RESeED: Regular expression search over encrypted data in the cloud

Mohsen Amini Salehi; Thomas Caldwell; Alejandro Fernandez; Emmanuel Mickiewicz; Eric W D Rozier; Saman Zonouz; David Redberg

doi:10.1109/CLOUD.2014.95

RESeED: Regular expression search over encrypted data in the cloud

Mohsen Amini Salehi, Thomas Caldwell, Alejandro Fernandez, Emmanuel Mickiewicz, Eric W D Rozier, Saman Zonouz, David Redberg

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

11 Citations (Scopus)

Abstract

Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.

Original language	English
Title of host publication	IEEE International Conference on Cloud Computing, CLOUD
Publisher	IEEE Computer Society
Pages	673-680
Number of pages	8
ISBN (Print)	9781479950638
DOIs	https://doi.org/10.1109/CLOUD.2014.95
State	Published - Jan 1 2014
Event	7th IEEE International Conference on Cloud Computing, CLOUD 2014 - Anchorage, United States Duration: Jun 27 2014 → Jul 2 2014

Other

Other	7th IEEE International Conference on Cloud Computing, CLOUD 2014
Country	United States
City	Anchorage
Period	6/27/14 → 7/2/14

Fingerprint

Finite automata

Data structures

Scalability

Data storage equipment

Keywords

cloud computing
privacy
regular expression
searchable encryption
security

ASJC Scopus subject areas

Artificial Intelligence
Information Systems
Software

Cite this

Salehi, M. A., Caldwell, T., Fernandez, A., Mickiewicz, E., Rozier, E. W. D., Zonouz, S., & Redberg, D. (2014). RESeED: Regular expression search over encrypted data in the cloud. In IEEE International Conference on Cloud Computing, CLOUD (pp. 673-680). [6973801] IEEE Computer Society. https://doi.org/10.1109/CLOUD.2014.95

RESeED : Regular expression search over encrypted data in the cloud. / Salehi, Mohsen Amini; Caldwell, Thomas; Fernandez, Alejandro; Mickiewicz, Emmanuel; Rozier, Eric W D; Zonouz, Saman; Redberg, David.

IEEE International Conference on Cloud Computing, CLOUD. IEEE Computer Society, 2014. p. 673-680 6973801.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Salehi, MA, Caldwell, T, Fernandez, A, Mickiewicz, E, Rozier, EWD, Zonouz, S & Redberg, D 2014, RESeED: Regular expression search over encrypted data in the cloud. in IEEE International Conference on Cloud Computing, CLOUD., 6973801, IEEE Computer Society, pp. 673-680, 7th IEEE International Conference on Cloud Computing, CLOUD 2014, Anchorage, United States, 6/27/14. https://doi.org/10.1109/CLOUD.2014.95

Salehi MA, Caldwell T, Fernandez A, Mickiewicz E, Rozier EWD, Zonouz S et al. RESeED: Regular expression search over encrypted data in the cloud. In IEEE International Conference on Cloud Computing, CLOUD. IEEE Computer Society. 2014. p. 673-680. 6973801 https://doi.org/10.1109/CLOUD.2014.95

Salehi, Mohsen Amini ; Caldwell, Thomas ; Fernandez, Alejandro ; Mickiewicz, Emmanuel ; Rozier, Eric W D ; Zonouz, Saman ; Redberg, David. / RESeED : Regular expression search over encrypted data in the cloud. IEEE International Conference on Cloud Computing, CLOUD. IEEE Computer Society, 2014. pp. 673-680

@inproceedings{5ad5226bb1df421c82f8131977a1b673,

title = "RESeED: Regular expression search over encrypted data in the cloud",

abstract = "Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6{\%}) overhead, and high performability, even beating grep for some benchmarks.",

keywords = "cloud computing, privacy, regular expression, searchable encryption, security",

author = "Salehi, {Mohsen Amini} and Thomas Caldwell and Alejandro Fernandez and Emmanuel Mickiewicz and Rozier, {Eric W D} and Saman Zonouz and David Redberg",

year = "2014",

month = "1",

day = "1",

doi = "10.1109/CLOUD.2014.95",

language = "English",

isbn = "9781479950638",

pages = "673--680",

booktitle = "IEEE International Conference on Cloud Computing, CLOUD",

publisher = "IEEE Computer Society",

}

TY - GEN

T1 - RESeED

T2 - Regular expression search over encrypted data in the cloud

AU - Salehi, Mohsen Amini

AU - Caldwell, Thomas

AU - Fernandez, Alejandro

AU - Mickiewicz, Emmanuel

AU - Rozier, Eric W D

AU - Zonouz, Saman

AU - Redberg, David

PY - 2014/1/1

Y1 - 2014/1/1

N2 - Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.

AB - Capabilities for trustworthy cloud-based computing and data storage require usable, secure and efficient solutions which allow clients to remotely store and process their data in the cloud. In this paper, we present RESeED, a tool which provides user-transparent and cloud-agnostic search over encrypted data using regular expressions without requiring cloud providers to make changes to their existing infrastructure. When a client asks RESeED to upload a new file in the cloud, RESeED analyzes the file's content and updates novel data structures accordingly, encrypting and transferring the new data to the cloud. RESeED provides regular expression search over this encrypted data by translating queries on-the-fly to finite automata and analyzes efficient and secure representations of the data before asking the cloud to download the encrypted files. We evaulate a working prototype of RESeED experimentally (currently publicly available) and show the scalability and correctness of our approach using real-world data sets from arXiv.org and the IETF. We show absolute accuracy for RESeED, with very low (6%) overhead, and high performability, even beating grep for some benchmarks.

KW - cloud computing

KW - privacy

KW - regular expression

KW - searchable encryption

KW - security

UR - http://www.scopus.com/inward/record.url?scp=84919816290&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84919816290&partnerID=8YFLogxK

U2 - 10.1109/CLOUD.2014.95

DO - 10.1109/CLOUD.2014.95

M3 - Conference contribution

AN - SCOPUS:84919816290

SN - 9781479950638

SP - 673

EP - 680

BT - IEEE International Conference on Cloud Computing, CLOUD

PB - IEEE Computer Society

ER -

Access to Document

10.1109/CLOUD.2014.95