Your search keyword '"privacy-preserving"' showing total 252 results

1. NPMA: A Novel Privacy-Preserving Mutual Authentication in TMIS for Mobile Edge-Cloud Architecture.

Author

Liu X, Ma W, and Cao H

Subjects

Humans, Telemedicine standards, Cloud Computing standards, Computer Security, Confidentiality standards, Telemedicine organization & administration

Abstract

Mobile Edge-Cloud Network is a new network structure after fog-cloud computing, where service and data computing are scattered in the most logical, nearby and efficient place. It provides better services than fog-cloud computing with better performance in reasonably low cost way and allows users to eliminate numerous limitations inherent in fog-cloud computing, although it inherits those security-privacy issues from fog-cloud computing. A novel privacy-preserving mutual authentication in TMIS for mobile Edge-Cloud architecture (abbreviated to NPMA) is constructed in this paper. NPMA scheme not only mitigates some weaknesses of fog-cloud computing, but has other advantages. First, NPMA scheme supports patients(edge-servers) anonymity and forward-backward untraceability (traceability, when needed), since their identities are hidden in two distinct dynamic anonyms and a static one and only the trusted center can recover their real identities, when needed. Second, each edge-server shares a secret value, which realizes authentication with extremely low computional cost in authentication phase. Finally, NPMA scheme is proven safely against passive and active attacks under elliptic curve computable Diffie-Hellman problem (ECDHP) assumption in random oracle model. Hence, it achieves the required security properties and outperforms prior approaches in terms of energy and computational costs.

Published

2019

2. Obfuscatable multi-recipient re-encryption for secure privacy-preserving personal health record services.

Author

Shi Y, Fan H, and Xiong G

Subjects

Humans, Algorithms, Cloud Computing, Computer Security, Confidentiality, Electronic Health Records

Abstract

Background: With the rapid development of cloud computing techniques, it is attractive for personal health record (PHR) service providers to deploy their PHR applications and store the personal health data in the cloud. However, there could be a serious privacy leakage if the cloud-based system is intruded by attackers, which makes it necessary for the PHR service provider to encrypt all patients' health data on cloud servers., Objective: Existing techniques are insufficiently secure under circumstances where advanced threats are considered, or being inefficient when many recipients are involved. Therefore, the objectives of our solution are (1) providing a secure implementation of re-encryption in white-box attack contexts and (2) assuring the efficiency of the implementation even in multi-recipient cases., Methods: We designed the multi-recipient re-encryption functionality by randomness-reusing and protecting the implementation by obfuscation., Results: The proposed solution is secure even in white-box attack contexts. Furthermore, a comparison with other related work shows that the computational cost of the proposed solution is lower., Conclusions: The proposed technique can serve as a building block for supporting secure, efficient and privacy-preserving personal health record service systems.

Published

2015

3. PPFLV: privacy-preserving federated learning with verifiability.

Author

Zhou, Qun and Shen, Wenting

Subjects

*FEDERATED learning, *MACHINE learning, *CLOUD computing, *PRIVACY, *CLASSIFICATION

Abstract

Federated learning, as an emerging framework for distributed machine learning, has received widespread attention. In federated learning, the cloud server and the users cooperatively train a model by sharing gradients rather than local private data. However, the users' private data may still be exposed by the shared gradients. Furthermore, the cloud server may perform incorrect aggregation operations on the gradients sent by users and send a forged or previous aggregated gradient to the users. In this paper, we propose PPFLV, a privacy-preserving federated learning scheme with verifiability. Specifically, to protect the users' privacy, we design an efficient double gradient blinding and encryption method to blind and encrypt the users' local gradients. Furthermore, we propose a novel double gradient verification method that can achieve secure verification while resisting replay attacks in the verification phase. With the proposed verification method, the users only require to perform lightweight operations to verify the correctness of the aggregated encrypted gradients and recover the aggregated gradient from the aggregated encrypted gradients. The experimental results show that PPFLV achieves comparable classification accuracy to the basic federated learning scheme while providing privacy protection and verifiability. Furthermore, PPFLV exhibits lower computation and communication overhead compared to related schemes. [ABSTRACT FROM AUTHOR]

Published

2024

4. Privacy-preserving Apriori-based association rule mining over semantically secure encrypted cloud database.

Author

Wu, Wei and Hao, Jialu

Subjects

ASSOCIATION rule mining, APRIORI algorithm, DATABASE security, DATABASES, DATA mining

Abstract

Data Mining has been widely applied in many areas such as scientific analysis, healthcare, finance and marketing. Association rule mining is one of the broadly used methods in data mining applications. In recent years, with the rapid growth of cloud computing, many academic solutions to the outsourced privacy-preserving association rule mining (PPARM) problem have been proposed under various threat models. However, existing approaches cannot simultaneously satisfy the requirements of strong security and high efficiency. In this paper, we focus on effectively solving the PPARM problem over semantically secure ciphertexts. In particular, we propose a novel scheme which executes Apriori algorithm on outsourced encrypted databases. The proposed scheme achieves database security, preserves mining privacy and supports off-line clients during the mining process. To the best of our knowledge, our work is the first to design a semantically secure PPARM scheme without on-line users. Also, we provide formal security analysis and conduct extensive experiments to evaluate the efficiency of our proposed scheme. The results indicate that our scheme can be efficiently implemented on large databases. [ABSTRACT FROM AUTHOR]

Published

2024

5. Dual-branch networks for privacy-preserving cross-modal retrieval in cloud computing.

Author

Peng, Jianting, Xiang, Xuyu, Qin, Jiaohua, and Tan, Yun

Abstract

Cross-modal retrieval can break through the limitations of modalities and carry out information retrieval across data of different modalities to meet the needs of users in obtaining multi-modal correlation retrieval. Cloud computing has the advantages of high efficiency and low cost, but data security hinders its development. While cloud computing offers high efficiency and cost-effectiveness, concerns surrounding data security impede its full potential. Privacy-preserving cross-modal retrieval emerges as a viable solution, catering to users’ demands for efficient retrieval while safeguarding data confidentiality. However, a major challenge still exists in this field: how to bridge the inherent semantic gap within heterogeneous and chaotic information. To address this challenge, this paper proposes dual-branch networks for privacy-preserving cross-modal retrieval in cloud computing. Firstly, a dual-branch feature extraction network of encrypted image-text is constructed, enhancing the extraction of meaningful features from encrypted data. Secondly, a cross-modal alignment method is designed to eliminate the heterogeneous gap between different modalities through the alignment within and between modalities. Finally, to fully exploit the storage and computing advantages of cloud computing, both encrypted data and the cross-modal feature extractor are deployed to the cloud. Leveraging the dynamic update capabilities of cloud-stored encrypted data enables continuous model refinement, enhancing retrieval accuracy while reducing the storage and computational burdens on data owners. Extensive experiments conducted on the publicly available benchmark image-text dataset Wikipedia indicate that, compared to existing methods, our approach achieves improvements of 5.4%, 1%, 1.6%, and 20.1% in the four metrics of image-to-text (i2t), text-to-image (t2i), image-to-all (i2all), and text-to-all (t2all), respectively. [ABSTRACT FROM AUTHOR]

Published

2025

6. Verifiable privacy-preserving cox regression from multi-key fully homomorphic encryption.

Author

Xu, Wenju, Li, Xin, Su, Yunxuan, Wang, Baocang, and Zhao, Wei

Subjects

CLOUD computing, ALGORITHMS, WITNESSES

Abstract

While it is well known that privacy-preserving cox regression generally consists of a semi-honest cloud service provider (CSP) who performs curious-but-honest computations on ciphertexts to train the cox model. No one can verify the behaviors of CSP when he performs computations dishonestly in reality. Focusing on this problem, we propose a verifiable privacy-preserving cox regression algorithm tailored with the semi-malicious CSP, where all his behaviors are recorded on a witness tape fulfilling the requirement of transparency. To be specific, a multi-key fully homomorphic encryption (FHE) is used to protect the information of different data owners. The verifiability of our proposed multi-key homomorphic message authenticator (HMAC) ensures CSP sends correct results back to data owners. Furthermore, the compactness of FHE and succinctness of HMAC both under multi keys make the cox regression scheme more feasible. The efficiency of our proposed cox regression scheme is also proved by both theoretical analyses and experimental evaluations. After 21 iterations, it costs no more than 10 min to evaluate our cox regression scheme. [ABSTRACT FROM AUTHOR]

Published

2024

7. EPVM: efficient and publicly verifiable computation for matrix multiplication with privacy preservation.

Author

Xu, Chang, Rao, Hongzhou, Zhu, Liehuang, Zhang, Chuan, and Sharif, Kashif

Subjects

*MATRIX multiplications, *CLOUD computing, *PRIVACY, *CONTRACTING out, *LOGARITHMS

Abstract

With the rapid development of cloud computing, clients and users with limited computing resources can outsource their computation-intensive tasks to the Cloud Service Providers (CSPs). However, as the CSPs are commercial in nature and aim to increase their profits, some security challenges are still attached to them. In this paper, we propose an efficient publicly verifiable computation scheme (EPVM) for large-scale matrix multiplication with privacy preservation. Based on the theory of discrete logarithm problem and the techniques of privacy-preserving matrix transformation, our scheme not only protects the privacy of the client's matrices but also significantly reduces the computation overhead on the client end as well as the CSP side. Our detailed security analysis and proofs show that the proposed scheme can achieve the established security requirements. The experimental evaluation also demonstrates that the proposed scheme works efficiently as compared to other existing solutions. [ABSTRACT FROM AUTHOR]

Published

2024

8. A privacy-preserving image retrieval scheme with access control based on searchable encryption in media cloud.

Author

Tian, Miao, Zhang, Yushu, Zhang, Yongming, Xiao, Xiangli, and Wen, Wenying

Subjects

CONTENT-based image retrieval, IMAGE retrieval, ACCESS control, CLOUD storage, CLOUD computing

Abstract

With the popularity of the media cloud computing industry, individuals and organizations outsource image computation and storage to the media cloud server to reduce the storage burden. Media images usually contain a large amount of private information. To prevent disclosure of privacy of the image owners, media images are encrypted before uploading to the server. However, this operation will greatly limit the utilization of the image for the user, such as content-based image retrieval. We propose an efficient similarity query algorithm with access control based on Bkd-tree in this paper, in which a searchable encryption scheme is designed for similarity image retrieval, and the encrypted image is used to extract image features by a pre-trained CNN model. The Bkd-tree is utilized to generate an index tree for the image features to speed up retrieval and make it faster than linear indexing. Finally, the security performances of the proposed scheme is analyzed and the performance of this scheme is evaluated by experiments. The results show that the security of the image content and image features can be ensured, and it has a shorter retrieval time and higher retrieval efficiency. [ABSTRACT FROM AUTHOR]

Published

2024

9. Recoverable Privacy-Preserving Image Classification through Noise-like Adversarial Examples.

Author

Liu, Jun, Zhou, Jiantao, Tian, Jinyu, and Sun, Weiwei

Subjects

IMAGE recognition (Computer vision), DATA privacy, IMAGE encryption, ARTIFICIAL neural networks, COMPUTING platforms, CLOUD computing

Abstract

With the increasing prevalence of cloud computing platforms, ensuring data privacy during the cloud-based image-related services such as classification has become crucial. In this study, we propose a novel privacy-preserving image classification scheme that enables the direct application of classifiers trained in the plaintext domain to classify encrypted images without the need of retraining a dedicated classifier. Moreover, encrypted images can be decrypted back into their original form with high fidelity (recoverable) using a secret key. Specifically, our proposed scheme involves utilizing a feature extractor and an encoder to mask the plaintext image through a newly designed Noise-like Adversarial Example (NAE). Such an NAE not only introduces a noise-like visual appearance to the encrypted image but also compels the target classifier to predict the ciphertext as the same label as the original plaintext image. At the decoding phase, we adopt a Symmetric Residual Learning (SRL) framework for restoring the plaintext image with minimal degradation. Extensive experiments demonstrate that (1) the classification accuracy of the classifier trained in the plaintext domain remains the same in both the ciphertext and plaintext domains; (2) the encrypted images can be recovered into their original form with an average PSNR of up to 51+ dB for the SVHN dataset and 48+ dB for the VGGFace2 dataset; (3) our system exhibits satisfactory generalization capability on the encryption, decryption, and classification tasks across datasets that are different from the training one; and (4) a high-level of security is achieved against three potential threat models. The code is available at https://github.com/csjunjun/RIC.git. [ABSTRACT FROM AUTHOR]

Published

2024

10. EPCQ: Efficient Privacy-Preserving Contact Query Processing over Trajectory Data in Cloud

Author

Lu, Qu, Dai, Hua, Li, Bohan, Li, Pengyue, Zhou, Qian, Zhou, Qiang, Yang, Geng, Goos, Gerhard, Series Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Zhang, Wenjie, editor, Tung, Anthony, editor, Zheng, Zhonglong, editor, Yang, Zhengyi, editor, Wang, Xiaoyang, editor, and Guo, Hongjie, editor

Published

2024

11. Privacy-Preserving Image Retrieval with Multi-Modal Query.

Author

Zhou, Fucai, Zhang, Zongye, and Hou, Ruiwei

Subjects

*QUERY (Information retrieval system), *CLOUD computing, *DATA privacy, *IMAGE encryption, *DISTRIBUTED computing

Abstract

The ever-growing multi-modal images pose great challenges to local image storage and retrieval systems. Cloud computing provides a solution to large-scale image data storage but suffers from privacy issues and lacks the support for multi-modal image retrieval. To address these, a searchable encryption-empowered privacy-preserving multi-modal image retrieval method is proposed. First, we design a hybrid image retrieval framework that fuses visual features and textual features at a decision level and further supports similar image retrieval and multi-keyword image retrieval. Second, we construct a new hybrid inverted index structure to distinguish high-frequency terms from low-frequency terms and index them through hierarchical index trees and data blocks, respectively, which greatly improves query efficiency. Third, we design a prime encoding-based multi-keyword query method that converts mapping operations in bloom filters into inner product calculations, and further implements secure multi-keyword image query. Experiments against the Baseline schemes are conducted to verify the performance of the scheme in terms of high efficiency. [ABSTRACT FROM AUTHOR]

Published

2024

12. MedAccess HBPF: A Privacy-Preserving Hybrid-Blockchain Framework for Secure and Efficient Cloud-Based Electronic Health Record Sharing

Author

Duggegowda, Divyashree and Ramamoorthy, Umadevi

Published

2024

13. Privacy-Preserving Multi-Keyword Fuzzy Adjacency Search Strategy for Encrypted Graph in Cloud Environment.

Author

Bin Wu, Xianyi Chen, Jinzhou Huang, Caicai Zhang, Jing Wang, Jing Yu, Zhiqiang Zhao, and Zhuolin Mei

Subjects

DATA privacy, DATA encryption, ELECTRONIC data processing, PUBLIC key cryptography, DATA protection, CLOUD computing

Abstract

In a cloud environment, outsourced graph data is widely used in companies, enterprises, medical institutions, and so on. Data owners and users can save costs and improve efficiency by storing large amounts of graph data on cloud servers. Servers on cloud platforms usually have some subjective or objective attacks, which make the outsourced graph data in an insecure state. The issue of privacy data protection has become an important obstacle to data sharing and usage. How to query outsourcing graph data safely and effectively has become the focus of research. Adjacency query is a basic and frequently used operation in graph, and it will effectively promote the query range and query ability if multi-keyword fuzzy search can be supported at the same time. This work proposes to protect the privacy information of outsourcing graph data by encryption, mainly studies the problem of multi-keyword fuzzy adjacency query, and puts forward a solution. In our scheme, we use the Bloom filter and encryption mechanism to build a secure index and query token, and adjacency queries are implemented through indexes and query tokens on the cloud server. Our proposed scheme is proved by formal analysis, and the performance and effectiveness of the scheme are illustrated by experimental analysis. The research results of this work will provide solid theoretical and technical support for the further popularization and application of encrypted graph data processing technology. [ABSTRACT FROM AUTHOR]

Published

2024

14. SAPMS: A Semantic-Aware Privacy-Preserving Multi-keyword Search Scheme in Cloud

Author

Zhou, Qian, Dai, Hua, Hu, Zheng, Liu, Yuanlong, Yang, Geng, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Li, Bohan, editor, Yue, Lin, editor, Tao, Chuanqi, editor, Han, Xuming, editor, Calvanese, Diego, editor, and Amagasa, Toshiyuki, editor

Published

2023

15. Application of Homomorphic Encryption in Machine Learning

Author

Ameur, Yulliwas, Bouzefrane, Samia, Audigier, Vincent, Daimi, Kevin, editor, Alsadoon, Abeer, editor, Peoples, Cathryn, editor, and El Madhoun, Nour, editor

Published

2023

16. Privacy-Preserving k-Nearest Neighbor Classification over Malicious Participants in Outsourced Cloud Environments.

Author

Guo, Xian, Li, Ye, Jiang, Yongbo, Wang, Jing, and Fang, Junli

Subjects

*K-nearest neighbor classification, *DATA privacy, *DATA security, *CLOUD computing, *RESEARCH personnel

Abstract

In recent years, many companies have chosen to outsource data and other data computation tasks to cloud service providers to reduce costs and increase efficiency. However, there are risks of security and privacy breaches when users outsource data to a cloud environment. Many researchers have proposed schemes based on cryptographic primitives to address these risks under the assumption that the cloud is a semi-honest participant and query users are honest participants. However, in a real-world environment, users' data privacy and security may be threatened by the presence of malicious participants. Therefore, a novel scheme based on secure multi-party computation is proposed when attackers gain control over both the cloud and a query user in the paper. We prove that our solution can satisfy our goals of security and privacy protection. In addition, our experimental results based on simulated data show feasibility and reliability. [ABSTRACT FROM AUTHOR]

Published

2023

17. Enhancing Cloud Data Privacy with a Scalable Hybrid Approach: HE-DPSMC.

Author

Singh, Jaibir, Reddy, A. Malla, Bande, Vasavi, Lakshmanarao, A., Rao, Goda Srinivasa, and Samunnisa, K.

Subjects

*DATA privacy, *CLOUD storage, *CLOUD computing, *SCALABILITY, *PRIVACY

Abstract

Cloud computing has become a popular way to store and access data. However, there are concerns about the privacy of data stored in the cloud. This paper proposes a novel privacy-preserving mechanism that uses a combination of homomorphic encryption, differential privacy, and secure multi-party computation. The mechanism allows users to store their data in the cloud while still ensuring the privacy of their data. The mechanism combines three cryptographic techniques: homomorphic encryption(HE), differential privacy(DP), and secure multi-party computation(SMC). Homomorphic encryption enables computations on encrypted data, ensuring that confidentiality is maintained throughout the storage process. Differential privacy(DP) techniques add an additional layer of protection by injecting controlled noise into query responses, preserving the privacy of individual data items. Secure multi-party computation protocols ensure that computations involving multiple cloud servers are performed securely without compromising the confidentiality of data. The mechanism is efficient and scalable. It can be used to protect the privacy of data in a wide range of applications, including healthcare, finance, and government. The quantitative results obtained from the performance evaluation of the proposed privacy-preserving mechanism reveal valuable insights into its efficiency and effectiveness. The mechanism shows promising results for small to medium-sized datasets. As the dataset size increases, the execution time, communication overhead, and storage requirements also increase proportionally. However, the mechanism maintains its scalability and efficiency. In comparison with baseline systems, the proposed mechanism outperforms systems without privacy-preserving mechanisms and only exhibits slightly slower performance than systems with traditional encryption. The proposed mechanism is a promising new approach to privacy-preserving cloud computing. It provides a strong level of protection against a variety of attacks, while still being efficient and scalable. It has the potential to revolutionize the way we store and share sensitive data.. [ABSTRACT FROM AUTHOR]

Published

2023

18. Secure distributed data integrity auditing with high efficiency in 5G-enabled software-defined edge computing.

Author

Dengzhi Liu, Zhimin Li, and Dongbao Jia

Subjects

EDGE computing, AUDITING, DATA integrity, DATA warehousing, TRUST, CLOUD computing

Abstract

In edge computing, the idle resources of the devices in the network can be virtualized into a platform that provides clients with storage resource and computing capability. Note that the service response of edge computing is faster than that of cloud computing. The service provision speed and the distributed resources utilization rate of edge computing will be further improved when integrated with 5 G and software definition paradigm in the design of the network system. However, the issues of data storage security and edge devices' trustworthiness seriously restrict the development of edge computing. To enhance the security of the data storage in edge computing, a secure distributed data integrity auditing is proposed. The proposed auditing scheme in this paper can be used to guarantee the correctness and the completeness of the stored data in 5G-enabled software-defined edge computing. The auditing results of the distributed data in the proposed scheme can be used as an important basis for evaluating the trustworthiness of the edge devices. Due to the utilization of certificateless cryptography in the design of the proposed scheme, the computational cost of the terminal side can be highly reduced. Security analysis of the proposed scheme demonstrates that the properties of key exposure resistance and privacy-preserving are provided in data auditing. Simulation results of the time cost of the server side and the terminal side show that the proposed scheme is highly efficient compared to previous schemes. [ABSTRACT FROM AUTHOR]

Published

2023

19. 安全高效的隐私保护公共可验证矩阵乘法外包计算方案.

Author

孙守道, 杨沈, 陈一恒, and 王强

Abstract

Copyright of Telecommunications Science is the property of Beijing Xintong Media Co., Ltd. and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2023

20. Understanding Policy and Technical Aspects of AI-enabled Smart Video Surveillance to Address Public Safety

Author

Babak Rahimi Ardabili, Armin Danesh Pazho, Ghazal Alinezhad Noghre, Christopher Neff, Sai Datta Bhaskararayuni, Arun Ravindran, Shannon Reid, and Hamed Tabkhi

Subjects

Video Analytic, Public Safety, Privacy-Preserving, Smart City, Cloud computing, Mobile Application, Cities. Urban geography, GF125

Abstract

Abstract Recent advancements in artificial intelligence (AI) have seen the emergence of smart video surveillance (SVS) in many practical applications, particularly for building safer and more secure communities in our urban environments. Cognitive tasks, such as identifying objects, recognizing actions, and detecting anomalous behaviors, can produce data capable of providing valuable insights to the community through statistical and analytical tools. However, artificially intelligent surveillance systems design requires special considerations for ethical challenges and concerns. The use and storage of personally identifiable information (PII) commonly pose an increased risk to personal privacy. To address these issues, this paper identifies the privacy concerns and requirements needed to address when designing AI-enabled smart video surveillance. Further, we propose the first end-to-end AI-enabled privacy-preserving smart video surveillance system that holistically combines computer vision analytics, statistical data analytics, cloud-native services, and end-user applications. Finally, we propose quantitative and qualitative metrics to evaluate intelligent video surveillance systems. The system shows the 17.8 frame-per-second (FPS) processing in extreme video scenes. However, considering privacy in designing such a system results in preferring the pose-based algorithm to the pixel-based one. This choice resulted in dropping accuracy in both action and anomaly detection tasks. The results drop from 97.48% to 73.72% in anomaly detection and 96% to 83.07% in the action detection task. On average, the latency of the end-to-end system is 36.1 seconds.

Published

2023

21. Query on the cloud: improved privacy-preserving k-nearest neighbor classification over the outsourced database.

Author

Yang, Kun, Tian, Chengliang, Xian, Hequn, Tian, Weizhong, and Zhang, Yan

Subjects

*K-nearest neighbor classification, *DATABASES, *WORLD Wide Web, *BIG data, *CLOUD computing

Abstract

In the current cloud computing and big data era, outsourcing the storage and associated query operations of large-scale databases to cloud service providers has become an increasingly popular computing paradigm. However, due to the potential mutual distrust among the data owner (DO), cloud server (CS) and query user (QU), the risk of privacy disclosure constrains the wide deployment of this attractive computing paradigm. To handle this dilemma, various encryption approaches are designed to assure privacy during query processing over outsourced databases. Recently, Wu et al. (World Wide Web 22(1), 101–123 2019) presented a 'secure' k-nearest neighbor (k NN) classification scheme over encrypted cloud database which aimed to concurrently keep the privacy of the database, the DO's key, the QU's query, and the data access patterns. In this paper, we first revisit their scheme and present an efficient known-plaintext attack on the privacy of database with linearization technique. Then, we propose an improved scheme that outperforms the prior scheme in both security and efficiency. Precisely, on the security side, we realize the above four security intentions with rigorous theoretical arguments. On the efficiency side, our new design greatly reduces the computational overhead of the DO and the QU, and makes full use of the resources of two cloud servers by better balancing their computational loads. Finally, we measure the practical performance of our scheme from an experimental perspective, and the result corroborates our theoretical analysis. [ABSTRACT FROM AUTHOR]

Published

2023

22. Privacy-Preserving and Security in SDN-Based IoT: A Survey

Author

Hossein Ahmadvand, Chhagan Lal, Hadi Hemmati, Mehdi Sookhak, and Mauro Conti

Subjects

Software-defined network, privacy-preserving, security, cloud computing, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

In recent years, the use of Software Defined Networking (SDN) has increased due to various network management requirements. Using SDN in computer network applications has brought several benefits to users, including lower operational costs, better hardware management, flexibility, and centralized network deployment. On the other hand, the Internet of Things (IoT) is another rapidly growing technology. Distributed and dynamic infrastructures are two critical characteristics of IoT. These characteristics lead to some challenges while using SDN in IoT in terms of security and privacy. In this paper, we address security and privacy issues and solutions for SDN-based IoT systems. We analyze the techniques used for defense in previous works to achieve an acceptable level of security and privacy protection in SDN-based IoT systems. In the data plane, SDN-based IoT papers have considered hashing and encryption techniques, in the control plane, certificate authority and access control have been analyzed, and in the application plane, attack detection, and authentication have been discussed. We also provide a statistical analysis of the existing work. This analysis shows that researchers have focused on certain areas more than others in recent years. The final analysis also highlights issues that previous researchers have ignored.

Published

2023

23. Secure and Non-interactive k-NN Classifier Using Symmetric Fully Homomorphic Encryption

Author

Ameur, Yulliwas, Aziz, Rezak, Audigier, Vincent, Bouzefrane, Samia, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Domingo-Ferrer, Josep, editor, and Laurent, Maryline, editor

Published

2022

24. Credential-Based Authentication Mechanism for IoT Devices in Fog-Cloud Computing

Author

Ali, Hala S., Sridevi, R., Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Fong, Simon, editor, Dey, Nilanjan, editor, and Joshi, Amit, editor

Published

2022

25. Web-based practical privacy-preserving distributed image storage for financial services in cloud computing.

Author

Xiaohong, Cai, Yi, Sun, Zhaowen, Lin, Imran, Muhammad, and Keping, Yu

Subjects

*FINANCIAL services industry, *CLOUD computing, *IMAGE encryption, *DATA warehousing, *ARTIFICIAL intelligence, *DATA security, *FINANCIAL technology

Abstract

With the development of multimedia technology and applications in the financial services industry, a large amount of multimedia image data related to financial services has been generated. For local users with limited resources including enterprises and individuals, it is a better choice to make full use of the rich storage capacity of the cloud. However, due to outsourcing the financial services image data to store on the cloud server, local users lose their direct control ability, which threatens the privacy of users. Although data security storage has attracted great attention from researchers, the protection of massive amounts of data, especially for financial services images, is brought to a new level with the advent of the era of artificial intelligence. In this paper, we focus on this issue and propose a lightweight data storage approach for privacy-preserving financial services images in the cloud. First, we use the EfficientDet neural network model to identify a large number of financial services images with sensitive data and classify the images. Then we perform different operations on the two types of images based on our proposed privacy-preserving financial services image storage architecture. Specifically, for privacy-sensitive financial services images, we use the privacy-preserving scheme we proposed to store the privacy parts on different servers, and directly outsource the storage of the remaining images without sensitive information. The experimental results show that our scheme achieves 2 x - 5 x lower than some popular image encryption schemes on time consumption, and simultaneously protects the security of images. In particular, our scheme shows more excellent performance when it comes to storing a large number of financial services multimedia images. [ABSTRACT FROM AUTHOR]

Published

2023

26. A Multi-Key with Partially Homomorphic Encryption Scheme for Low-End Devices Ensuring Data Integrity †.

Author

Medileh, Saci, Laouid, Abdelkader, Hammoudeh, Mohammad, Kara, Mostefa, Bejaoui, Tarek, Eleyan, Amna, and Al-Khalidi, Mohammed

Subjects

*DATA integrity, *ADDITION (Mathematics), *REAL-time control, *IMAGE encryption, *ELECTRONIC data processing, *FAULT tolerance (Engineering), *CLOUD computing

Abstract

In today's hyperconnected world, the Internet of Things and Cloud Computing complement each other in several areas. Cloud Computing provides IoT systems with an efficient and flexible environment that supports application requirements such as real-time control/monitoring, scalability, fault tolerance, and numerous security services. Hardware and software limitations of IoT devices can be mitigated using the massive on-demand cloud resources. However, IoT cloud-based solutions pose some security and privacy concerns, specifically when an untrusted cloud is used. This calls for strong encryption schemes that allow operations on data in an encrypted format without compromising the encryption. This paper presents an asymmetric multi-key and partially homomorphic encryption scheme. The scheme provides the addition operation by encrypting each decimal digit of the given integer number separately using a special key. In addition, data integrity processes are performed when an untrusted third party performs homomorphic operations on encrypted data. The proposed work considers the most widely known issues like the encrypted data size, slow operations at the hardware level, and high computing costs at the provider level. The size of generated ciphertext is almost equal to the size of the plaintext, and order-preserving is ensured using an asymmetrical encryption version. [ABSTRACT FROM AUTHOR]

Published

2023

27. Software-driven secure framework for mobile healthcare applications in IoMT.

Author

Krishna, T. Bala Murali, Praveen, S. Phani, Ahmed, Shakeel, and Srinivasu, Parvathaneni Naga

Subjects

MOBILE health, MOBILE apps, ELLIPTIC curve cryptography, INTERNET protocols, INTERNET security, CLOUD computing

Abstract

The traditional healthcare systems require more data storage and not a quick responsive mode. The new era of intelligent healthcare systems uses advanced frameworks and devices to work with Internet of things (IoT), Cloud Computing, edge computing devices, and the Internet of Medical Things (IoMT). These technology adoptions may drastically increase healthcare systems performance and are available anytime and anywhere to replace traditional medical methods – the organizations in the network exchange the patient data that has been gathered. The healthcare systems are therefore susceptible to a variety of threats. The attacker may exploit many attacks during the transmission. This paper introduces a novel mechanism of A Secure Robust Privacy-Preserving Authentication and Key Agreement Framework for Mobile Healthcare Applications. The proposed framework collects the patient's data using wearable devices called sensors, and the collected data is shared with various entities using a secure mechanism. The proposed framework uses Elliptic Curve Cryptography (ECC). Digital sign is created and validated through the Elliptic Curve Digital Signature Algorithm (ECDSA). Security properties of the proposed framework are analyzed through standard model checking tool Automated Validation of Internet Security Protocols (AVISPA). The suggested protocol is simple to develop and can withstand network-related threats. [ABSTRACT FROM AUTHOR]

Published

2023

28. Towards Developing Privacy-Preserved Data Security Approach (PP-DSA) in Cloud Computing Environment.

Author

Kirubakaran, S. Stewart, Arunachalam, V. P., Karthik, S., and Kannan, S.

Subjects

CLOUD computing, COMPUTER access control, QUALITY of service, DATA security failures, DATA integrity

Abstract

In the present scenario of rapid growth in cloud computing models, several companies and users started to share their data on cloud servers. However, when the model is not completely trusted, the data owners face several security-related problems, such as user privacy breaches, data disclosure, data corruption, and so on, during the process of data outsourcing. For addressing and handling the security-related issues on Cloud, several models were proposed. With that concern, this paper develops a Privacy-Preserved Data Security Approach (PP-DSA) to provide the data security and data integrity for the outsourcing data in Cloud Environment. Privacy preservation is ensured in this work with the Efficient Authentication Technique (EAT) using the Group Signature method that is applied with Third-Party Auditor (TPA). The role of the auditor is to secure the data and guarantee shared data integrity. Additionally, the Cloud Service Provider (CSP) and Data User (DU) can also be the attackers that are to be handled with the EAT. Here, the major objective of the work is to enhance cloud security and thereby, increase Quality of Service (QoS). The results are evaluated based on the model effectiveness, security, and reliability and show that the proposed model provides better results than existing works. [ABSTRACT FROM AUTHOR]

Published

2023

29. A Privacy-preserving Image Retrieval Scheme in Edge Computing Environment.

Author

Yiran Zhang, Huizheng Geng, Yanyan Xu, Li Su, and Fei Liu

Subjects

IMAGE retrieval, REAL-time computing, DISTRIBUTED computing, CLOUD computing, ENERGY consumption, EDGE computing

Abstract

Traditional cloud computing faces some challenges such as huge energy consumption, network delay and single point of failure. Edge computing is a typical distributed processing platform which includes multiple edge servers closer to the users, thus is more robust and can provide real-time computing services. Although outsourcing data to edge servers can bring great convenience, it also brings serious security threats. In order to provide image retrieval while ensuring users' data privacy, a privacy preserving image retrieval scheme in edge environment is proposed. Considering the distributed characteristics of edge computing environment and the requirement for lightweight computing, we present a privacy-preserving image retrieval scheme in edge computing environment, which two or more "honest but curious" servers retrieve the image quickly and accurately without divulging the image content. Compared with other traditional schemes, the scheme consumes less computing resources and has higher computing efficiency, which is more suitable for resource-constrained edge computing environment. Experimental results show the algorithm has high security, retrieval accuracy and efficiency. [ABSTRACT FROM AUTHOR]

Published

2023

30. State-of-the-Art in Data Integrity and Privacy-Preserving in Cloud Computing.

Author

Abdul-Jabbar, Mariam Duraid and aldeen, Yousra Abdul alsahib s.

Subjects

CLOUD computing, DATA integrity, DATA security, PERSONALLY identifiable information

Abstract

Copyright of Journal of Engineering (17264073) is the property of Republic of Iraq Ministry of Higher Education & Scientific Research (MOHESR) and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2023

31. Privacy-Preserving k-Nearest Neighbor Classification over Malicious Participants in Outsourced Cloud Environments

Author

Xian Guo, Ye Li, Yongbo Jiang, Jing Wang, and Junli Fang

Subjects

privacy-preserving, security, encryption, cloud computing, Technology

Abstract

In recent years, many companies have chosen to outsource data and other data computation tasks to cloud service providers to reduce costs and increase efficiency. However, there are risks of security and privacy breaches when users outsource data to a cloud environment. Many researchers have proposed schemes based on cryptographic primitives to address these risks under the assumption that the cloud is a semi-honest participant and query users are honest participants. However, in a real-world environment, users’ data privacy and security may be threatened by the presence of malicious participants. Therefore, a novel scheme based on secure multi-party computation is proposed when attackers gain control over both the cloud and a query user in the paper. We prove that our solution can satisfy our goals of security and privacy protection. In addition, our experimental results based on simulated data show feasibility and reliability.

Published

2023

32. Efficient Biometric Identification on the Cloud With Privacy Preservation Guarantee

Author

Linlin Yang, Chengliang Tian, Gongjing Zhang, Leibo Li, and Huanli Wang

Subjects

Biometric identification, privacy-preserving, householder transformation, cloud computing, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Benefited from its reliability and convenience, biometric identification has become one of the most popular authentication technologies. Due to the sensitivity of biometric data, various privacy-preserving biometric identification protocols have been proposed. However, the low computational efficiency or the security vulnerabilities of these protocols limit their wide deployment in practice. To further improve the efficiency and enhance the security, in this paper, we propose two new privacy-preserving biometric identification outsourcing protocols. One mainly utilizes the efficient Householder transformation and permutation technique to realize the high-efficiency intention under the known candidate attack model. The other initializes a novel random split technique and combines it with the invertible linear transformation to achieve a higher security requirement under the known-plaintext attack model. Also, we argue the security of our proposed two protocols with a strict theoretical analysis and, by comparing them with the prior existing works, comprehensively evaluate their efficiency.

Published

2022

33. Certificateless public auditing with data privacy preserving for cloud-based smart grid data

Author

Chao Gai, Wenting Shen, Ming Yang, and Ye Su

Subjects

smart grid, certificateless public auditing, cloud computing, cloud storage, privacy—preserving, General Works

Abstract

As the promising next generation power system, smart grid can collect and analyze the grid information in real time, which greatly improves the reliability and efficiency of the grid. However, as smart grid coverage expands, more and more data is being collected. To store and manage the massive amount of smart grid data, the data owners choose to upload the grid data to the cloud for storage and regularly check the integrity of their data. However, traditional public auditing schemes are mostly based on Public Key Infrastructure (PKI) or Identity Based Cryptography (IBC) system, which will lead to complicated certificate management and inherent key escrow problems. We propose a certificateless public auditing scheme for cloud-based smart grid data, which can avoid the above two problems. In order to prevent the disclosure of the private data collected by the smart grid during the phase of auditing, we use the random masking technology to protect data privacy. The security analysis and the performance evaluation show that the proposed scheme is secure and efficient.

Published

2023

34. A Blockchain-Based Data Sharing System with Enhanced Auditability.

Author

Xiao, Yao, Xu, Lei, Chen, Zikang, Zhang, Can, and Zhu, Liehuang

Subjects

*INFORMATION sharing, *DATA encryption, *CLOUD computing, *BLOCKCHAINS, *PROBLEM solving

Abstract

Cloud platforms provide a low-cost and convenient way for users to share data. One important issue of cloud-based data sharing systems is how to prevent the sensitive information contained in users' data from being disclosed. Existing studies often utilize cryptographic primitives, such as attribute-based encryption and proxy re-encryption, to protect data privacy. These approaches generally rely on a centralized server which may cause a single point of failure problem. Blockchain is known for its ability to solve such a problem. Some blockchain-based approaches have been proposed to realize privacy-preserving data sharing. However, these approaches did not fully explore the auditability provided by the blockchain. The dishonest cloud server can share data with a requester without notifying the data owner or being logged by the blockchain. In this paper, we propose a blockchain-based privacy-preserving data sharing system with enhanced auditability. The proposed system follows the idea of hybrid encryption to protect data privacy. The data to be shared are encrypted with a symmetric key, and the symmetric key is encrypted with a joint public key which is the sum of multiple blockchain nodes' public keys. Only if a data requester is authorized, the blockchain nodes will be triggered to execute a verifiable key switch protocol. By using the output of the protocol, the data requester can get the plaintext of the symmetric key. The blockchain nodes participate in both the authorization process and the key switch process, which means the behavior of the data requester is witnessed by multi-parties and is auditable. We implement the proposed system on Hyperledger Fabric. The simulation results show that the performance overhead is acceptable. [ABSTRACT FROM AUTHOR]

Published

2022

35. Efficient Privacy-Preserving Skyline Queries over Outsourced Cloud

Author

Li, Lu, Jiang, Xufeng, Zhu, Fei, Liu, An, Barbosa, Simone Diniz Junqueira, Editorial Board Member, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Kotenko, Igor, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, U, Leong Hou, editor, Yang, Jian, editor, Cai, Yi, editor, Karlapalem, Kamalakar, editor, Liu, An, editor, and Huang, Xin, editor

Published

2020

36. CUNA: A privacy preserving medical records storage in cloud environment using deep encryption

Author

Gayathri S and Gowri S

Subjects

Image retrieval, Deep learning, Privacy-preserving, Cloud computing, Data encryption, Electric apparatus and materials. Electric circuits. Electric networks, TK452-454.4

Abstract

Securing the medical images in cloud environment becomes mandatory because of massive image accumulation and information storage in cloud premises. Large accommodation of information in the cloud brings another risk of data security. Privacy preserving data mining techniques investigate privacy of data to be maintained before or either after the data mining technique. Lightweight technique to store the patient data securely in the cloud is focused. The proposed study is focused on designing a robust model in which medical records privacy is preserved using Customizable Unique node access (CUNA) architecture. The system design undergoes data preparation, encryption, cloud transfer, decryption and analysis modules. The input to the proposed system is patient health care data such as CT images, Medical records, Clinical treatment procedures etc. The CT images are encrypted with respect to their medical records, further transferred into the cloud by hiding the text based confidential data into the images. Inspite of normal cloud storage process, the proposed approach utilized deep cryptography technique to make authenticated storage mechanism adaptive in the cloud. CUNA is the customized commonly allocated key assigned at every node. The unique key word is encrypted, and utilized to transfer the privacy data of the patients. The data can be retrieved from the cloud, after the decryption of CUNA code. The correlation of the key is systematically achieved using Gaussian regression process algorithm (GRA). The proposed approach is compared with various state-of-art approaches and obtained the accuracy of 92% with image MSE of 0.0012%.

Published

2022

37. A Differential Approach for Data and Classification Service-Based Privacy-Preserving Machine Learning Model in Cloud Environment.

Author

Gupta, Rishabh and Singh, Ashutosh Kumar

Subjects

*MACHINE learning, *CLOUD storage, *NAIVE Bayes classification, *CLASSIFICATION, *CLOUD computing, *TRUST

Abstract

The massive upsurge in computational and storage has driven the local data and machine learning applications to the cloud environment. The owners may not fully trust the cloud environment as it is managed by third parties. However, maintaining privacy while sharing data and the classifier with several stakeholders is a critical challenge. This paper proposes a novel model based on differential privacy and machine learning approaches that enable multiple owners to share their data for utilization and the classifier to render classification services for users in the cloud environment. To process owners' data and classifier, the model specifies a communication protocol among various untrustworthy parties. The proposed model also provides a robust mechanism to preserve the privacy of data and the classifier. The experiments are conducted for a Naive Bayes classifier over numerous data sets to compute the proposed model's efficiency. The achieved results demonstrate that the proposed model has high accuracy, precision, recall, and F1-score up to 94%, 95%, 94%, and 94%, and improvement up to 16.95%, 20.16%, 16.95%, and 23.33%, respectively, compared with state-of-the-art works. [ABSTRACT FROM AUTHOR]

Published

2022

38. Achieving Efficient and Privacy-Preserving Set Containment Search Over Encrypted Data.

Author

Zheng, Yandong, Lu, Rongxing, Guan, Yunguo, Shao, Jun, and Zhu, Hui

Abstract

Set containment search, which aims to retrieve all set records containing a specific query set, has received considerable attention. Meanwhile, due to the dramatic growth of data, data owners tend to outsource their data to the cloud and deploy the cloud server to offer the set containment search services. However, as the cloud server is not fully trustable and the data may be sensitive, a straightforward strategy for the data owners is to encrypt the data before outsourcing them. Although the encryption technique can preserve data privacy, it inevitably hinders the functionality of set containment search. Many existing studies on the set containment search over outsourced data still suffer from the search efficiency and security issues. In this article, aiming at the above issues, we propose an efficient and privacy-preserving set containment search scheme. Specifically, we first deploy an asymmetric scalar-product-preserving encryption technique to design a set containment/intersection encryption (SCIE-Enc) scheme. Then, we build a radix tree to represent the set records. Based on the radix tree and SCIE-Enc construction, we present our scheme that can achieve efficient set containment search while preserving the privacy of set records, query sets, and query results, as indicated in our security analysis and performance evaluation. [ABSTRACT FROM AUTHOR]

Published

2022

39. A Verifiable Privacy-Preserving Machine Learning Prediction Scheme for Edge-Enhanced HCPSs.

Author

Li, Xiong, He, Jiabei, Vijayakumar, Pandi, Zhang, Xiaosong, and Chang, Victor

Abstract

As a highly integrated industrial system, human cyber-physical systems (HCPSs) provide accurate and high-quality services for Industry 5.0. In HCPSs, machine learning (ML) prediction provides reliable prediction results for users based on matured models, while security and privacy protection are considerable issues. In this article, based on the modified Okamoto–Uchiyama homomorphic encryption, we propose a verifiable privacy-preserving machine learning prediction scheme for the edge-enhanced HCPSs, which outputs the verifiable prediction results for users without privacy leakage. Specifically, a batch of prediction results can be verified at one time, which improves the efficiency of verification. Security analysis shows that our scheme protects the privacy of inputs, ML model, and prediction results. The experiment results demonstrate that the edge computing architecture remarkably alleviates the computational burden of the cloud server. Furthermore, compared with other related schemes, our scheme shows the best execution efficiency, and batch verification optimizes the performance by about 15% compared with single verification on the same scale. [ABSTRACT FROM AUTHOR]

Published

2022

40. DAP2CMH: Deep Adversarial Privacy-Preserving Cross-Modal Hashing.

Author

Zhu, Lei, Song, Jiayu, Yang, Zhan, Huang, Wenti, Zhang, Chengyuan, and Yu, Weiren

Subjects

INFORMATION retrieval, CLOUD computing, DATA analysis, DATABASES, DEEP learning

Abstract

Privacy-preserving cross-modal retrieval is a significant problem in the area of multimedia analysis. As the amount of data is exploding, cross-modal data analysis and retrieval is often realized on cloud computing environment. Therefore, the privacy protection of large-scale cross-modal data has become a problem that can not be ignored. To further improve the accuracy and efficiency of privacy-preserving search, this paper proposes a novel cross-modal hashing scheme, named deep adversarial privacy-preserving cross-modal hashing (DAP 2 CMH). This method consists of a deep cross-modal hashing model termed DACMH, and a secure index structure called CMH 2 -Tree. The former is a combination of deep hashing and adversarial learning to capture intra-modal and inter-modal correlation. The latter is a hierarchical hashing index structure that can provide efficient data organization based on cross-modal hash codes. We conduct comprehensive experiments on three common used benchmarks. The results show that the proposed approach DAP 2 CMH outperforms the state-of-the-arts. [ABSTRACT FROM AUTHOR]

Published

2022

41. Privacy-Preserving Multi-Class Support Vector Machine Model on Medical Diagnosis.

Author

Chen, Yange, Mao, Qinyu, Wang, Baocang, Duan, Pu, Zhang, Benyu, and Hong, Zhiyong

Subjects

SUPPORT vector machines, DIAGNOSIS, VIRTUAL communities, MEDICAL personnel, CLASSIFICATION algorithms, INTERNET privacy, MACHINE learning, DIAGNOSTIC imaging

Abstract

With the rapid development of machine learning in the medical cloud system, cloud-assisted medical computing provides a concrete platform for remote rapid medical diagnosis services. Support vector machine (SVM), as one of the important algorithms of machine learning, has been widely used in the field of medical diagnosis for its high classification accuracy and efficiency. In some existing schemes, healthcare providers train diagnostic models with SVM algorithms and provide online diagnostic services to doctors. Doctors send the patient’s case report to the diagnostic models to obtain the results and assist in clinical diagnosis. However, case report involves patients’ privacy, and patients do not want their sensitive information to be leaked. Therefore, the protection of patient’s privacy has become an important research direction in the field of online medical diagnosis. In this paper, we propose a privacy-preserving medical diagnosis scheme based on multi-class SVMs. The scheme is based on the distributed two trapdoors public key cryptosystem (DT-PKC) and Boneh-Goh-Nissim (BGN) cryptosystem. We design a secure computing protocol to compute the core process of the SVM classification algorithm. Our scheme can deal with both linearly separable data and nonlinear data while protecting the privacy of user data and support vectors. The results show that our scheme is secure, reliable, scalable with high accuracy. [ABSTRACT FROM AUTHOR]

Published

2022

42. Multi-user privacy-preserving image search in distributed cloud computing.

Author

Zhang, Zongye, Zhou, Fucai, and Wang, Yan

Subjects

*DISTRIBUTED computing, *CLOUD computing, *LEAKAGE, *CONTRACTING out, *PRIVACY

Abstract

Cloud-based image search has emerged as a research focus, but security and privacy concerns limit its application. One secure solution is to encrypt the images before outsourcing them to the cloud. Nevertheless, encryption significantly reduces image availability and suffers from some privacy leakages, such as search pattern leakage, access pattern leakage, and similarity leakage. With the exponential growth of images, the distributed cloud architecture is adopted to provide storage and search services for vast amounts of images. However, ensuring multi-user access control in distributed cloud computing remains a challenge. To address these problems, we propose a multi-user privacy-preserving image search scheme in distributed cloud computing environments. First, we propose an SGX-based privacy-preserving distributed image search framework that leverages SGX to protect image similarity against cloud servers. Second, we present an index re-encryption strategy and an access obfuscation strategy to preserve the search pattern and the access pattern. Last, we propose a multi-secret sharing-empowered multi-user access control method enabling multi-user queries and facilitating lightweight multi-user management in distributed environments. Security analysis and experimental evaluation demonstrate that our proposed scheme guarantees privacy with efficient search. [ABSTRACT FROM AUTHOR]

Published

2024

43. Privacy-preserving multi-party logistic regression in cloud computing.

Author

Wang, Huiyong, Chen, Tianming, Ding, Yong, Wang, Yujue, and Yang, Changsong

Subjects

*LOGISTIC regression analysis, *DATA privacy, *POLYNOMIAL approximation, *REGRESSION analysis, *NONLINEAR functions, *CLOUD computing, *MACHINE learning

Abstract

In recent years, machine learning techniques have been widely deployed in various fields. However, machine learning faces problems like high computation overhead, low training accuracy, and poor security due to data silos, privacy issues and communication limitations, especially in the environment of cloud computing. Logistic regression (LR) is a popular machine learning method used for prediction, while current LR algorithms suffer from high computation cost and communication burden due to interactions between users and cloud servers. In this paper, we propose a Privacy-Preserving Multi-party Logistic Regression (PPMLR) algorithm, which achieves privacy-preserving and non-interactive gradient descent regression training in machine learning. PPMLR uses the Distributed two Trapdoors Public-Key Cryptosystem (DT-PKC) as a main building block, which satisfies additive homomorphic encryption. Specifically, users go off-line after encrypting local private data, then the service provider (SP) trains the global logistic regression model by interacting with the cloud server (CS), so that the confidentiality and privacy of user's private data can be guaranteed during the training process. We prove by detailed security proof that PPMLR guarantees data and model privacy. Finally, we conduct experiments on two popular medical datasets from the UCI machine learning repository. The experimental results show that PPMLR can conduct privacy-preserving training efficiently. Comparison with the stat-of-the-art Privacy-Preserving Logistic Regression Algorithm (PPLRA) shows that the model training time is reduced by about 4 times. • We propose a PPMLR scheme that supports authentication. • Our scheme is fault tolerant and does not need the data owner to interact with the cloud server. • Our scheme is enabled to create highly accurate models because it does not require the use of polynomial approximations for nonlinear activation functions. [ABSTRACT FROM AUTHOR]

Published

2024

44. Privacy-preserving geo-tagged image search in edge–cloud computing for IoT.

Author

Zhang, Zongye, Zhou, Fucai, and Hou, Ruiwei

Subjects

*INTERNET of things, *EDGE computing, *GEOTAGGING, *CLOUD computing, *DATA encryption

Abstract

The Internet of Things (IoT) generates a significant volume of geo-tagged images via surveillance sensors in edge–cloud computing environments. Image search is essential to facilitate information sharing, data analysis, and strategic decision-making. However, outsourced images are typically encrypted for privacy protection, posing a challenge in simultaneously searching for visual and geographical relevance on encrypted images. To address this, this paper proposes an edge intelligence empowered privacy-preserving top- k geo-tagged image search scheme for IoT in edge–cloud computing. The scheme presents a novel single-to-multi searchable encryption method for geo-tagged images that enables multiple users to perform secure nearest neighbor queries on a data source. Additionally, an extended anchor-based position determination method and an inner product-based distance calculation method are designed to enable geo-tagged image similarity calculation on ciphertext. Finally, a secure pruning method is introduced to improve query performance. Experiments are conducted to verify the performance of the scheme in terms of high efficiency and accuracy of the search. • Single-to-multi searchable encryption model on geo-tagged images. • Secure nearest neighbor queries on geo-tagged images. • Secure pruning based on the extended locality-sensitive hashing. • Distance calculation from an encrypted data point to an encrypted space. • Extended anchor-based position determination. [ABSTRACT FROM AUTHOR]

Published

2024

45. A Practical Framework for Secure Document Retrieval in Encrypted Cloud File Systems.

Author

Fu, Junsong, Wang, Na, Cui, Baojiang, and Bhargava, Bharat K.

Subjects

*INFORMATION retrieval, *PROXY servers, *SEARCH algorithms, *CLOUD storage, *CLOUD computing

Abstract

With the development of cloud computing, more and more data owners are motivated to outsource their documents to the cloud and share them with the authorized data users securely and flexibly. To protect data privacy, the documents are generally encrypted before being outsourced to the cloud and hence their searchability decreases. Though many privacy-preserving document search schemes have been proposed, they cannot reach a proper balance among functionality, flexibility, security and efficiency. In this paper, a new encrypted document retrieval system is designed and a proxy server is integrated into the system to alleviate data owner's workload and improve the whole system's security level. In this process, we consider a more practical and stronger threat model in which the cloud server can collude with a small number of data users. To support multiple document search patterns, we construct two AVL trees for the filenames and authors, and a Hierarchical Retrieval Features tree (HRF tree) for the document vectors. A depth-first search algorithm is designed for the HRF tree and the Enhanced Asymmetric Scalar-Product-Preserving Encryption (Enhanced ASPE) algorithm is utilized to encrypt the HRF tree. All the three index trees are linked with each other to efficiently support the search requests with multiple parameters. Theoretical analysis and simulation results illustrate the security and efficiency of the proposed framework. [ABSTRACT FROM AUTHOR]

Published

2022

46. Example Based Privacy-Preserving Video Color Grading

Author

Rajput, Amitesh Singh, Raman, Balasubramanian, Singh, Amit Kumar, editor, and Mohan, Anand, editor

Published

2019

47. A Statistical Inference Attack on Privacy-Preserving Biometric Identification Scheme

Author

Dongmin Kim and Kee Sung Kim

Subjects

Biometric identification, cloud computing, privacy-preserving, statistical inference attack, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Biometric identification allows people to be identified by their unique physical characteristics. Among such schemes, fingerprinting is well-known for biometric identification. Many studies related to fingerprint-based biometric identification have been proposed; however, they are based purely on heavy cryptographic primitives such as additively homomorphic encryption and oblivious transfer. Therefore, it is difficult to apply them to large databases because of the expense. To resolve this problem, some schemes have been proposed that are based on simple matrix operations rather than heavy cryptographic primitives. Recently, Liu et al. proposed an improved matrix-based scheme using the properties of orthogonal matrices. Despite being more efficient when compared to previous systems, it still fails to provide sufficient security against various types of attackers. In this paper, we demonstrate that their scheme is vulnerable to an attacker who operates with a cloud server by introducing statistical-inference attack algorithms. Moreover, we propose concrete identity confirmation parameters that an adversary must always pass, and present experimental results to demonstrate that our algorithms are both feasible and practical.

Published

2021

48. An Efficient Secure System for Fetching Data From the Outsourced Encrypted Databases

Author

Sultan Almakdi, Brajendra Panda, Mohammed S. Alshehri, and Abdulwahab Alazeb

Subjects

Cybersecurity, privacy-preserving, encrypted databases, SQL queries, cloud computing, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Recently, database users have begun to use cloud database services to outsource their databases. The reason for this is the high computation speed and the huge storage capacity that cloud owners provide at low prices. However, despite the attractiveness of the cloud computing environment to database users, privacy issues remain a cause for concern for database owners since data access is out of their control. Encryption is the only way of assuaging users’ fears surrounding data privacy, but executing Structured Query Language (SQL) queries over encrypted data is a challenging task, especially if the data are encrypted by a randomized encryption algorithm. Many researchers have addressed the privacy issues by encrypting the data using deterministic, onion layer, or homomorphic encryption. Nevertheless, even with these systems, the encrypted data can still be subjected to attack. In this research, we first propose an indexing scheme to encode the original table’s tuples into bit vectors (BVs) prior to the encryption. The resulting index is then used to narrow the range of retrieved encrypted records from the cloud to a small set of records that are candidates for the user’s query. Based on the indexing scheme, we then design a system to execute SQL queries over the encrypted data. The data are encrypted by a single randomized encryption algorithm, namely the Advanced Encryption Standard-Cipher-Block Chaining (AES-CBC). In the proposed scheme, we store the index values (BVs) at user’s side, and we extend the system to support most of relational algebra operators, such as select, join, etc. Implementation and evaluation of the proposed system reveals that it is practical and efficient at reducing both the computation and space overhead when compared with state-of-the-art systems like CryptDB.

Published

2021

49. Privacy-Preserving Computation for Large-Scale Security-Constrained Optimal Power Flow Problem in Smart Grid

Author

Xiangyu Niu, Hung Khanh Nguyen, Jinyuan Sun, and Zhu Han

Subjects

Optimal power flow, privacy-preserving, security, cloud computing, smart grid, distributed systems, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

In this paper, we present a distributed privacy-preserving quadratic optimization algorithm to solve the Security Constrained Optimal Power Flow (SCOPF) problem in the smart grid. The SCOPF problem seeks the optimal dispatch subject to a set of postulated constraints under the normal and contingency conditions. However, due to the large problem size and real-time requirement, a fast and robust technique is required to solve this problem. Moreover, due to privacy concerns, it is important that the data remains confidential and processed on local computers. Therefore, a fully privacy-preserving algorithm is proposed which performs computation directly over the encrypted SCOPF problem. The SCOPF is decomposed into smaller subproblems corresponding to individual pre-contingency and post-contingency cases using the Alternating Direction Method of Multipliers (ADMM) and gradient projection algorithms. Both algorithms are presented for solving the SCOPF problem in a privacy-preserving and distributed manner. Security analysis shows that our algorithm can preserve both system confidentiality and data privacy. Performance evaluations validate the correctness and effectiveness of the proposed algorithm.

Published

2021

50. Understanding Policy and Technical Aspects of AI-enabled Smart Video Surveillance to Address Public Safety

Author

Ardabili, Babak Rahimi, Pazho, Armin Danesh, Noghre, Ghazal Alinezhad, Neff, Christopher, Bhaskararayuni, Sai Datta, Ravindran, Arun, Reid, Shannon, and Tabkhi, Hamed

Published

2023