1

CryptDB has Onion layers of Encryption to provide wider functionality from weaker forms of encryption. How do we prove such things are indeed secure ? Intuitively It seems ok. Are there any parallels in theory that is related say, security of multiple encryption schemes etc? or Universal Composability etc?

Is this same as Cascade ciphers ? Product Ciphers ?

sashank
  • 6,174
  • 4
  • 32
  • 67
  • 1
    Haven't read it, but this might give some clues. – mikeazo Sep 06 '14 at 12:47
  • That's a paper about Tor, not CryptDB. And OP: there aren't really security definitions that cover this "mixed-strength" setting, which comes up in all kinds of encrypted DB constructions. It's an open problem. – pg1989 Apr 29 '17 at 16:53

1 Answers1

1

In CryptDB, it is not really cascaded. According to encryption schema the layers are decrypted. At the end, the lowest level is the your security.

The current layers are RND (Highest Security) , DET (For Joining queries), SWP (Search), HOM (Add), OPE (Sort) etc. OPE being least secure as it allows more inferences about the underlying data fields than others. A data field that is encrypted all these Onion layers offer security only as strong as the weakest (OPE or similar) !

The fact that there is no need for the removal of the layer implies there is no need to layers.

e-sushi
  • 17,891
  • 12
  • 83
  • 229
kelalaka
  • 48,443
  • 11
  • 116
  • 196