RESeED: Regular expression search over encrypted data in the cloud

Mohsen Amini Salehi, Thomas Caldwell, Alejandro Fernandez, Emmanuel Mickiewicz, Eric W D Rozier, Saman Zonouz, David Redberg

Research output: Chapter in Book/Report/Conference proceedingConference contribution

10 Citations (Scopus)

Abstract

Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.

Original languageEnglish
Title of host publicationIEEE International Conference on Cloud Computing, CLOUD
PublisherIEEE Computer Society
Pages673-680
Number of pages8
ISBN (Print)9781479950638
DOIs
StatePublished - Jan 1 2014
Event7th IEEE International Conference on Cloud Computing, CLOUD 2014 - Anchorage, United States
Duration: Jun 27 2014Jul 2 2014

Other

Other7th IEEE International Conference on Cloud Computing, CLOUD 2014
CountryUnited States
CityAnchorage
Period6/27/147/2/14

Fingerprint

Finite automata
Data structures
Scalability
Data storage equipment

Keywords

  • cloud computing
  • privacy
  • regular expression
  • searchable encryption
  • security

ASJC Scopus subject areas

  • Artificial Intelligence
  • Information Systems
  • Software

Cite this

Salehi, M. A., Caldwell, T., Fernandez, A., Mickiewicz, E., Rozier, E. W. D., Zonouz, S., & Redberg, D. (2014). RESeED: Regular expression search over encrypted data in the cloud. In IEEE International Conference on Cloud Computing, CLOUD (pp. 673-680). [6973801] IEEE Computer Society. https://doi.org/10.1109/CLOUD.2014.95

RESeED : Regular expression search over encrypted data in the cloud. / Salehi, Mohsen Amini; Caldwell, Thomas; Fernandez, Alejandro; Mickiewicz, Emmanuel; Rozier, Eric W D; Zonouz, Saman; Redberg, David.

IEEE International Conference on Cloud Computing, CLOUD. IEEE Computer Society, 2014. p. 673-680 6973801.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Salehi, MA, Caldwell, T, Fernandez, A, Mickiewicz, E, Rozier, EWD, Zonouz, S & Redberg, D 2014, RESeED: Regular expression search over encrypted data in the cloud. in IEEE International Conference on Cloud Computing, CLOUD., 6973801, IEEE Computer Society, pp. 673-680, 7th IEEE International Conference on Cloud Computing, CLOUD 2014, Anchorage, United States, 6/27/14. https://doi.org/10.1109/CLOUD.2014.95
Salehi MA, Caldwell T, Fernandez A, Mickiewicz E, Rozier EWD, Zonouz S et al. RESeED: Regular expression search over encrypted data in the cloud. In IEEE International Conference on Cloud Computing, CLOUD. IEEE Computer Society. 2014. p. 673-680. 6973801 https://doi.org/10.1109/CLOUD.2014.95
Salehi, Mohsen Amini ; Caldwell, Thomas ; Fernandez, Alejandro ; Mickiewicz, Emmanuel ; Rozier, Eric W D ; Zonouz, Saman ; Redberg, David. / RESeED : Regular expression search over encrypted data in the cloud. IEEE International Conference on Cloud Computing, CLOUD. IEEE Computer Society, 2014. pp. 673-680
@inproceedings{5ad5226bb1df421c82f8131977a1b673,
title = "RESeED: Regular expression search over encrypted data in the cloud",
abstract = "Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6{\%}) overhead, and high performability, even beating grep for some benchmarks.",
keywords = "cloud computing, privacy, regular expression, searchable encryption, security",
author = "Salehi, {Mohsen Amini} and Thomas Caldwell and Alejandro Fernandez and Emmanuel Mickiewicz and Rozier, {Eric W D} and Saman Zonouz and David Redberg",
year = "2014",
month = "1",
day = "1",
doi = "10.1109/CLOUD.2014.95",
language = "English",
isbn = "9781479950638",
pages = "673--680",
booktitle = "IEEE International Conference on Cloud Computing, CLOUD",
publisher = "IEEE Computer Society",

}

TY - GEN

T1 - RESeED

T2 - Regular expression search over encrypted data in the cloud

AU - Salehi, Mohsen Amini

AU - Caldwell, Thomas

AU - Fernandez, Alejandro

AU - Mickiewicz, Emmanuel

AU - Rozier, Eric W D

AU - Zonouz, Saman

AU - Redberg, David

PY - 2014/1/1

Y1 - 2014/1/1

N2 - Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.

AB - Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.

KW - cloud computing

KW - privacy

KW - regular expression

KW - searchable encryption

KW - security

UR - http://www.scopus.com/inward/record.url?scp=84919816290&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84919816290&partnerID=8YFLogxK

U2 - 10.1109/CLOUD.2014.95

DO - 10.1109/CLOUD.2014.95

M3 - Conference contribution

AN - SCOPUS:84919816290

SN - 9781479950638

SP - 673

EP - 680

BT - IEEE International Conference on Cloud Computing, CLOUD

PB - IEEE Computer Society

ER -