Data Protection based on Searchable Encryption and Anonymization Techniques
Resumo
Data leakage compromises companies’ confidentiality and directly impacts the existing privacy laws, as well as it is necessary to perform a light integration with the legacy systems, in order not to harm the performance of its services. Within this context, this paper presents an innovative cloud system to protect the private data of existing databases (legacy systems of clients) based on Searchable Symmetric Encryption for Databases (SSE-DB) and Permutation and Proprieties Maintenance Anonymization (PPM-Anon), attaching a security solution to the existing databases (without any change in these legacy systems). Results from real experiments using a real cloud environment suggest that the proposed solution is suitable for protecting the data without harming the performance of the existing services.Referências
Araujo Cruz, A. R. S., Gomes, R. L., and Fernandez, M. P. (2021). An intelligent mechanism to detect cyberattacks of mirai botnet in iot networks. In 2021 17th International Conference on Distributed Computing in Sensor Systems (DCOSS), pages 236–243.
Costa, W. L., Portela, A. L., and Gomes, R. L. (2021). Features-aware ddos detection in heterogeneous smart environments based on fog and cloud computing. International Journal of Communication Networks and Information Security, 13(3):491–498.
Costa, W. L., Silveira, M. M., de Araujo, T., and Gomes, R. L. (2020). Improving ddos detection in iot networks through analysis of network traffic characteristics. In 2020 IEEE Latin-American Conference on Communications (LATINCOM), pages 1–6.
Li, J., Huang, Y., Wei, Y., Lv, S., Liu, Z., Dong, C., and Lou, W. (2019). Searchable symmetric encryption with forward search privacy. IEEE Transactions on Dependable and Secure Computing, 18(1):460–474.
Moreira, D. A. B., Marques, H. P., Costa, W. L., Celestino, J., Gomes, R. L., and Nogueira, M. (2021). Anomaly detection in smart environments using ai over fog and cloud computing. In 2021 IEEE 18th Annual Consumer Communications Networking Conference (CCNC), pages 1–2.
Portela, A. L., Menezes, R. A., Costa, W. L., Silveira, M. M., Bittecnourt, L. F., and Gomes, R. L. (2023). Detection of iot devices and network anomalies based on anonymized network traffic. In NOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium, pages 1–6.
Portela, A. L. C., Ribeiro, S. E. S. B., Menezes, R. A., de Araujo, T., and Gomes, R. L. (2024). T-for: An adaptable forecasting model for throughput performance. IEEE Transactions on Network and Service Management, pages 1–1.
Silva, M., Ribeiro, S., Carvalho, V., Cardoso, F., and Gomes, R. L. (2023). Scalable detection of sql injection in cyber physical systems. In Proceedings of the 12th Latin-American Symposium on Dependable and Secure Computing, LADC ’23, page 220–225, New York, NY, USA. Association for Computing Machinery.
Silveira, M., Portela, A., Souza, M., Silva, D., Mesquita, M., Silva, D., Menezes, R., and Gomes, R. (2023a). Aplicação de técnicas de encriptação e anonimização em nuvem para proteção de dados. In Anais do XXIII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais, pages 111–124, Porto Alegre, RS, Brasil. SBC.
Silveira, M., Santos, D., Souza, M., Silva, D., Mesquita, M., Neto, J., and Gome, R. L. (2023b). An anonymization service for privacy in data mining. In Proceedings of the 12th Latin-American Symposium on Dependable and Secure Computing, LADC ’23, page 214–219, New York, NY, USA. Association for Computing Machinery.
Silveira, M., Silva, D., Oliveira, L., and Gomes, R. (2023c). Analyzing the performance of searchable symmetric encryption over huawei cloud. In Anais Estendidos do XLI Simpósio Brasileiro de Redes de Computadores e Sistemas Distribuídos, pages 200–205, Porto Alegre, RS, Brasil. SBC.
Silveira, M. M. and Gomes, R. L. (2021). Immi: an architecture integrated for management of modern internet service providers. International Journal of Security and Networks, 16(3):141–149.
Silveira, M. M., Portela, A. L., Menezes, R. A., Souza, M. S., Silva, D. S., Mesquita, M. C., and Gomes, R. L. (2023d). Data protection based on searchable encryption and anonymization techniques. In NOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium, pages 1–5.
Silveira, M. M., Silva, D. S., Rodriguez, S. J. R., and Gomes, R. L. (2023e). Searchable symmetric encryption for private data protection in cloud environments. In Proceedings of the 11th Latin-American Symposium on Dependable Computing, LADC ’22, page 95–98, New York, NY, USA. Association for Computing Machinery.
Costa, W. L., Portela, A. L., and Gomes, R. L. (2021). Features-aware ddos detection in heterogeneous smart environments based on fog and cloud computing. International Journal of Communication Networks and Information Security, 13(3):491–498.
Costa, W. L., Silveira, M. M., de Araujo, T., and Gomes, R. L. (2020). Improving ddos detection in iot networks through analysis of network traffic characteristics. In 2020 IEEE Latin-American Conference on Communications (LATINCOM), pages 1–6.
Li, J., Huang, Y., Wei, Y., Lv, S., Liu, Z., Dong, C., and Lou, W. (2019). Searchable symmetric encryption with forward search privacy. IEEE Transactions on Dependable and Secure Computing, 18(1):460–474.
Moreira, D. A. B., Marques, H. P., Costa, W. L., Celestino, J., Gomes, R. L., and Nogueira, M. (2021). Anomaly detection in smart environments using ai over fog and cloud computing. In 2021 IEEE 18th Annual Consumer Communications Networking Conference (CCNC), pages 1–2.
Portela, A. L., Menezes, R. A., Costa, W. L., Silveira, M. M., Bittecnourt, L. F., and Gomes, R. L. (2023). Detection of iot devices and network anomalies based on anonymized network traffic. In NOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium, pages 1–6.
Portela, A. L. C., Ribeiro, S. E. S. B., Menezes, R. A., de Araujo, T., and Gomes, R. L. (2024). T-for: An adaptable forecasting model for throughput performance. IEEE Transactions on Network and Service Management, pages 1–1.
Silva, M., Ribeiro, S., Carvalho, V., Cardoso, F., and Gomes, R. L. (2023). Scalable detection of sql injection in cyber physical systems. In Proceedings of the 12th Latin-American Symposium on Dependable and Secure Computing, LADC ’23, page 220–225, New York, NY, USA. Association for Computing Machinery.
Silveira, M., Portela, A., Souza, M., Silva, D., Mesquita, M., Silva, D., Menezes, R., and Gomes, R. (2023a). Aplicação de técnicas de encriptação e anonimização em nuvem para proteção de dados. In Anais do XXIII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais, pages 111–124, Porto Alegre, RS, Brasil. SBC.
Silveira, M., Santos, D., Souza, M., Silva, D., Mesquita, M., Neto, J., and Gome, R. L. (2023b). An anonymization service for privacy in data mining. In Proceedings of the 12th Latin-American Symposium on Dependable and Secure Computing, LADC ’23, page 214–219, New York, NY, USA. Association for Computing Machinery.
Silveira, M., Silva, D., Oliveira, L., and Gomes, R. (2023c). Analyzing the performance of searchable symmetric encryption over huawei cloud. In Anais Estendidos do XLI Simpósio Brasileiro de Redes de Computadores e Sistemas Distribuídos, pages 200–205, Porto Alegre, RS, Brasil. SBC.
Silveira, M. M. and Gomes, R. L. (2021). Immi: an architecture integrated for management of modern internet service providers. International Journal of Security and Networks, 16(3):141–149.
Silveira, M. M., Portela, A. L., Menezes, R. A., Souza, M. S., Silva, D. S., Mesquita, M. C., and Gomes, R. L. (2023d). Data protection based on searchable encryption and anonymization techniques. In NOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium, pages 1–5.
Silveira, M. M., Silva, D. S., Rodriguez, S. J. R., and Gomes, R. L. (2023e). Searchable symmetric encryption for private data protection in cloud environments. In Proceedings of the 11th Latin-American Symposium on Dependable Computing, LADC ’22, page 95–98, New York, NY, USA. Association for Computing Machinery.
Publicado
16/09/2024
Como Citar
SILVEIRA, Matheus M.; GOMES, Rafael L..
Data Protection based on Searchable Encryption and Anonymization Techniques. In: CONCURSO DE TESES E DISSERTAÇÕES - SIMPÓSIO BRASILEIRO DE SEGURANÇA DA INFORMAÇÃO E DE SISTEMAS COMPUTACIONAIS (SBSEG), 24. , 2024, São José dos Campos/SP.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2024
.
p. 41-48.
DOI: https://doi.org/10.5753/sbseg_estendido.2024.241734.
