GOOSE: A Secure Framework for Graph Outsourcing and SPARQL Evaluation - Data and Applications Security and Privacy XXXIV
Conference Papers Year : 2020

GOOSE: A Secure Framework for Graph Outsourcing and SPARQL Evaluation

Abstract

We address the security concerns that occur when outsourcing graph data and query evaluation to an honest-but-curious cloud i.e., that executes tasks dutifully, but tries to gain as much information as possible. We present GOOSE, a secure framework for Graph OutsOurcing and SPARQL Evaluation. GOOSE relies on cryptographic schemes and secure multi-party computation to achieve desirable security properties: (i) no cloud node can learn the graph, (ii) no cloud node can learn at the same time the query and the query answers, and (iii) an external network observer cannot learn the graph, the query, or the query answers. As query language, GOOSE supports Unions of Conjunctions of Regular Path Queries (UCRPQ) that are at the core of the W3C’s SPARQL 1.1, including recursive queries. We show that the overhead due to cryptographic schemes is linear in the input’s and output’s size. We empirically show the scalability of GOOSE via a large-scale experimental study.

Dates and versions

hal-02544920 , version 1 (16-04-2020)

Licence

Identifiers

Cite

Radu Ciucanu, Pascal Lafourcade. GOOSE: A Secure Framework for Graph Outsourcing and SPARQL Evaluation. 34th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (also known as DBSEC), Jun 2020, Conférence online, Germany. pp.347-366, ⟨10.1007/978-3-030-49669-2_20⟩. ⟨hal-02544920⟩
506 View
3 Download

Altmetric

Share

More