3664
  • Documents:

  • Cerca a google

    Search to google scholar