发明名称 |
Optimal re-encryption strategy for joins in encrypted databases |
摘要 |
Methods, systems, and computer-readable storage media for selecting columns for re-encryption in join operations. In some implementations, actions include determining a first column and a second column to be joined, receiving a first key corresponding to the first column and a second key corresponding to the second column, receiving a first rank associated with the first key and a second rank associated with the second key, selecting the second column for re-encryption based on the first rank and the second rank, and providing the first column, the second column, and the first key for performing a join operation, the second column being re-encrypted based on the first key. |
申请公布号 |
US9003204(B2) |
申请公布日期 |
2015.04.07 |
申请号 |
US201313938571 |
申请日期 |
2013.07.10 |
申请人 |
SAP SE |
发明人 |
Haerterich Martin;Kerschbaum Florian;Grofig Patrick;Kohler Mathias;Schaad Andreas;Schroepfer Axel;Tighzert Walter |
分类号 |
G06F21/60;G06F21/62 |
主分类号 |
G06F21/60 |
代理机构 |
Fish & Richardson P.C. |
代理人 |
Fish & Richardson P.C. |
主权项 |
1. A computer-implemented method for selecting columns for re-encryption in join operations, the method being executed using one or more processors and comprising:
determining, by the one or more processors, a first column and a second column to be joined; receiving, by the one or more processors, a first key corresponding to the first column and a second key corresponding to the second column; receiving, by the one or more processors, a first rank associated with the first key and a second rank associated with the second key; selecting, by the one or more processors, the second column for re-encryption based on the first rank and the second rank; updating data associated with the first column and the second column based on selecting the second column for re-encryption and based on a cost associated with the second column, updating data comprising:
adding the cost to the first rank, andsubtracting the cost from the second rank; and providing, by the one or more processors, the first column, the second column, and the first key for performing a join operation, the second column being re-encrypted based on the first key. |
地址 |
Walldorf DE |