Extending CryptDB to Operate an ERP System on Encrypted Data

Kevin Foltz, William R. Simpson

2018

Abstract

Prior work demonstrated the feasibility of using partial homomorphic encryption as part of a database encryption scheme in which standard SQL queries are performed on encrypted data. However, this work involved only translating raw SQL queries to the database through the CryptDB proxy. Our work extends the prior work to an Oracle application. The goal for this work was to determine feasibility for a full-scale implementation on a real Oracle Enterprise Resource Planning (ERP) system. This requires accommodating extra features such as stored procedures, views, and multi-user access controls. Our work shows that these additional functionalities can be practically implemented using encrypted data, and they can be implemented in a way that requires no code changes to the ERP application code. The overall request latency and computational resource requirements for operating on encrypted data are under one order of magnitude and within a small factor of those for unencrypted data. These results demonstrate the feasibility of operating an Oracle ERP on encrypted data.

Download


Paper Citation


in Harvard Style

Foltz K. and Simpson W. (2018). Extending CryptDB to Operate an ERP System on Encrypted Data.In Proceedings of the 20th International Conference on Enterprise Information Systems - Volume 1: ICEIS, ISBN 978-989-758-298-1, pages 103-110. DOI: 10.5220/0006661701030110


in Bibtex Style

@conference{iceis18,
author={Kevin Foltz and William R. Simpson},
title={Extending CryptDB to Operate an ERP System on Encrypted Data},
booktitle={Proceedings of the 20th International Conference on Enterprise Information Systems - Volume 1: ICEIS,},
year={2018},
pages={103-110},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006661701030110},
isbn={978-989-758-298-1},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 20th International Conference on Enterprise Information Systems - Volume 1: ICEIS,
TI - Extending CryptDB to Operate an ERP System on Encrypted Data
SN - 978-989-758-298-1
AU - Foltz K.
AU - Simpson W.
PY - 2018
SP - 103
EP - 110
DO - 10.5220/0006661701030110