TY - GEN
T1 - RESeED
T2 - 7th IEEE International Conference on Cloud Computing, CLOUD 2014
AU - Salehi, Mohsen Amini
AU - Caldwell, Thomas
AU - Fernandez, Alejandro
AU - Mickiewicz, Emmanuel
AU - Rozier, Eric W.D.
AU - Zonouz, Saman
AU - Redberg, David
PY - 2014/12/3
Y1 - 2014/12/3
N2 - Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.
AB - Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.
KW - cloud computing
KW - privacy
KW - regular expression
KW - searchable encryption
KW - security
UR - http://www.scopus.com/inward/record.url?scp=84919816290&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84919816290&partnerID=8YFLogxK
U2 - 10.1109/CLOUD.2014.95
DO - 10.1109/CLOUD.2014.95
M3 - Conference contribution
AN - SCOPUS:84919816290
T3 - IEEE International Conference on Cloud Computing, CLOUD
SP - 673
EP - 680
BT - Proceedings - 2014 IEEE 7th International Conference on Cloud Computing, CLOUD 2014
A2 - Kesselman, Carl
PB - IEEE Computer Society
Y2 - 27 June 2014 through 2 July 2014
ER -