Querying encrypted data in a relational database system

US 20040243816A1
Filed: 05/30/2003
Published: 12/02/2004
Est. Priority Date: 05/30/2003
Status: Active Grant

First Claim

Patent Images

1. A client-server relational database system, comprising:

a client computer;

a server computer; and

a network connecting the client computer and the server computer;

wherein data from the client computer is encrypted by the client computer and hosted by the server computer, the encrypted data is operated upon by the server computer to produce an intermediate results set, the intermediate results set is sent from the server computer to the client computer, and the intermediate results set is decrypted and filtered by the client computer to produce actual results.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A client-server relational database system, wherein data from the client computer is encrypted by the client computer and hosted by the server computer, the encrypted data is operated upon by the server computer, using one or more operators selected from a group of operators comprising: (a) inequality logic operators, (b) aggregation operators, and (c) wildcard matching operators, to produce an intermediate results set, the intermediate results set is sent from the server computer to the client computer, and the intermediate results set is decrypted and filtered by the client computer to produce actual results. The group of operators is limited because the encrypted results set, when decrypted, includes inaccuracies therein. The client computer applies a set of correction procedures to the decrypted results set to remove the inaccuracies therein.

125 Citations

40 Claims

1. A client-server relational database system, comprising:
- a client computer;
  
  a server computer; and
  
  a network connecting the client computer and the server computer;
  
  wherein data from the client computer is encrypted by the client computer and hosted by the server computer, the encrypted data is operated upon by the server computer to produce an intermediate results set, the intermediate results set is sent from the server computer to the client computer, and the intermediate results set is decrypted and filtered by the client computer to produce actual results.
- View Dependent Claims (4, 5, 6)
- - 4. The client-server relational database system of claim 1, 2 or 3, wherein the encrypted data is operated upon by the server computer using one or more operators selected from a group of operators comprising:
    - (a) inequality logic operators, (b) aggregation operators, and (c) wildcard matching operators.
  - 5. The client-server relational database system of claim 4, wherein the group of operators is limited because the intermediate results set, when decrypted, includes inaccuracies therein.
  - 6. The client-server relational database system of claim 5, wherein the client computer applies a set of correction procedures to the decrypted results set to remove the inaccuracies therein.

2. A client-server relational database system, comprising:
- a client computer connected to a server computer, wherein data from the client computer is encrypted by the client computer and hosted by the server computer, the encrypted data is operated upon by the server computer to produce an intermediate results set, the intermediate results set is sent from the server computer to the client computer, and the intermediate results set is decrypted and filtered by the client computer to produce actual results.

3. A client-server relational database system, comprising:
- a server computer connected to a client computer, wherein data from the client computer is encrypted by the client computer and hosted by the server computer, the encrypted data is operated upon by the server computer to produce an intermediate results set, the intermediate results set is sent from the server computer to the client computer, and the intermediate results set is decrypted and corrected by the client computer to produce actual results.

7. A method of performing computations on encrypted data stored on a computer system, comprising:
- (a) transforming a computation formulated to be performed on unencrypted data so that at least a portion of the computation can be applied to the encrypted data;
  
  (b) applying the transformed computation to the encrypted data in order to obtain intermediate encrypted results;
  
  (c) decrypting the intermediate encrypted results; and
  
  (d) applying at least a remaining portion of the computation to the decrypted results in order to obtain actual results for the computation.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
- - 8. The method of claim 7, wherein the transforming step (a), decrypting step (c) and applying step (d) are performed by a client computer and the applying step (b) is performed by a server computer.
  - 9. The method of claim 8, wherein the server computer stores the encrypted data.
  - 10. The method of claim 8, wherein the client computer sends the transformed computation to the server computer.
  - 11. The method of claim 8, wherein the server computer sends the intermediate encrypted results to the client computer.
  - 12. The method of claim 8, wherein additional information is stored with the encrypted data.
  - 13. The method of claim 12, wherein the additional information comprises one or more partition ids associated with at least one attribute of the encrypted data.
  - 14. The method of claim 13, wherein the partition ids are created by partitioning a value domain of the attribute of the encrypted data and labeling partitions resulting therefrom.
  - 15. The method of claim 14, wherein the partitions cover a whole of the value domain.
  - 16. The method of claim 14, wherein the partitions do not overlap.
  - 17. The method of claim 14, wherein the partitions do overlap.
  - 18. The method of claim 14, further comprising partitioning at least one operation of the computation for execution across the client computer and the server computer.
  - 19. The method of claim 18, wherein the operation comprises a selection operation, a relation referenced by the selection operation is transmitted from the server computer to the client computer, the relation is decrypted by the client computer, and the selection operation is performed by the client computer on the decrypted relation.
  - 20. The method of claim 18, wherein the operation comprises a selection operation, the selection operation is partially computed at the server computer using the partition ids associated with the attributes, the results therefrom are decrypted by the client computer, and the decrypted results are filtered by the client computer to complete the selection operation.
  - 21. The method of claim 18, wherein the operation comprises a join operation, the join operation is partially computed at the server computer using the partition ids associated with the attributes, the results therefrom are decrypted by the client computer, and the decrypted results are filtered by the client computer to complete the join operation.
  - 22. The method of claim 18, wherein the operation comprises a grouping and aggregation operation, the grouping operation is partially performed at the server computer using the partition ids associated with the attributes, the results therefrom are decrypted by the client computer, the grouping operation is completed on the decrypted results by the client computer, and the aggregation operation is performed by the client computer on results therefrom.
  - 23. The method of claim 18, wherein the operation comprises a sorting operation, a grouping operation is performed at the server computer using the partition ids associated with the attributes, results from the grouping operation are decrypted by the client computer, and the sorting operation is completed on the decrypted results by the client computer.
  - 24. The method of claim 18, wherein the operation comprises a duplicate elimination operation, a grouping operation is performed at the server computer using the partition ids associated with the attributes, results from the grouping operation are decrypted by the client computer, and the duplicate elimination operation is completed on the decrypted results by the client computer.
  - 25. The method of claim 18, wherein the operation comprises a set difference operation, a left outer join operation is performed at the server computer using the partition ids associated with the attributes, results from the left outer join operation are decrypted by the client computer, and the set difference operation is completed on the decrypted results by the client computer.
  - 26. The method of claim 18, wherein the operation comprises a union operation, the union join operation is performed at the server computer using the partition ids associated with the attributes, results from the left outer join operation are decrypted by the client computer, and the union operation is completed on the decrypted results by the client computer.
  - 27. The method of claim 18, wherein the operation comprises a projection operation, a relation is transmitted from the server computer to the client computer, the relation is decrypted by the client computer, and the projection operation is performed by the client computer on the decrypted relation.
  - 28. The method of claim 18, wherein the operation comprises a projection operation, a relation is transmitted from the server computer to the client computer, the relation is decrypted by the client computer, and the projection operation is performed by the client computer on the decrypted relation.
  - 29. The method of claim 12, wherein the additional information comprises results from one or more modulo divisions of the attribute by components of an encryption key.
  - 30. The method of claim 29, wherein the operation comprises an aggregation operation, the aggregation operation is partially performed at the server computer using the results from the modulo divisions of the attribute by the components of the encryption key, results therefrom are decrypted by the client computer, and the aggregation operation is completed on the decrypted results by the client computer.
  - 31. The method of claim 12, wherein the additional information comprises a bit string signature of the attribute that is computed by inclusion and exclusion of pre-selected key strings.
  - 32. The method of claim 31, wherein the operation comprises a wildcard matching operation, the wildcard matching operation is partially performed at the server computer using the bit string signature of the attribute, results therefrom are decrypted by the client computer, and the wildcard matching operation is completed on the decrypted results by the client computer.
  - 33. The method of claim 8, wherein the applying step (b) comprises applying the transformed computation to the encrypted data using one or more privacy homomorphisms that support arithmetic operations on the encrypted data.
  - 34. The method of claim 33, wherein the arithmetic operations are defined in modular arithmetic and a modulo divisor n is selected such that n=p*q, where an encryption key for the encrypted data comprises k=(p,q), and results from the modular arithmetic fall in a range defined by [0,n).
  - 35. The method of claim 34, wherein the arithmetic operations include a division operation that is supported by leaving a result in fractional form by computing a numerator and a denominator of the division separately, and then returning the numerator and a denominator to the client computer which decrypts the encrypted data and completes the division operation using the decrypted data.
  - 36. The method of claim 34, wherein the arithmetic operations include floating point numbers that are represented as fractions.
  - 37. The method of claim 34, wherein the arithmetic operations include negative numbers that are mapped to shifted values in a new range, and the shifted values are returned to the client computer, which decrypts the encrypted data and maps the shifted values to the negative numbers.
  - 38. The method of claim 34, wherein random noise is added to the encrypted data, so that the arithmetic operations are prevented from testing for equality, and the random noise is removed from the encrypted data at the client computer after decryption.

39. A computer-implemented apparatus for performing computations on encrypted data, comprising:
- (1) a computer system;
  
  (2) logic, performed by the computer system, for (a) transforming a computation formulated to be performed on unencrypted data so that at least a portion of the computation can be applied to the encrypted data;
  
  (b) applying the transformed computation to the encrypted data in order to obtain intermediate encrypted results;
  
  (c) decrypting the intermediate encrypted results; and
  
  (d) applying at least a remaining portion of the computation to the decrypted results in order to obtain actual results for the computation.

40. An article of manufacture embodying logic for performing computations on encrypted data stored on a computer system, the logic comprising:
- (a) transforming a computation formulated to be performed on unencrypted data so that at least a portion of the computation can be applied to the encrypted data;
  
  (b) applying the transformed computation to the encrypted data in order to obtain intermediate encrypted results;
  
  (c) decrypting the intermediate encrypted results; and
  
  (d) applying at least a remaining portion of the computation to the decrypted results in order to obtain actual results for the computation.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Mehrotra, Sharad, Hacigumus, Vahit Hakan, Iyer, Balakrishna Raghavendra

Granted Patent

US 7,500,111 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/193
CPC Class Codes

G06F 16/24547   Optimisations to support sp...

G06F 16/24561   Intermediate data storage t...

H04L 9/0894   Escrow, recovery or storing...

Querying encrypted data in a relational database system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

125 Citations

40 Claims

Specification

Solutions

Use Cases

Quick Links

Querying encrypted data in a relational database system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

125 Citations

40 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links