IIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIII
US007685437B2
(12) United States Patent ao) Patent No.: Us 7,685,437 B2
Hacigumus et al. (45) Date of Patent: Mar. 23,2010
A client-server relational database system includes a client computer connected to a server computer via a network. Data from the client computer is encrypted by the client computer and hosted by the server computer. The encrypted data is operated upon by the server computer to produce an intermediate results set. The intermediate results set is sent from the server computer to the client computer where it is operated upon by the client computer and then returned to the server computer where it is further operated upon by the server computer before being sent again from the server computer to the client computer in order to produce actual results.
40 Claims, 10 Drawing Sheets
![[blocks in formation]](http://www.google.es/patents?id=9krVAAAAEBAJ&hl=es&ie=ISO-8859-1&output=text&pg=PA2&img=1&zoom=3&hl=es&q=flatulence&cds=1&sig=ACfU3U2OHFUJiXyhpVSfdWMVLvZIlsMTmg&edge=0&edge=stretch&ci=127,136,382,245)
E. Brickell et al., "On Privacy Homomorphisms", In Proc. Advances
in Cryptology-Eurocrypt '87, pp. 117-125, 1988.
S. Chaudhuri, "An Overview of Query Optimization in Relational
Systems", In Proc. of ACM Symposium on Principles of Database
Systems (PODS), pp. 34-43, 1998.
S. Chaudhuri et al., "Including Group-By in Query Optimization", In
Proc. ofVLDB, pp. 354-366, 1994.
R. Power, Computer Security Institute, "Computer Security Issues & Trends: 2002 CSI/FBI Computer Crime and Security Survey" 8(1) pp. http://www.gocsi.com, 2002.
ComputerWorld, "J.P. Morgan signs outsourcing deal with IBM", 3pp. Dec. 30, 2002.
ComputerWorld, "Business Process Outsourcing", 4pp., Jan. 01, 2001.
U. Dayal, "Of nests and trees: A unified approach to processing queries that contain nested subqueries, aggregates, and quantifiers", In Proc. ofVLDB, pp. 197-208, 1987.
J. Domingo-Ferrer, "A new privacy homomorphism and applications", Information Processing Letters, 60(5):277-282, 1996 [7pp including cover/publication page].
J. Domingo-Ferrer, "Multi-applications smart cards and encrypted data processing", Future Generation Computer Systems, 13:65-74, 1997, [preprint: Nov. 28, 1996 pp. 1-16].
C. A. Galindo-Legaria et al., "Orthogonal optimization of subqueries
and aggregation", In Proc. ofACMSIGMOD, pp. 369-374, 2001.
H. Garcia-Molina et al., "Database Systems: The Complete Book"
Prentice Hall, pp. 369-374, 2002.
G. Graefe et al., "The EXODUS optimizer generator", In Proc. of
ACMSIGMOD, pp. 160-172, 1987.
H. Hacigumus et al., "Executing SQL over Encrypted Data in Database Service Provider Model", In Proc. of ACM SIGMOD, pp. 216227, 2002.
H. Hacigumus et al., "Providing Database as a Service", In Proc. of ICDE, 10pp., 2002.
W. Kim, "On optimizing an SQL-like nested query", ACM Transactions on Database Systems (TODS), 7(3):443-469, 1982. M. Muralikrishna, "Optimization and dataflow algorithms for nested tree queries", In Proc. ofVLDB, pp. 77-85, 1989. R. L. Rivest et al., "On Data Banks and Privacy Homomorphisms", In Foundations of Secure Computation, pp. 169-177, 1978.
D. R. Stinson, "Cryptography: Theory and Practice", CRC Press, pp. 114-125 (plus title/publication page), 1995.
TPC-H. Benchmark Specification, Revision 2.1.0, http://www.tpc. org/tech, pp. 1-145, 1993.
P. Wayner, "Translucent Databases", Flyzone Press, lOpp, 2002.
N. R. Wagner, et al., "Encrypted Database Design: Specialized
Approaches," IEEE, pp. 148-153, 1986.
Adam, N.R., "Security-Control Methods for Statistical Databases: A Comparative Study", ACM Computing Surveys, vol. 21., No. 4, pp. 515-556, Dec. 1989.
Agrawal, R., et. al., "Watermarking Relational Databases", Proc. Of
the 28"" VLDB Conference, Hong Kong, China, 2002.
Agrawal, R., et. al., "Hippocratic Databases" , Proc. Of the 28""
VLDB Conference, Hong Kong, China, 2002.
Bouganim, L., etal., "Chip-Secured Data Access: Confidential Data on Untrusted Servers" Proc. Of the 28"" VLDB Conference, Hong Kong, China, 2002.
Buell, D. A., et al., "A Multiprecise Integer Arithmetic Package", The Journal of Supercomputing 3, pp. 89-107, Kluwer Academic Publishers, Mar. 1989.
Cho, J. "A Fast Regular Expression Indexing Engine", Proc. Of International Conference on Data Engineering, 2002, pp. 1-12. Digital Bibliography & Library Project, http://dblp.uni-trier.de/. , May 24, 2004.
Federal Information Processing Standards Publication, "Announcing the Advanced Encryption Standard (AES)", Publication 197, pp. 1-47, Nov. 26, 2001.
Federal Information Processing Standards Publication, "Data Encryption Standard (DES)", Publication 46-3, pp. 1-22, Oct. 25, 1999.
Gaines, H., "Cryptanalysis; a study of ciphers and their solutions" Dover 1956, http://wwwmafh.cudenver.edu/~wcherowi/courses/ m5410/engstat.html.
Granlund, T., "GNU MP, The GNU Multiple Precision Arithmetic Library" TMG Datakonsult, Edition 2.0.2, pp. 1-41, Jun. 1996. Hacigumus, H., et al., "Encrypted Database Integrity in the Database Service Provider Model," In Proc. of International Workshop on Certification and Security in E-Services (CSES'02), IFIP WCC, 2002.
He, J., et al., "Cryptography and relational database management systems" In Proc. of International Database Engineering & Applications Symposium, 2001.
Ioannidis, Y.E., et al., "Histogram-Based Approximation of Set-Valued Query Answers" Proc. Of the 25"" VLDB Conference Edinburgh, Scotland, pp. 174-185, 1999.
ISO/IEC, "Information Technology— Database Language SQL
(Proposed revised text of DIS 9075)" Jul. 30, 1992.
Jagadish, H.V, et al., "Global Optimization of Histograms" ACM
SIGMOND, Santa Barbara, California, May 21-24, 2001.
Menezes, A.J., et al., Handbook of Applied Cryptography, p. 41-45,
CRC Press 1997.
Piatetsky-Shapiro, G., et al., "Accurate Estimation of the Number of
Tuples Satisfying a Condition" ACM, pp. 256-276, 1984.
Rivest, R.L., et al., "A Method for Obtaining Digital Signatures and
Public-Key Cryptosystems", Communications of ACM, 21(2), pp.
1-15, 1978.
Schneier, B., "Description of a New Variable-Length Key, 64-Bit
Block Cipher (Blowfish)", Fast Software Encryption, Cambridge
Security Workshop Proceedings, Springer-Verlag, pp. 191-204,
1994.
Serpette, B., "BigNum: a portable and efficient package for arbitraryprecision arithmetic," Technical Report 2, Digital Equipment Corporation and INRIA, pp. 1-29, 1989.
Shand, M., etal., "Hardware speedups in long integer multiplication" In Proc. of ACM Symposium on Parallel Algorithms and Architectures, pp. 138-145, 1990.
Silberschatz, A., et al., "Database System Concepts", Third Edition, WCB McGraw-Hill, pp. 418-426, 1997.
Song, D.X., et al., "Practical Techniques for Searches on Encrypted Data", In Proc. IEEE, pp. 44-56, 2000.
Traub, J.F., et al., "The statistical security of a statistical database," ACM Transactions on Database Systems (TODS), vol. 9, No. 4, pp. 672-679, 1984.
Vulliemin, J. et al., "Programmable active memories: Reconfigurable systems come of age," IEEE Transactions on VLSI Systems, vol. 4, Issue 1, pp. 56-69, 1996.
Winslett, M. "Jeffrey D. Ullman Speaks Out on the Future of Higher Educaiton Startups, Database Theory, and More" Sigmond Record, vol. 30, No. 3, 2001.
Hacigumus et al., "Query Optimization in Encrypted Database Systems," Proceedings of 10th Database Systems for Advanced Applications Conference, Apr. 2005, pp. 43-55.
* cited by examiner
|
