One notable recent research result proposed a secure technique for executing sovereign joins. It entails data owners sending their relations to an independent database service provider which executes a sovereign join with the aid of a tamper-resistant secure coprocessor. This achieves the goal of preventing information leakage during query execution. However, as we show in this paper, the proposed technique is actually insecure as it fails to prevent an attacker from learning the query results. We also suggest some measures to remedy the security problems.
Category / Keywords: applications / applications, information hiding Date: received 1 Nov 2006 Contact author: gts at ics uci edu Available format(s): PDF | BibTeX Citation Version: 20061103:163341 (All versions of this report) Short URL: ia.cr/2006/380 Discussion forum: Show discussion | Start new discussion