| 1. |
- Abdelraheem, Mohamed Ahmed, et al.
(author)
-
Searchable Encrypted Relational Databases: Risks and Countermeasures
- 2017
-
In: Cryptology ePrint Archive. - Gewerbestrasse 11, 6330 Cham, Switzerland : Springer Nature. ; 2017:24, s. 1-20, s. 70-85
-
Journal article (other academic/artistic)abstract
- We point out the risks of protecting relational databases via Searchable Symmetric Encryption (SSE) schemes by proposing an inference attack exploiting the structural properties of relational databases. We show that record-injection attacks mounted on relational databases have worse consequences than their file-injection counterparts on un- structured databases. Moreover, we discuss some techniques to reduce the effectiveness of inference attacks exploiting the access pattern leakage existing in SSE schemes. To the best of our knowledge, this is the first work that investigates the security of relational databases protected by SSE schemes.
|
|
| 2. |
- Papatheocharous, Efi, et al.
(author)
-
PaaSword: A Data Privacy and Context-aware Security Framework for Developing Secure Cloud Applications - Technical and Scientific Contributions
- 2017
-
In: European Space Projects: Developments, Implementations and Impacts in a Changing World - Volume 1: EPS Porto 2017, Porto, Portugal. - : SCITEPRESS - Science and Technology Publications. - 9789897583117 ; , s. 3-27
-
Conference paper (other academic/artistic)abstract
- Most industries worldwide have entered a period of reaping the benefits and opportunities cloud offers. At the same time, many efforts are made to address engineering challenges for the secure development of cloud systems and software.With the majority of software engineering projects today relying on the cloud, the task to structure end-to-end secure-by-design cloud systems becomes challenging but at the same time mandatory. The PaaSword project has been commissioned to address security and data privacy in a holistic way by proposing a context-aware security-by-design framework to support software developers in constructing secure applications for the cloud. This chapter presents an overview of the PaaSword project results, including the scientific achievements as well as the description of the technical solution. The benefits offered by the framework are validated through two pilot implementations and conclusions are drawn based on the future research challenges which are discussed in a research agenda.
|
|
| 3. |
- Sadeghi, Sadegh, et al.
(author)
-
Cryptanalysis of reduced QTL block cipher
- 2017
-
In: Microprocessors and microsystems. - : Elsevier BV. - 0141-9331 .- 1872-9436. ; 52, s. 34-48
-
Journal article (peer-reviewed)abstract
- Recently, a new ultra lightweight block cipher called QTL has been proposed. The authors claim to achieve a fast diffusion in QTL by using a new variant of a generalized Feistel network structure that changes all block messages in one iterative round in contrast to traditional Feistel-type structures changing only half of block messages. In this paper, we evaluate the security claims of the designers and show that their claims are not valid as QTL is vulnerable to the standard statistical attacks on block ciphers.
|
|
