TY - GEN
T1 - Defending against attribute-correlation attacks in privacy-aware information brokering
AU - Li, Fengjun
AU - Luo, Bo
AU - Liu, Peng
AU - Squicciarini, Anna C.
AU - Lee, Dongwon
AU - Chu, Chao Hsien
N1 - Copyright:
Copyright 2013 Elsevier B.V., All rights reserved.
PY - 2009
Y1 - 2009
N2 - Nowadays, increasing needs for information sharing arise due to extensive collaborations among organizations. Organizations desire to provide data access to their collaborators while preserving full control over the data and comprehensive privacy of their users. A number of information systems have been developed to provide efficient and secure information sharing. However, most of the solutions proposed so far are built atop of conventional data warehousing or distributed database technologies. Recently, information brokering systems have been proposed to provide privacy-preserving information sharing among loosely federated data sources. However, they are still vulnerable to attribute-correlation attacks during query routing, due to the lack of protection of the routed queries. In this paper, we investigate the problems caused by such an attack, and propose a countermeasure by limiting the view of query content at each intermediate broker.We show that the proposed content-basedXPath query routing scheme with level-based encryption and commutative encryption can effectively prevent an attribute-correlation attack originated by ompromised brokers, with reasonable overhead.
AB - Nowadays, increasing needs for information sharing arise due to extensive collaborations among organizations. Organizations desire to provide data access to their collaborators while preserving full control over the data and comprehensive privacy of their users. A number of information systems have been developed to provide efficient and secure information sharing. However, most of the solutions proposed so far are built atop of conventional data warehousing or distributed database technologies. Recently, information brokering systems have been proposed to provide privacy-preserving information sharing among loosely federated data sources. However, they are still vulnerable to attribute-correlation attacks during query routing, due to the lack of protection of the routed queries. In this paper, we investigate the problems caused by such an attack, and propose a countermeasure by limiting the view of query content at each intermediate broker.We show that the proposed content-basedXPath query routing scheme with level-based encryption and commutative encryption can effectively prevent an attribute-correlation attack originated by ompromised brokers, with reasonable overhead.
UR - http://www.scopus.com/inward/record.url?scp=84885893187&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84885893187&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-03354-4_9
DO - 10.1007/978-3-642-03354-4_9
M3 - Conference contribution
AN - SCOPUS:84885893187
SN - 3642033539
SN - 9783642033537
T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering
SP - 100
EP - 112
BT - Collaborative Computing
T2 - 4th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2008
Y2 - 13 November 2008 through 16 November 2008
ER -