Publication Type
Journal Article
Version
acceptedVersion
Publication Date
9-2006
Abstract
To support ubiquitous computing, the underlying data have to be persistent and available anywhere-anytime. The data thus have to migrate from devices that are local to individual computers, to shared storage volumes that are accessible over open network. This potentially exposes the data to heightened security risks. In particular, the activity on a database exhibits regular page reference patterns that could help attackers learn logical links among physical pages and then launch additional attacks. We propose two countermeasures to mitigate the risk of attacks initiated through analyzing the shared storage server’s activity for those page patterns. The first countermeasure relocates data pages according to which page sequences they are in. The second countermeasure enhances the first by randomly prefetching pages from predicted page sequences. We have implemented the two countermeasures in MySQL, and experiment results demonstrate their effectiveness and practicality.
Keywords
Page reference patterns, Plausible deniability, Traffic analysis, Pattern mining
Discipline
Databases and Information Systems | Numerical Analysis and Scientific Computing
Publication
Data and Knowledge Engineering
Volume
58
Issue
3
First Page
466
Last Page
483
ISSN
0169-023X
Identifier
10.1016/j.datak.2005.06.003
Publisher
Elsevier
Citation
MA, Xi; PANG, Hwee Hwa; and TAN, Kian-Lee.
Masking Page Reference Patterns in Encryption Databases on Untrusted Storage. (2006). Data and Knowledge Engineering. 58, (3), 466-483.
Available at: https://ink.library.smu.edu.sg/sis_research/1201
Copyright Owner and License
Authors
Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.
Additional URL
http://doi.org/10.1016/j.datak.2005.06.003
Included in
Databases and Information Systems Commons, Numerical Analysis and Scientific Computing Commons