关键词: 外包数据库服务, 隐私保护, 准标识集, 关系分解, 分布式查询

Abstract: In privacy protection based on database encryption technology for outsourcing database services, it is difficult to achieve balance between performance of data processing and privacy protection effectively. A new privacy protection method based on distributed outsourcing database service was proposed to provide both efficient privacy protection and query processing. Automatic quasi-identifiers detection and probabilistic anonymity were introduced. The data could be partitioned across many logically independent database servers horizontally or vertically, while only few sensitive data were encrypted or anonymous. According to the type of data fragmentation, the trusted client executed queries by transmitting appropriate sub-queries to different databases, and then pieced the results together at the client side. The theoretical analysis and experimental results show that the proposed method is well-balanced in dealing with the contradiction between data privacy preserving and efficient query processing.

Key words: outsourced database service, privacy protection, quasi-identifier, relation fragmentation, distributed query