Why Your Encrypted Database Is Not Secure

1 min read Original article ↗

Paper 2017/468

Why Your Encrypted Database Is Not Secure

Paul Grubbs, Thomas Ristenpart, and Vitaly Shmatikov

Abstract

Encrypted databases, a popular approach to protecting data from compromised database management systems (DBMS’s), use abstract threat models that capture neither realistic databases, nor realistic attack scenarios. In particular, the “snapshot attacker” model used to support the security claims for many encrypted databases does not reflect the information about past queries available in any snapshot attack on an actual DBMS. We demonstrate how this gap between theory and reality causes encrypted databases to fail to achieve their “provable security” guarantees.

BibTeX 

@misc{cryptoeprint:2017/468,
      author = {Paul Grubbs and Thomas Ristenpart and Vitaly Shmatikov},
      title = {Why Your Encrypted Database Is Not Secure},
      howpublished = {Cryptology {ePrint} Archive, Paper 2017/468},
      year = {2017},
      url = {https://eprint.iacr.org/2017/468}
}