Loading Events

« All Events

  • This event has passed.

CSE Colloquium: Evgenios Kornaropoulos

February 8, 2019 @ 11:00 am - 12:00 pm UTC-5

Title: Data Recovery on Encrypted Databases With k-Nearest Neighbor Query Leakage

Speaker: Evgenios Kornaropoulos

Place: HBL 1947 Room, Library

Time: 2/8 at 11:00am

Abstract: Recent works by Kellaris et al. (CCS’16) and Lacharite et al. (S&P’18) demonstrated attacks of data recovery for encrypted databases that support rich queries such as range queries. In this paper, we develop the first data recovery attacks on encrypted databases supporting one-dimensional k-nearest neighbor (k-NN) queries, which are widely used in spatial data management. Our attacks exploit a generic k-NN query leakage profile: the attacker observes the identifiers of matched records. We consider both unordered responses, where the leakage is a set, and ordered responses, where the leakage is a k-tuple ordered by distance from the query point.

As a first step, we perform a theoretical feasibility study on exact reconstruction, i.e., recovery of the exact plaintext values of the encrypted database. For ordered responses, we show that exact reconstruction is feasible if the attacker has additional access to some auxiliary information that is normally not available in practice. For unordered responses, we prove that exact reconstruction is impossible due to the infinite number of valid reconstructions. As a next step, we propose practical and more realistic approximate reconstruction attacks so as to recover an approximation of the plaintext values. For ordered responses, we show that after observing enough query responses, the attacker can approximate the client’s encrypted database with considerable accuracy. For unordered responses we characterize the set of valid reconstructions as a convex polytope in a k-dimensional space and present a rigorous attack that reconstructs the plaintext database with bounded approximation error.

As multidimensional spatial data can be efficiently processed by mapping it to one dimension via Hilbert curves, we demonstrate our approximate reconstruction attacks on privacy-sensitive geolocation data. Our experiments on real-world datasets show that our attacks reconstruct the plaintext values with relative error ranging from 2.9% to 0.003%.

Joint work with Charalampos Papamanthou and Roberto Tamassia that will appear in the Proceedings of the IEEE S&P’19.

Details

Date:
February 8, 2019
Time:
11:00 am - 12:00 pm UTC-5
Event Category:

Venue

HBL Class of 1947 Conference Room
UConn Library, 369 Fairfield Way, Unit 1005
Storrs, CT 06269 United States
+ Google Map
Phone:
(860) 486-2518
Website:
https://lib.uconn.edu/

Connect With Us