Encrypted database queries
December 20, 2011 2:08 AM Subscribe
posted by jeffburdges (37 comments total)
33 users marked this as a favorite
executes database queries over encrypted data without ever decrypting it
CryptDB uses a substantial fragment of SQL for the query language and penalizing query times by only about 15-26%. (pdfs : journal
, tech report
“The insight we had, the cool idea, is that SQL queries in a database are composed of relatively few types of operations: equal to, less than, summing up, sorting. .. For each operation, we were able to find an encryption scheme that is quite efficient at computing on encrypted data.”
Initial applications would resemble securing a datacenter against hackers and insider threats, outsourcing database hosting to an untrusted cloud provider, such as Amazon or IBM, or rigorously enforcing privacy obligations in an application itself. If however an application permitted query construction on a user's machine, then potentially even the application's provider need not be trusted.
Craig Gentry has another approach
that probably leaks less user data to sophisticated attackers, but runs prohibitively slowly.
See previous thread on Homomorphic Encryption.