1. Digital Library of University of Colombo School of Computing
  2. Thesis & Dissertations
  3. Postgraduate Thesis Collection
  4. Master’s Degree Programmes
  5. Master of Information Security (MIS)
  6. Archival Collections of Thesis - Masters of Infomation Security
  7. Master of Science in Information Security - 2015
Please use this identifier to cite or link to this item: https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/3221
Title: Processing numerical data securely in NoSQL database backed shared user spaces
Authors: Nissanka, L.N.A.S.C.
Issue Date: 7-Jul-2015
Abstract: Performingvariousmathematicaloperations,searchingandsortingonacloudenvi- ronmentaresecurityconcerns.Sincetheuserspaceissharedtherearequestionsabout con dentialityofthedata.Byperformingoperationsonencrypteddata,con dentiality can beachievedwhiletheyarebeingprocessed.Thiscanbedoneusinghomomorphic encryption. Alsoorderpreservingencryptionschemescanbeusedtoprovidesearching and sortingfortheencrypteddata. When relatedworkisconsidered,someoftheimplementationslikecipherbaseand trustdb requirespecialhardwaresetup,somearehighlycomplexandimplementations likecryptdbrequiresmallchangestothedatabasecoreaswell.Thusnonecanbeused in acloudenvironmentunlesstheenvironmentbelongstothesamepersonorcompany. This endeavoristoprovideanopensourceimplementationthatworksinlooselycoupled manner toprovideabovecapabilitiesfordatastoredinCassandra. As anoutcomeoftheresearchanopensourcelibraryisimplementedwithhomomor- phic encryptioncapabilitieswhichcanperformmathematicaloperationsandsearchand sort onencrypteddata.Basicmathematicaloperationsaresupported(i.e.addition,sub- traction, multiplication,division)intheimplementationforintegers,realnumbersand negativevalues,usingPaillierandRSAciphers.Tomakethedataatrestsemantically secure asecondlayerofencryptionisadded.Anorderpreservingencryptionscheme called mOPEisusedtoprovidesearchingandsorting.Cassandraisusedasthedatabase to persistthedatasincelotofcloudserviceproviders'useitintheirinfrastructures. Based ontheevaluationtheimplementedlibraryperformsconsistentlyformathemat- ical operationsregardlessoftheplaintextsizeencrypted.Alsobasedonthenumberof operationstheforcipher-textaddition,thetimegrowsexponentially.Encryptionislinear and theperformanceisnotchangedbasedonthekeysizeofthecipher-text.Whenrecords with encryptedvaluesareinsertedintoCassandra,performancedroppedapproximately 8 times. As futureworkperformanceimprovementstotheimplementation,performingcomplex functions oncipher-text,completesearchingandsortingonencryptedtextcanbedone. Evaluationssuggestthateventhoughthisresearchisstillnotreadytobeintegrated with arealtimesystem,itcanbeusedinscenarioslikebatchprocessingordatamining independentlyoftheinfrastructureused.
URI: http://hdl.handle.net/123456789/3221
Appears in Collections:Master of Science in Information Security - 2015

Files in This Item:
File Description SizeFormat 
2012MIS010.pdf
  Restricted Access		2.95 MBAdobe PDFView/Open Request a copy
Show full item record


Items in UCSC Digital Library are protected by copyright, with all rights reserved, unless otherwise indicated.