Skip to content

WeiqiNs/SecureConjunctiveQuery

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

93 Commits
.github/workflows
.github/workflows
 
 
experiment
experiment
 
 
include
include
 
 
src
src
 
 
test
test
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
Dockerfile
Dockerfile
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 

Repository files navigation

Practical Secure Conjunctive Query Revisited

Xinle Cao, Weiqi Feng, Quanqing Xu, Chuanhui Yang, Rui Zhang, Jinfei Liu, and Jian Liu.

(Abstract) Encrypted databases (EDBs) have emerged as a promising research direction within the database community over the past two decades. Designed to ensure both data confidentiality and functionality in cloud databases, EDBs introduce new challenges in secure database design. One critical challenge is how to support conjunctive queries over multiple attributes securely and practically. In this paper, we propose a novel encrypted database system, \FlexDB, tailored for secure conjunctive query processing. Built upon a set of newly devised encryption schemes, \FlexDB supports a wide range of query functionalities, including single/multi-value filter, equi-join, equality test, and even range query. More importantly, it achieves strong security guarantees by ensuring that intermediate results on individual attributes remain hidden throughout query execution. At the same time, \FlexDB offers improved theoretical complexity and practical performance in both storage overhead and computational efficiency. These advances in functionality, security, and efficiency make \FlexDB a highly practical solution for secure conjunctive query processing in EDBs. We validate these improvements through extensive experiments on multiple real-world datasets.

Project Structure

  • The experiment folder consists of files to reproduce experimental results that we report in the paper.
  • The include folder consists of header files of our implementations.
    • The files with the ipe prefix are for the $\textsf{FE}$ methods.
    • The files with the sse prefix are for the $\textsf{SSE}$ methods.
    • The files without prefix are for our proposed methods.
  • The src folder consists of source files of our implementations.
  • The test folder consists of test cases for validating correctness of our implementations.

How to run this code

Our code base depends on the RELIC library and the LibRBP library; note that our experiment is done on the BLS12-381 curve. One could refer to the Dockerfile to see how to create the dev environment (or use it to build a container directly).

About

This project implements a few methods to process conjunctive queries securely over an encrypted database.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages