RESeED: A secure regular‐expression search tool for storage clouds. (20th January 2017)
- Record Type:
- Journal Article
- Title:
- RESeED: A secure regular‐expression search tool for storage clouds. (20th January 2017)
- Main Title:
- RESeED: A secure regular‐expression search tool for storage clouds
- Authors:
- Salehi, Mohsen Amini
Caldwell, Thomas
Fernandez, Alejandro
Mickiewicz, Emmanuel
Rozier, Eric W. D.
Zonouz, Saman
Redberg, David - Abstract:
- Summary: Lack of trust has become one of the main concerns of users who tend to utilize one or multiple Cloud providers. Trustworthy Cloud‐based computing and data storage require secure and efficient solutions which allow clients to remotely store and process their data in the Cloud. User‐side encryption is an established method to secure the user data on the Cloud. However, using encryption, we lose processing capabilities, such as searching, over the Cloud data. In this paper, we present RESeED, a tool that provides user‐transparent and Cloud‐agnostic regular‐expression search functionality over encrypted data across multiple Clouds. Upon a client's intent to upload a new document to the Cloud, RESeED analyzes the document's content and updates its data structures accordingly. Then, it encrypts and transfers the document to the Cloud. RESeED provides the regular‐expression search functionality over encrypted data by translating the search queries on‐the‐fly to finite automata and analyzing concise and secure representations of the data before asking the Cloud to download the encrypted documents. RESeED's parallel architecture enables efficient search over large‐scale (and potentially big data scale) data‐sets. We evaluate the performance of RESeED experimentally and demonstrate its scalability and correctness using real‐world data‐sets fromarXiv.org and Internet Engineering Task Force (IETF). Our results show that RESeED produces accurate query responses with a reasonableSummary: Lack of trust has become one of the main concerns of users who tend to utilize one or multiple Cloud providers. Trustworthy Cloud‐based computing and data storage require secure and efficient solutions which allow clients to remotely store and process their data in the Cloud. User‐side encryption is an established method to secure the user data on the Cloud. However, using encryption, we lose processing capabilities, such as searching, over the Cloud data. In this paper, we present RESeED, a tool that provides user‐transparent and Cloud‐agnostic regular‐expression search functionality over encrypted data across multiple Clouds. Upon a client's intent to upload a new document to the Cloud, RESeED analyzes the document's content and updates its data structures accordingly. Then, it encrypts and transfers the document to the Cloud. RESeED provides the regular‐expression search functionality over encrypted data by translating the search queries on‐the‐fly to finite automata and analyzing concise and secure representations of the data before asking the Cloud to download the encrypted documents. RESeED's parallel architecture enables efficient search over large‐scale (and potentially big data scale) data‐sets. We evaluate the performance of RESeED experimentally and demonstrate its scalability and correctness using real‐world data‐sets fromarXiv.org and Internet Engineering Task Force (IETF). Our results show that RESeED produces accurate query responses with a reasonable (≃6%) storage overhead. The results also demonstrate that for many search queries, RESeED performs faster in compare with thegrep utility that functions on unencrypted data. Copyright © 2017 John Wiley & Sons, Ltd. … (more)
- Is Part Of:
- Software, practice & experience. Volume 47:Number 9(2017)
- Journal:
- Software, practice & experience
- Issue:
- Volume 47:Number 9(2017)
- Issue Display:
- Volume 47, Issue 9 (2017)
- Year:
- 2017
- Volume:
- 47
- Issue:
- 9
- Issue Sort Value:
- 2017-0047-0009-0000
- Page Start:
- 1221
- Page End:
- 1241
- Publication Date:
- 2017-01-20
- Subjects:
- cloud storage -- security -- privacy -- searchable encryption -- regular‐expression
Computer software -- Periodicals
Computer programming -- Periodicals
Computer programs -- Periodicals
005.3 - Journal URLs:
- http://onlinelibrary.wiley.com/ ↗
- DOI:
- 10.1002/spe.2473 ↗
- Languages:
- English
- ISSNs:
- 0038-0644
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 8321.453000
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 2940.xml