Uploaded bypaperpublications3
197 views

Secure Encrypted Data in Cloud Based Environment

This document presents a novel privacy-preserving k-nearest neighbor (ppknn) classification protocol designed for securely classifying data outsourced to the cloud. The protocol addresses key privacy issues such as confidentiality of encrypted data, user query privacy, and protection of data access patterns, utilizing the Paillier cryptosystem for encryption. Experimental analysis demonstrates the protocol's efficiency and security under a semi-honest model, highlighting its advancements over existing methods in handling sensitive data.

Download to read offline
ISSN 2350-1022 International Journal of Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 114 Paper Publications Secure Encrypted Data in Cloud Based Environment K.R.Raji1 , Ms.Archana.V.Nair.S2 , Ms.K.R.Raghi3 PG Scholar1 Assistant Professor of IT Department2 , Ponjesly College of Engineering, Nagercoil -3, India Abstract: Data Mining has wide applications in many areas such as banking, medicine, scientific research and among government agencies. Classification is one of the commonly used tasks in data mining applications. The cloud computing, users have the opportunity to outsource their data, in encrypted form, as well as the data mining tasks to the cloud. Since the data on the cloud is in encrypted form, existing privacy preserving classification techniques are not applicable. On solving the classification problem over encrypted data. A secure k-NN classifier over encrypted data in the cloud. The k-NN protocol protects the confidentiality of the data, user’s input query, and data access patterns. To develop a secure k-NN classifier over encrypted data under the standard semi-honest model. Also, we empirically analyze the efficiency of our solution through various experiments. Keywords: Security, k-NN Classifier, Outsourced Databases, Encryption. I. INTRODUCTION Cloud computing paradigm is revolutionizing the organizations’ way of operating their data particularly in the way they store, access and process data. As an emerging computing paradigm, cloud computing attracts many organizations to consider seriously regarding cloud potential in terms of its cost-efficiency, flexibility, and offload of administrative overhead.. The advantages that the cloud offers, privacy and security issues in the cloud are preventing companies to utilize those advantages. When data are highly sensitive, the data need to be encrypted before outsourcing to the cloud. However, when data are encrypted, irrespective of the underlying encryption scheme, performing any data mining tasks becomes very challenging without ever decrypting the data. The cloud can also derive useful and sensitive information about the actual data items by observing the data access patterns even if the data are encrypted. Therefore, the privacy/security requirements of the DMED problem on a cloud are threefold: (1) confidentiality of the encrypted data, (2) confidentiality of a user’s query record, and (3) hiding data access patterns. Existing work on Privacy-Preserving Data Mining (either perturbation or secure multi-party computation based approach) cannot solve the DMED problem. Perturbed data do not possess semantic security, so data perturbation techniques cannot be used to encrypt highly sensitive data. Also the perturbed data do not produce very accurate data mining results. Secure multi-party computation based approach assumes data are distributed and not encrypted at each participating party. As a result, a novel methods to effectively solve the DMED problem assuming that the encrypted data are outsourced to a cloud. Specifically, we focus on the classification problem since it is one of the most common data mining tasks. Because each classification technique has their own advantage, to be concrete, this paper concentrates on executing the k-nearest neighbor classification method over encrypted data in the cloud computing environment. II. EXISTING SYSTEM The existing secret sharing techniques in SMC develop a PPkNN protocol. However, our work is different from the secret sharing based solution from the following two aspects. (i) Solutions based on the secret sharing schemes require at least three parties whereas our work requires only two parties. (ii) Hiding data access patterns is still an unsolved problem in the secret sharing based schemes, whereas our work protects data access patterns from both participating parties.
ISSN 2350-1022 International Journal of Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 115 Paper Publications 2.1 Privacy-Preserving Data Mining (PPDM): Privacy Preserving Data Mining (PPDM) is defined as the process of extracting/deriving the knowledge about data without compromising the privacy of data. In the past decade, many privacy-preserving classification techniques have been proposed in the literature in order to protect user privacy. Agrawal and Srikant, Lindell and Pinkas introduced the notion of privacy-preserving under data mining applications. In particular to privacy preserving classification, the goal is to build a classifier in order to predict the class label of input data record based on the distributed training dataset without compromising the privacy of data. A. Data Perturbation Method: In these methods, values of individual data records are perturbed by adding random noise in such way that the distribution of perturbed data look very different from that of actual data. After such a transformation, the perturbed data is sent to the miner to perform the desired data mining tasks. Data perturbation techniques cannot be applicable for semantically secure encrypted data. Also, they do not produce accurate data mining results due to the addition of statistical noises to the data. B. Data Distribution Methods: Assume the dataset is partitioned either horizontally or vertically and distributed across different parties. During this process, data owned by individual parties is not revealed to other parties. Classification is one important task in many applications of data mining such as health-care and business. In cloud computing, data owner outsources his/her data to the cloud. The direct way to guard the outsourced data is to apply encryption on the data before outsourcing. The hosted data on the cloud is in encrypted form in our problem domain, the existing privacy preserving classification techniques are not sufficient and applicable to PPkNN due to the following reasons. (i) In existing methods, the data are partitioned among at least two parties, whereas in our case encrypted data are hosted on the cloud. (ii) Since some amount of information is loss due to the addition of statistical noises in order to hide the sensitive attributes, the existing methods are not accurate. (iii) Leakage of data access patterns: the cloud can easily derive useful and sensitive information about users’ data items by simply observing the database access patterns. 2.2. Query processing over encrypted data: PPkNN is a more complex problem than the execution of simple kNN queries over encrypted data. One, the intermediate k-nearest neighbors in the classification process should not be disclosed to the cloud or any users. Secondly, even if we know the k-nearest neighbors, it is still very difficult to find the majority class label among these neighbors since they are encrypted at the first place to prevent the cloud from learning sensitive information. Third, the existing work did not address the access pattern issue which is a crucial privacy requirement from the user’s perspective. A novel secure k- nearest neighbor query protocol over encrypted data that protects data confidentiality, user’s query privacy, and hides data access patterns. First we introduced new security primitives, namely secure minimum (SMIN), secure minimum out of n numbers (SMINn), secure frequency (SF), and proposed new solutions for them. Second, the work did not provide any formal security analysis of the underlying sub-protocols. On the other hand, this paper provides formal security proofs of the underlying sub-protocols as well as the PPkNN protocol under the semi-honest model. Third, our preliminary work in addresses only secure kNN query which is similar to Stage 1 of PPkNN. However, Stage 2 in PPkNN is entirely new. Finally, our empirical are based on a real dataset whereas the results are based on a simulated dataset. As mentioned earlier, one can implement the proposed protocols under secret sharing schemes. In this work, we only concentrate on the two party situations; thus, we adopted the Paillier cryptosystem. Two-party and multi-party (three or more parties) SMC protocols are complement to each other, and their applications mainly depend on the number of available participants. III. THE PROPOSED PROTOCOL A novel privacy-preserving k-NN classification protocol, denoted by PPkNN, which is constructed using the protocols as building blocks. The goal of the PPkNN protocol is to classify users’ query records using D′ in a privacy-preserving manner. Consider an authorized user Bob who wants to classify his query record q = (q1,…, qm) based on D′ in C1. The proposed PPkNN protocol mainly consists of the following two stages: • Stage 1 - Secure Retrieval of k-Nearest Neighbors (SRkNN): In this stage, Bob initially sends his query q (in encrypted form) to C1. After this, C1 and C2 involve in a set of sub- protocols to securely retrieve (in encrypted form) the class labels corresponding to the k-nearest neighbors of the input query q. At the end of this step, encrypted class labels of k-nearest neighbors are known only to C1.
ISSN 2350-1022 International Journal of Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 116 Paper Publications • Stage 2 - Secure Computation of Majority Class (SCMCk): Following from Stage 1, C1 and C2 jointly compute the class label with a majority voting among the k-nearest neighbors of q. At the end of this step, only Bob knows the class label corresponding to his input query record q. The main steps involved in the proposed PPkNN protocol are as shown in Algorithm. We now explain each of the two stages in PPkNN in detail. The Paillier cryptosystem is an additive homomorphic and probabilistic asymmetric encryption scheme. The encryption scheme is semantically secure. We simply use the well-known Paillier scheme in our implementations. However, to be more specific, in this paper we use the original Paillier cryptosystem. Key generation : Randomly generate the prime numbers p and q. Calculate : n = p*q and phi= (p-1)*(q-1) Find : g=n+1 and λ=lcm (p-1,q-1) μ=(L(gλ modn2 ))-1 mod n Where, L (u) = u-1/n u = gλ modn2 Encryption : C=gm .rn modn2 Where, C=cipher text m=message Decryption : D=Lt*μ mod n Where, t=c λ mod n2 Lt= (t-1)/n 3.1. Stage 2: Secure Computation of Majority Class (SCMCk): Without loss of generality, suppose Alice’s dataset D consists of w unique class labels denoted by c = (c1, . .cw). We assume that Alice outsources her list of encrypted classes to C1. That is, Alice outsources (Epk (c1), . ,Epk (cw)) to C1 along with her encrypted database D′ during the data outsourcing step. Note that, for security reasons, Alice may add dummy categories into the list to protect the number of class labels, i.e., w from C1 and C2. However, for simplicity, we assume that Alice does not add any dummy categories to c. During Stage 2, C1 with private inputs Ʌ=(Epk(c1), . . . ,Epk(cw)) and Ʌ′ = (Epk(c1’), . . . ,Epk(ck’)), and C2 with sk securely compute Epk(cq). Here cq denotes the majority class label among c1’, . . . , ck’. At the end of stage 2, only Bob knows the class label cq. The overall steps involved in Stage 2 are shown in Algorithm. To start with, C1 and C2 jointly compute the encrypted frequencies of each class label using the k-nearest set as input. That is, they compute Epk(f (ci)) using(Ʌ,Ʌ′) as C1’s input to the secure frequency (SF) protocol, for 1 ≤ i ≤ w. The output (Epk (f(c1)), . . . ,Epk(f(cw))) is known only to C1. Then, C1 with Epk(f (ci)) andC2 with sk involve in the secure bit decomposition (SBD) protocol to compute [f (ci)], that is, vector of encryptions of the individual bits of f (ci), for 1 ≤ I ≤ w. After this, C1 and C2 jointly involve in the SMAXw protocol. Briefly, SMAXw utilizes the sub-routine SMAX to eventually compute ([fmax], Epk (cq)) in an iterative fashion. Here [fmax] =[max(f(c1), . . . , f(cw))] and cq denotes the majority class out of Ʌ′. At the end, the output ([fmax], Epk (cq)) is known only to C1. After this,C1 computes q = Epk(cq + rq),where rq is a random number in ZN known only to C1. Then, C1 sends q to C2 and rq to Bob. Upon receiving q, C2 decrypts it to get the randomized majority class label ′q = Dsk(q) and sends it to Bob. Finally, upon receiving rq from C1 and ′q from C2, Bob computes the output class label corresponding to q as cq = q − rq mod N. 3.2. Security Analysis of PPkNN under the Semi-honest Model: Here we provide a formal security proof for the proposed PPkNN protocol under the semi-honest model. Due to the encryption of q and by semantic security of the Paillier cryptosystem, Bob’s input query q is protected from Alice, C1 and C2 in our PPkNN protocol.
ISSN 2350-1022 International Journal of Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 117 Paper Publications Algorithm: SCMCk (Epk (c1’), . . . ,Epk (ck’)) → cq Require: (Epk (c1), . . . , Eok (cw)), (Epk (c1′), . . . ,Epk(ck′))are known only to C1; sk is known only to C2 1: C1 and C2: (a). (Epk(f(c1)), . . . ,E(f(cw))) ← SF(Ʌ,Ʌ’), where Ʌ =(Epk(c1), . . . ,Epk(cw)), Ʌ ′ = (Epk(c1′), . . . ,Epk(ck′)) (b). for i = 1 to w do: • [f (ci)] ← SBD(Epk(f (ci))) (c). ([fmax],Epk(cq)) ← SMAXw(Ψ1, . . . , Ψw), where Ψi = ([f (ci)],Epk (ci)), for 1 ≤ i ≤ w 2: C1: (a). γq ← Epk(cq) * Epk(rq), where rq ∈R ZN (b). Send γq to C2 and rq to Bob 3: C2: (a). Receive γq from C1 (b). γ′q ← Dsk(γq); send γ′q to Bob 4: Bob: (a). Receive rq from C1 and γ′q from C2 (b). cq ← γ′q − rq mod N The goal of PPkNN is to protect data confidentiality and hide data access patterns. In this paper, to prove a protocol’s security under the semi-honest model, we adopted the well-known security definitions from the literature of secure multiparty computation (SMC). IV. SYSTEM OVERVIEW Read the car evaluation dataset from KDD. It consists of 1,728 records and six attributes. There is a separate class attribute and the dataset is categorized into four different classes. Encrypt the dataset attribute-wise, using the Bitwise XOR operation. The Bitwise XOR operation split the string data by removing comas. Strings are converted into binary format using ASCII keyword. Convert the binary values into encrypted format by using Paillier cryptosystem. The Paillier cryptosystem is a public-key encryption scheme. It consists of 3 schemes:  Key generation  Encryption  Decryption The encrypted data send to cloud. Then the cloud will search the similar data. That data’s are grouped together, and then collect the features of neighboring data by using SRKNN. From that data, find the majority class by means of SCMC and produce the classify data. Then analyze the efficiency of our solution through various experiments. Fig: Architecture Design
ISSN 2350-1022 International Journal of Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 118 Paper Publications V. COMPLEXITY ANALYSIS The computation complexity of Stage 1 in PPkNN is bounded by O (n) instantiations of SBD and SSED, O (k) instantiations of SMINn, and O(n * k * l) instantiations of SBOR. We emphasize that the computation complexity of the SBD protocol proposed in is bounded by O (l) encryptions and O (l) exponentiations (under the assumption that encryption and decryption operations based on Paillier cryptosystem take similar amount of time). Also, the computation complexity of SSED is bounded by O (m) encryptions and O (m) exponentiations. In addition, the computation complexity of SMINn is bounded by O (l * n * log2 n) encryptions and O (l * n * log2 n) exponentiations. Here the computation complexity of SF is bounded by O (k * w) encryptions and O (k * w) exponentiations. Therefore, the total computation complexity of Stage 2 is bounded by O (w* (l + k +l * log2 w)) encryptions and exponentiations. In general, w ≪ n, therefore, the computation cost of Stage 1 should be significantly higher than that of Stage 2. VI. EMPIRICAL RESULTS In this section, we discuss some experiments demonstrating the performance of our PPkNN protocol under different parameter settings. We used the Paillier cryptosystem as the underlying additive homomorphic encryption scheme and implemented the proposed PPkNN protocol in C. To the best of our knowledge, our work is the first effort to develop a secure k-NN classifier under the semi honest model. Thus, there is no existing work to compare with our approach. Therefore, we evaluate the performance of our PPkNN protocol under different parameter settings. 6.1. Dataset and Experimental Setup: For our experiments, used the Car Evaluation dataset from the UCI KDD archive. The dataset consists of 1728 data records (i.e., n = 1728) with 6 input attributes (i.e., m = 6). Also, there is a separate class attribute and the dataset is categorized into four different classes (i.e., w = 4). We encrypted this dataset attribute-wise, using the Paillier encryption whose key size is varied in our experiments, and the encrypted data were stored on our machine. Based on our PPkNN protocol, we then executed a random query over this encrypted data. 6.2. Performance of PPkNN: We first evaluated the computation costs of Stage 1 in PPkNN for varying number of k-nearest neighbors. Also, the Paillier encryption key size K is either 512 or 1024 bits. The results are shown in Figure 2(a). For K=512 bits, the Computation cost of Stage 1 varies from 9.98 to 46.16 minutes when k is changed from 5 to 25, respectively. On the other hand, when K=1024 bits, the computation cost of Stage 1 varies from 66.97 to 309.98 minutes when k is changed from 5 to 25, respectively. In either case, we observed that the cost of Stage 1 grows almost linearly with k. For any given k, we identified that the cost of Stage 1 increases by almost a factor of 7 whenever K is doubled. For example, when k=10, Stage 1 took 19.06 and 127.72 minutes to generate the encrypted class labels of the 10 nearest neighbors under K=512 and 1024 bits, respectively. Furthermore, when k=5, we observe that around 66.29% of cost in Stage 1 is accounted due to SMINn which is initiated k times in PPkNN 6.3. Performance Improvement of PPkNN: Two different ways to boost the efficiency of Stage 1 (as the performance of PPkNN depends primarily on Stage 1) and empirically analyze their efficiency gains. First, we observe that some of the computations in Stage 1 can be pre- computed. For example, encryptions of random numbers, 0s and 1s can be pre-computed (by the corresponding parties) in the offline phase. As a result, the online computation cost of Stage 1 (denoted by SRkNNo) is expected to be improved .To see the actual efficiency gains of such a strategy, we computed the costs of SRkNNo and compared them with the costs of Stage 1 without an offline phase (simply denoted by SRkNN) and the results for K = 1024 bits . Irrespective of the values of k, we observed that SRkNNo is around 33% faster than SRkNN. E.g., when k = 10, the computation costs of SRkNNo and SRkNN are 84.47 and 127.72 minutes, respectively (boosting the online running time of Stage 1 by 33.86%).PPkNN for k = 10 and K = 1024 bits Our second approach to improve the performance of Stage 1 is by using parallelism. Since operations on data records are independent of one another, we claim that most computations in Stage 1 can be parallelized. The efficiency of Stage 1 can indeed be improved significantly using parallelism. Moreover, we can also use the existing Map-reduce techniques to execute parallel operations on multiple nodes to drastically improve the performance further. Hence, the level of achievable performance in PPkNN actually depends on the implementation. On
ISSN 2350-1022 International Journal of Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 119 Paper Publications the other hand, Bob’s computation cost in PPkNN is mainly due to the encryption of his input query. In our dataset, Bob’s computation cost is 4 and 17 milliseconds when K is 512 and 1024 bits, respectively. VII. CONCLUSION Classification is an important task in many data mining applications. To protect user privacy, various privacy-preserving classification techniques have been proposed in the literature for the past decade. The existing techniques are not applicable in outsourced database environment where the data resides in encrypted form on a third-party server. Proposed a novel privacy-preserving k-NN classification protocol over encrypted data in the cloud. Our protocol protects the confidentiality of the data, user’s input query, and hides the data access patterns. We also evaluated the performance of our protocol under different parameter settings. Since improving the efficiency of SMINn is an important first step for improving the performance of our PPkNN protocol. We plan to investigate alternative and more efficient solutions to the SMINn problem in our future work. Also, in this paper, we used the well-known k-NN classifier and developed a privacy- preserving protocol for it over encrypted data. As a future work, we will investigate and extend our research to other classification algorithms.
ISSN 2350-1022 International Journal of Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 120 Paper Publications REFERENCES [1] C. C. Agrawal and P. S. Yu. A general survey of privacy-preserving data mining models and algorithms. Privacy- preserving data mining, pages 11–52, 2008. [2] R. Agrawal, J. Kiernan, R. Srikant, and Y. Xu. Order preserving encryption for numeric data. In ACM SIGMOD, pages 563–574, 2004. [3] R. Agrawal and R. Srikant. Privacy-preserving data mining. In ACM Sigmod Record, volume 29, pages 439– 450.ACM, 2000. [4] H. Hu, J. Xu, C. Ren, and B. Choi. Processing private queries over untrusted data cloud through privacy homomorphism. In IEEE ICDE, pages 601–612, 2011. [5] R. J. Bayardo and R. Agrawal. Data privacy through optimal k-anonymization. In IEE ICDE, pages 217–228, 2005. [6] X. Xiao, F. Li, and B. Yao, “Secure nearest neighbor revisited,” in Proc. IEEE Int. Conf. Data Eng., 2013, pp. 733– 744. [7] Y. Elmehdwi, B. K. Samanthula, and W. Jiang, “Secure k-nearest neighbor query over encrypted data in outsourced environments,” in Proc. IEEE 30th Int. Conf. Data Eng., 2014, pp. 664–675. [8] Y. Qi and M. J. Atallah, “Efficient privacy-preserving k-nearest neighbor search,” in Proc. IEEE 28th Int. Conf. Distrib. Comput.Syst. 2008, pp. 311–319. [9] M. Bohanec and B. Zupan. The UCI KDD Archive. University of California, Department of Information and Computer Science, Irvine, CA, 1997. [10] Y. Huang, D. Evans, J. Katz, and L. Malka, “Faster secure two-party computation using garbled circuits,” in Proc. 20th USENIX Conf. Security, 2011, pp. 35–35.

More Related Content

PDF
Ijariie1196
byIJARIIE JOURNAL
 
PDF
10.11648.j.ijdst.20160204.12
byArindam Paul
 
PDF
Improved Image Encryption for Real-Time Application over Wireless Communicati...
byijeei-iaes
 
PDF
survey paper on object oriented cryptographic security for runtime entities
byINFOGAIN PUBLICATION
 
PDF
International Journal of Wireless & Mobile Networks (IJWMN)
byijwmn
 
PDF
Data Partitioning In Cloud Storage Using DESD Crypto Technique
byIJCSIS Research Publications
 
PDF
Az24339344
byIJERA Editor
 
PDF
A Survey on Privacy-Preserving Data Aggregation Without Secure Channel
byIRJET Journal
 
Ijariie1196
byIJARIIE JOURNAL
 
10.11648.j.ijdst.20160204.12
byArindam Paul
 
Improved Image Encryption for Real-Time Application over Wireless Communicati...
byijeei-iaes
 
survey paper on object oriented cryptographic security for runtime entities
byINFOGAIN PUBLICATION
 
International Journal of Wireless & Mobile Networks (IJWMN)
byijwmn
 
Data Partitioning In Cloud Storage Using DESD Crypto Technique
byIJCSIS Research Publications
 
Az24339344
byIJERA Editor
 
A Survey on Privacy-Preserving Data Aggregation Without Secure Channel
byIRJET Journal
 

What's hot

DOCX
Secure distributed deduplication systems with improved reliability
byPvrtechnologies Nellore
 
PDF
Image Cryptography using RSA Algorithm
byijtsrd
 
PDF
IRJET- Secure Data Deduplication and Auditing for Cloud Data Storage
byIRJET Journal
 
PDF
IRJET- A Survey for an Efficient Secure Guarantee in Network Flow
byIRJET Journal
 
PDF
ijrrest_vol-2_issue-2_015
byAshish Gupta
 
PDF
Securing Personal Information in Data Mining
byIJMER
 
PDF
Three Party Authenticated Key Distribution using Quantum Cryptography
byIJMER
 
PDF
Key Management Scheme for Secure Group Communication in WSN with Multiple Gr...
bycsandit
 
PDF
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
byYekini Nureni
 
PDF
Analyzing and Securing Data Transmission in Wireless Sensor Networks through ...
byijtsrd
 
PDF
IMAGE ENCRYPTION TECHNIQUES USING FRACTAL FUNCTION: A REVIEW
byijcsit
 
PDF
82 86
byEditor IJARCET
 
PDF
A Privacy Preserving Three-Layer Cloud Storage Scheme Based On Computational ...
byIJSRED
 
PDF
Secure and privacy preserving data centric sensor networks with multi query o...
byeSAT Journals
 
PDF
FUZZY FINGERPRINT METHOD FOR DETECTION OF SENSITIVE DATA EXPOSURE
byIJCI JOURNAL
 
PDF
IRJET- Privacy Preserving Cloud Storage based on a Three Layer Security M...
byIRJET Journal
 
PDF
IRJET- Comparison Among RSA, AES and DES
byIRJET Journal
 
PDF
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...
byIJECEIAES
 
PDF
Improving Efficiency of Security in Multi-Cloud
byIJTET Journal
 
PDF
IJSRED-V2I2P55
byIJSRED
 
Secure distributed deduplication systems with improved reliability
byPvrtechnologies Nellore
 
Image Cryptography using RSA Algorithm
byijtsrd
 
IRJET- Secure Data Deduplication and Auditing for Cloud Data Storage
byIRJET Journal
 
IRJET- A Survey for an Efficient Secure Guarantee in Network Flow
byIRJET Journal
 
ijrrest_vol-2_issue-2_015
byAshish Gupta
 
Securing Personal Information in Data Mining
byIJMER
 
Three Party Authenticated Key Distribution using Quantum Cryptography
byIJMER
 
Key Management Scheme for Secure Group Communication in WSN with Multiple Gr...
bycsandit
 
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
byYekini Nureni
 
Analyzing and Securing Data Transmission in Wireless Sensor Networks through ...
byijtsrd
 
IMAGE ENCRYPTION TECHNIQUES USING FRACTAL FUNCTION: A REVIEW
byijcsit
 
82 86
byEditor IJARCET
 
A Privacy Preserving Three-Layer Cloud Storage Scheme Based On Computational ...
byIJSRED
 
Secure and privacy preserving data centric sensor networks with multi query o...
byeSAT Journals
 
FUZZY FINGERPRINT METHOD FOR DETECTION OF SENSITIVE DATA EXPOSURE
byIJCI JOURNAL
 
IRJET- Privacy Preserving Cloud Storage based on a Three Layer Security M...
byIRJET Journal
 
IRJET- Comparison Among RSA, AES and DES
byIRJET Journal
 
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...
byIJECEIAES
 
Improving Efficiency of Security in Multi-Cloud
byIJTET Journal
 
IJSRED-V2I2P55
byIJSRED
 

Similar to Secure Encrypted Data in Cloud Based Environment

PDF
K nearest neighbor classification over semantically secure encrypted relation...
byieeepondy
 
PDF
K nearest neighbor classification over semantically secure encrypted relation...
byieeepondy
 
PDF
IRJET- Efficient Privacy-Preserving using Novel Based Secure Protocol in SVM
byIRJET Journal
 
DOCX
K nearest neighbor classification over semantically secure encrypted
byShakas Technologies
 
DOCX
K-NEAREST NEIGHBOR CLASSIFICATION OVER SEMANTICALLY SECURE ENCRYPTED RELATION...
byI3E Technologies
 
PDF
Classification of secure encrypted relationaldata in cloud computing
byeSAT Journals
 
PDF
A novel ppdm protocol for distributed peer to peer information sources
byIAEME Publication
 
PDF
An Investigation of Data Privacy and Utility Preservation Using KNN Classific...
byKato Mivule
 
PDF
Privacy preserving clustering on centralized data through scaling transf
byIAEME Publication
 
PDF
IRJET- Study Paper on: Ontology-based Privacy Data Chain Disclosure Disco...
byIRJET Journal
 
PDF
A Review on Privacy Preservation in Data Mining
byijujournal
 
PDF
A Review on Privacy Preservation in Data Mining
byijujournal
 
PDF
A Review on Privacy Preservation in Data Mining
byijujournal
 
PDF
A review on privacy preservation in data mining
byijujournal
 
PDF
Multilevel Privacy Preserving by Linear and Non Linear Data Distortion
byIOSR Journals
 
PDF
PRIVACY PRESERVING CLUSTERING IN DATA MINING USING VQ CODE BOOK GENERATION
bycscpconf
 
PDF
Classifying confidential data using SVM for efficient cloud query processing
byTELKOMNIKA JOURNAL
 
PPTX
KNN Classification Over Semantically secure Encrypt Data
byLakshmi Reddy
 
PDF
A Comparative Study on Privacy Preserving Datamining Techniques
byIJMER
 
PDF
International Journal of Engineering Research and Development (IJERD)
byIJERD Editor
 
K nearest neighbor classification over semantically secure encrypted relation...
byieeepondy
 
K nearest neighbor classification over semantically secure encrypted relation...
byieeepondy
 
IRJET- Efficient Privacy-Preserving using Novel Based Secure Protocol in SVM
byIRJET Journal
 
K nearest neighbor classification over semantically secure encrypted
byShakas Technologies
 
K-NEAREST NEIGHBOR CLASSIFICATION OVER SEMANTICALLY SECURE ENCRYPTED RELATION...
byI3E Technologies
 
Classification of secure encrypted relationaldata in cloud computing
byeSAT Journals
 
A novel ppdm protocol for distributed peer to peer information sources
byIAEME Publication
 
An Investigation of Data Privacy and Utility Preservation Using KNN Classific...
byKato Mivule
 
Privacy preserving clustering on centralized data through scaling transf
byIAEME Publication
 
IRJET- Study Paper on: Ontology-based Privacy Data Chain Disclosure Disco...
byIRJET Journal
 
A Review on Privacy Preservation in Data Mining
byijujournal
 
A Review on Privacy Preservation in Data Mining
byijujournal
 
A Review on Privacy Preservation in Data Mining
byijujournal
 
A review on privacy preservation in data mining
byijujournal
 
Multilevel Privacy Preserving by Linear and Non Linear Data Distortion
byIOSR Journals
 
PRIVACY PRESERVING CLUSTERING IN DATA MINING USING VQ CODE BOOK GENERATION
bycscpconf
 
Classifying confidential data using SVM for efficient cloud query processing
byTELKOMNIKA JOURNAL
 
KNN Classification Over Semantically secure Encrypt Data
byLakshmi Reddy
 
A Comparative Study on Privacy Preserving Datamining Techniques
byIJMER
 
International Journal of Engineering Research and Development (IJERD)
byIJERD Editor
 

Recently uploaded

PDF
Detailed functionof hydraulic system in OK and atox mills.pdf
byagungcemindo
 
PDF
Ingenieria offshore energias renovables.pdf
byCarlosPrezBuelga
 
PDF
Those Pesky Solids - Screening, Grinding, and Solids Passage - v.13
byBrian Gongol
 
PDF
Certified Kubernetes Security Specialist (CKS): Unit 8
byVICTOR MAESTRE RAMIREZ
 
PPTX
INDUSTRIAL ERGONOMICS.pptx-MCN 401 -MODULE 3
byVinayB68
 
PDF
Boundary Conditions of field components.pdf
byRCC Institute of Information Technology
 
DOCX
centrifugal-compressor-training-notesppt.docx
byRobertWaters35
 
PPT
23 EL PGS Sec-I (Shared).ppt power generation systems
byMehran university of engineering technology Pakistan
 
PPTX
Electrical_Draftsman_AutoCAD_Mastery_Roadmap.pptx
byKen Felix Lubega
 
PPTX
DECARBONAZING REFINING INDUSTRY rev2.pptx
bygonzalezolabarriaped
 
PDF
The ViewModel Performance Trap: When State Management Bites Back
bySinan KOZAK
 
PDF
How Are Learning-Based Methods Reshaping Trajectory Planning in Autonomous D...
byimagnejane
 
PDF
【EN】Accelerating Flutter UI Development with 
Figma Dev Mode MCP × Claude Code
byYuta Asada
 
PDF
research material for reasearch scholers and main topics
byHariKrishna92507
 
PPTX
Introduction of gdg and info session on study jam.pptx
byDeepakkumarSingh415123
 
PDF
Scenario-based WLAN Planning Design for Warehouse.pdf
byomarlameda1
 
PDF
Lecture 1 - Artificial Intelligence.pdf
bykq2g4jj66b
 
PDF
Contoh-Penyusunan-Action-Plan-2020.pdfff
byDwi Ist
 
PDF
Lagoon Liners and Baffle Curtains - v.23
byBrian Gongol
 
PDF
SE APPIA LIFE VOL 2-3GR for service manual.pdf
bytroneelektrik
 
Detailed functionof hydraulic system in OK and atox mills.pdf
byagungcemindo
 
Ingenieria offshore energias renovables.pdf
byCarlosPrezBuelga
 
Those Pesky Solids - Screening, Grinding, and Solids Passage - v.13
byBrian Gongol
 
Certified Kubernetes Security Specialist (CKS): Unit 8
byVICTOR MAESTRE RAMIREZ
 
INDUSTRIAL ERGONOMICS.pptx-MCN 401 -MODULE 3
byVinayB68
 
Boundary Conditions of field components.pdf
byRCC Institute of Information Technology
 
centrifugal-compressor-training-notesppt.docx
byRobertWaters35
 
23 EL PGS Sec-I (Shared).ppt power generation systems
byMehran university of engineering technology Pakistan
 
Electrical_Draftsman_AutoCAD_Mastery_Roadmap.pptx
byKen Felix Lubega
 
DECARBONAZING REFINING INDUSTRY rev2.pptx
bygonzalezolabarriaped
 
The ViewModel Performance Trap: When State Management Bites Back
bySinan KOZAK
 
How Are Learning-Based Methods Reshaping Trajectory Planning in Autonomous D...
byimagnejane
 
【EN】Accelerating Flutter UI Development with 
Figma Dev Mode MCP × Claude Code
byYuta Asada
 
research material for reasearch scholers and main topics
byHariKrishna92507
 
Introduction of gdg and info session on study jam.pptx
byDeepakkumarSingh415123
 
Scenario-based WLAN Planning Design for Warehouse.pdf
byomarlameda1
 
Lecture 1 - Artificial Intelligence.pdf
bykq2g4jj66b
 
Contoh-Penyusunan-Action-Plan-2020.pdfff
byDwi Ist
 
Lagoon Liners and Baffle Curtains - v.23
byBrian Gongol
 
SE APPIA LIFE VOL 2-3GR for service manual.pdf
bytroneelektrik
 

Secure Encrypted Data in Cloud Based Environment

  • 1.
    ISSN 2350-1022 International Journalof Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 114 Paper Publications Secure Encrypted Data in Cloud Based Environment K.R.Raji1 , Ms.Archana.V.Nair.S2 , Ms.K.R.Raghi3 PG Scholar1 Assistant Professor of IT Department2 , Ponjesly College of Engineering, Nagercoil -3, India Abstract: Data Mining has wide applications in many areas such as banking, medicine, scientific research and among government agencies. Classification is one of the commonly used tasks in data mining applications. The cloud computing, users have the opportunity to outsource their data, in encrypted form, as well as the data mining tasks to the cloud. Since the data on the cloud is in encrypted form, existing privacy preserving classification techniques are not applicable. On solving the classification problem over encrypted data. A secure k-NN classifier over encrypted data in the cloud. The k-NN protocol protects the confidentiality of the data, user’s input query, and data access patterns. To develop a secure k-NN classifier over encrypted data under the standard semi-honest model. Also, we empirically analyze the efficiency of our solution through various experiments. Keywords: Security, k-NN Classifier, Outsourced Databases, Encryption. I. INTRODUCTION Cloud computing paradigm is revolutionizing the organizations’ way of operating their data particularly in the way they store, access and process data. As an emerging computing paradigm, cloud computing attracts many organizations to consider seriously regarding cloud potential in terms of its cost-efficiency, flexibility, and offload of administrative overhead.. The advantages that the cloud offers, privacy and security issues in the cloud are preventing companies to utilize those advantages. When data are highly sensitive, the data need to be encrypted before outsourcing to the cloud. However, when data are encrypted, irrespective of the underlying encryption scheme, performing any data mining tasks becomes very challenging without ever decrypting the data. The cloud can also derive useful and sensitive information about the actual data items by observing the data access patterns even if the data are encrypted. Therefore, the privacy/security requirements of the DMED problem on a cloud are threefold: (1) confidentiality of the encrypted data, (2) confidentiality of a user’s query record, and (3) hiding data access patterns. Existing work on Privacy-Preserving Data Mining (either perturbation or secure multi-party computation based approach) cannot solve the DMED problem. Perturbed data do not possess semantic security, so data perturbation techniques cannot be used to encrypt highly sensitive data. Also the perturbed data do not produce very accurate data mining results. Secure multi-party computation based approach assumes data are distributed and not encrypted at each participating party. As a result, a novel methods to effectively solve the DMED problem assuming that the encrypted data are outsourced to a cloud. Specifically, we focus on the classification problem since it is one of the most common data mining tasks. Because each classification technique has their own advantage, to be concrete, this paper concentrates on executing the k-nearest neighbor classification method over encrypted data in the cloud computing environment. II. EXISTING SYSTEM The existing secret sharing techniques in SMC develop a PPkNN protocol. However, our work is different from the secret sharing based solution from the following two aspects. (i) Solutions based on the secret sharing schemes require at least three parties whereas our work requires only two parties. (ii) Hiding data access patterns is still an unsolved problem in the secret sharing based schemes, whereas our work protects data access patterns from both participating parties.
  • 2.
    ISSN 2350-1022 International Journalof Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 115 Paper Publications 2.1 Privacy-Preserving Data Mining (PPDM): Privacy Preserving Data Mining (PPDM) is defined as the process of extracting/deriving the knowledge about data without compromising the privacy of data. In the past decade, many privacy-preserving classification techniques have been proposed in the literature in order to protect user privacy. Agrawal and Srikant, Lindell and Pinkas introduced the notion of privacy-preserving under data mining applications. In particular to privacy preserving classification, the goal is to build a classifier in order to predict the class label of input data record based on the distributed training dataset without compromising the privacy of data. A. Data Perturbation Method: In these methods, values of individual data records are perturbed by adding random noise in such way that the distribution of perturbed data look very different from that of actual data. After such a transformation, the perturbed data is sent to the miner to perform the desired data mining tasks. Data perturbation techniques cannot be applicable for semantically secure encrypted data. Also, they do not produce accurate data mining results due to the addition of statistical noises to the data. B. Data Distribution Methods: Assume the dataset is partitioned either horizontally or vertically and distributed across different parties. During this process, data owned by individual parties is not revealed to other parties. Classification is one important task in many applications of data mining such as health-care and business. In cloud computing, data owner outsources his/her data to the cloud. The direct way to guard the outsourced data is to apply encryption on the data before outsourcing. The hosted data on the cloud is in encrypted form in our problem domain, the existing privacy preserving classification techniques are not sufficient and applicable to PPkNN due to the following reasons. (i) In existing methods, the data are partitioned among at least two parties, whereas in our case encrypted data are hosted on the cloud. (ii) Since some amount of information is loss due to the addition of statistical noises in order to hide the sensitive attributes, the existing methods are not accurate. (iii) Leakage of data access patterns: the cloud can easily derive useful and sensitive information about users’ data items by simply observing the database access patterns. 2.2. Query processing over encrypted data: PPkNN is a more complex problem than the execution of simple kNN queries over encrypted data. One, the intermediate k-nearest neighbors in the classification process should not be disclosed to the cloud or any users. Secondly, even if we know the k-nearest neighbors, it is still very difficult to find the majority class label among these neighbors since they are encrypted at the first place to prevent the cloud from learning sensitive information. Third, the existing work did not address the access pattern issue which is a crucial privacy requirement from the user’s perspective. A novel secure k- nearest neighbor query protocol over encrypted data that protects data confidentiality, user’s query privacy, and hides data access patterns. First we introduced new security primitives, namely secure minimum (SMIN), secure minimum out of n numbers (SMINn), secure frequency (SF), and proposed new solutions for them. Second, the work did not provide any formal security analysis of the underlying sub-protocols. On the other hand, this paper provides formal security proofs of the underlying sub-protocols as well as the PPkNN protocol under the semi-honest model. Third, our preliminary work in addresses only secure kNN query which is similar to Stage 1 of PPkNN. However, Stage 2 in PPkNN is entirely new. Finally, our empirical are based on a real dataset whereas the results are based on a simulated dataset. As mentioned earlier, one can implement the proposed protocols under secret sharing schemes. In this work, we only concentrate on the two party situations; thus, we adopted the Paillier cryptosystem. Two-party and multi-party (three or more parties) SMC protocols are complement to each other, and their applications mainly depend on the number of available participants. III. THE PROPOSED PROTOCOL A novel privacy-preserving k-NN classification protocol, denoted by PPkNN, which is constructed using the protocols as building blocks. The goal of the PPkNN protocol is to classify users’ query records using D′ in a privacy-preserving manner. Consider an authorized user Bob who wants to classify his query record q = (q1,…, qm) based on D′ in C1. The proposed PPkNN protocol mainly consists of the following two stages: • Stage 1 - Secure Retrieval of k-Nearest Neighbors (SRkNN): In this stage, Bob initially sends his query q (in encrypted form) to C1. After this, C1 and C2 involve in a set of sub- protocols to securely retrieve (in encrypted form) the class labels corresponding to the k-nearest neighbors of the input query q. At the end of this step, encrypted class labels of k-nearest neighbors are known only to C1.
  • 3.
    ISSN 2350-1022 International Journalof Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 116 Paper Publications • Stage 2 - Secure Computation of Majority Class (SCMCk): Following from Stage 1, C1 and C2 jointly compute the class label with a majority voting among the k-nearest neighbors of q. At the end of this step, only Bob knows the class label corresponding to his input query record q. The main steps involved in the proposed PPkNN protocol are as shown in Algorithm. We now explain each of the two stages in PPkNN in detail. The Paillier cryptosystem is an additive homomorphic and probabilistic asymmetric encryption scheme. The encryption scheme is semantically secure. We simply use the well-known Paillier scheme in our implementations. However, to be more specific, in this paper we use the original Paillier cryptosystem. Key generation : Randomly generate the prime numbers p and q. Calculate : n = p*q and phi= (p-1)*(q-1) Find : g=n+1 and λ=lcm (p-1,q-1) μ=(L(gλ modn2 ))-1 mod n Where, L (u) = u-1/n u = gλ modn2 Encryption : C=gm .rn modn2 Where, C=cipher text m=message Decryption : D=Lt*μ mod n Where, t=c λ mod n2 Lt= (t-1)/n 3.1. Stage 2: Secure Computation of Majority Class (SCMCk): Without loss of generality, suppose Alice’s dataset D consists of w unique class labels denoted by c = (c1, . .cw). We assume that Alice outsources her list of encrypted classes to C1. That is, Alice outsources (Epk (c1), . ,Epk (cw)) to C1 along with her encrypted database D′ during the data outsourcing step. Note that, for security reasons, Alice may add dummy categories into the list to protect the number of class labels, i.e., w from C1 and C2. However, for simplicity, we assume that Alice does not add any dummy categories to c. During Stage 2, C1 with private inputs Ʌ=(Epk(c1), . . . ,Epk(cw)) and Ʌ′ = (Epk(c1’), . . . ,Epk(ck’)), and C2 with sk securely compute Epk(cq). Here cq denotes the majority class label among c1’, . . . , ck’. At the end of stage 2, only Bob knows the class label cq. The overall steps involved in Stage 2 are shown in Algorithm. To start with, C1 and C2 jointly compute the encrypted frequencies of each class label using the k-nearest set as input. That is, they compute Epk(f (ci)) using(Ʌ,Ʌ′) as C1’s input to the secure frequency (SF) protocol, for 1 ≤ i ≤ w. The output (Epk (f(c1)), . . . ,Epk(f(cw))) is known only to C1. Then, C1 with Epk(f (ci)) andC2 with sk involve in the secure bit decomposition (SBD) protocol to compute [f (ci)], that is, vector of encryptions of the individual bits of f (ci), for 1 ≤ I ≤ w. After this, C1 and C2 jointly involve in the SMAXw protocol. Briefly, SMAXw utilizes the sub-routine SMAX to eventually compute ([fmax], Epk (cq)) in an iterative fashion. Here [fmax] =[max(f(c1), . . . , f(cw))] and cq denotes the majority class out of Ʌ′. At the end, the output ([fmax], Epk (cq)) is known only to C1. After this,C1 computes q = Epk(cq + rq),where rq is a random number in ZN known only to C1. Then, C1 sends q to C2 and rq to Bob. Upon receiving q, C2 decrypts it to get the randomized majority class label ′q = Dsk(q) and sends it to Bob. Finally, upon receiving rq from C1 and ′q from C2, Bob computes the output class label corresponding to q as cq = q − rq mod N. 3.2. Security Analysis of PPkNN under the Semi-honest Model: Here we provide a formal security proof for the proposed PPkNN protocol under the semi-honest model. Due to the encryption of q and by semantic security of the Paillier cryptosystem, Bob’s input query q is protected from Alice, C1 and C2 in our PPkNN protocol.
  • 4.
    ISSN 2350-1022 International Journalof Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 117 Paper Publications Algorithm: SCMCk (Epk (c1’), . . . ,Epk (ck’)) → cq Require: (Epk (c1), . . . , Eok (cw)), (Epk (c1′), . . . ,Epk(ck′))are known only to C1; sk is known only to C2 1: C1 and C2: (a). (Epk(f(c1)), . . . ,E(f(cw))) ← SF(Ʌ,Ʌ’), where Ʌ =(Epk(c1), . . . ,Epk(cw)), Ʌ ′ = (Epk(c1′), . . . ,Epk(ck′)) (b). for i = 1 to w do: • [f (ci)] ← SBD(Epk(f (ci))) (c). ([fmax],Epk(cq)) ← SMAXw(Ψ1, . . . , Ψw), where Ψi = ([f (ci)],Epk (ci)), for 1 ≤ i ≤ w 2: C1: (a). γq ← Epk(cq) * Epk(rq), where rq ∈R ZN (b). Send γq to C2 and rq to Bob 3: C2: (a). Receive γq from C1 (b). γ′q ← Dsk(γq); send γ′q to Bob 4: Bob: (a). Receive rq from C1 and γ′q from C2 (b). cq ← γ′q − rq mod N The goal of PPkNN is to protect data confidentiality and hide data access patterns. In this paper, to prove a protocol’s security under the semi-honest model, we adopted the well-known security definitions from the literature of secure multiparty computation (SMC). IV. SYSTEM OVERVIEW Read the car evaluation dataset from KDD. It consists of 1,728 records and six attributes. There is a separate class attribute and the dataset is categorized into four different classes. Encrypt the dataset attribute-wise, using the Bitwise XOR operation. The Bitwise XOR operation split the string data by removing comas. Strings are converted into binary format using ASCII keyword. Convert the binary values into encrypted format by using Paillier cryptosystem. The Paillier cryptosystem is a public-key encryption scheme. It consists of 3 schemes:  Key generation  Encryption  Decryption The encrypted data send to cloud. Then the cloud will search the similar data. That data’s are grouped together, and then collect the features of neighboring data by using SRKNN. From that data, find the majority class by means of SCMC and produce the classify data. Then analyze the efficiency of our solution through various experiments. Fig: Architecture Design
  • 5.
    ISSN 2350-1022 International Journalof Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 118 Paper Publications V. COMPLEXITY ANALYSIS The computation complexity of Stage 1 in PPkNN is bounded by O (n) instantiations of SBD and SSED, O (k) instantiations of SMINn, and O(n * k * l) instantiations of SBOR. We emphasize that the computation complexity of the SBD protocol proposed in is bounded by O (l) encryptions and O (l) exponentiations (under the assumption that encryption and decryption operations based on Paillier cryptosystem take similar amount of time). Also, the computation complexity of SSED is bounded by O (m) encryptions and O (m) exponentiations. In addition, the computation complexity of SMINn is bounded by O (l * n * log2 n) encryptions and O (l * n * log2 n) exponentiations. Here the computation complexity of SF is bounded by O (k * w) encryptions and O (k * w) exponentiations. Therefore, the total computation complexity of Stage 2 is bounded by O (w* (l + k +l * log2 w)) encryptions and exponentiations. In general, w ≪ n, therefore, the computation cost of Stage 1 should be significantly higher than that of Stage 2. VI. EMPIRICAL RESULTS In this section, we discuss some experiments demonstrating the performance of our PPkNN protocol under different parameter settings. We used the Paillier cryptosystem as the underlying additive homomorphic encryption scheme and implemented the proposed PPkNN protocol in C. To the best of our knowledge, our work is the first effort to develop a secure k-NN classifier under the semi honest model. Thus, there is no existing work to compare with our approach. Therefore, we evaluate the performance of our PPkNN protocol under different parameter settings. 6.1. Dataset and Experimental Setup: For our experiments, used the Car Evaluation dataset from the UCI KDD archive. The dataset consists of 1728 data records (i.e., n = 1728) with 6 input attributes (i.e., m = 6). Also, there is a separate class attribute and the dataset is categorized into four different classes (i.e., w = 4). We encrypted this dataset attribute-wise, using the Paillier encryption whose key size is varied in our experiments, and the encrypted data were stored on our machine. Based on our PPkNN protocol, we then executed a random query over this encrypted data. 6.2. Performance of PPkNN: We first evaluated the computation costs of Stage 1 in PPkNN for varying number of k-nearest neighbors. Also, the Paillier encryption key size K is either 512 or 1024 bits. The results are shown in Figure 2(a). For K=512 bits, the Computation cost of Stage 1 varies from 9.98 to 46.16 minutes when k is changed from 5 to 25, respectively. On the other hand, when K=1024 bits, the computation cost of Stage 1 varies from 66.97 to 309.98 minutes when k is changed from 5 to 25, respectively. In either case, we observed that the cost of Stage 1 grows almost linearly with k. For any given k, we identified that the cost of Stage 1 increases by almost a factor of 7 whenever K is doubled. For example, when k=10, Stage 1 took 19.06 and 127.72 minutes to generate the encrypted class labels of the 10 nearest neighbors under K=512 and 1024 bits, respectively. Furthermore, when k=5, we observe that around 66.29% of cost in Stage 1 is accounted due to SMINn which is initiated k times in PPkNN 6.3. Performance Improvement of PPkNN: Two different ways to boost the efficiency of Stage 1 (as the performance of PPkNN depends primarily on Stage 1) and empirically analyze their efficiency gains. First, we observe that some of the computations in Stage 1 can be pre- computed. For example, encryptions of random numbers, 0s and 1s can be pre-computed (by the corresponding parties) in the offline phase. As a result, the online computation cost of Stage 1 (denoted by SRkNNo) is expected to be improved .To see the actual efficiency gains of such a strategy, we computed the costs of SRkNNo and compared them with the costs of Stage 1 without an offline phase (simply denoted by SRkNN) and the results for K = 1024 bits . Irrespective of the values of k, we observed that SRkNNo is around 33% faster than SRkNN. E.g., when k = 10, the computation costs of SRkNNo and SRkNN are 84.47 and 127.72 minutes, respectively (boosting the online running time of Stage 1 by 33.86%).PPkNN for k = 10 and K = 1024 bits Our second approach to improve the performance of Stage 1 is by using parallelism. Since operations on data records are independent of one another, we claim that most computations in Stage 1 can be parallelized. The efficiency of Stage 1 can indeed be improved significantly using parallelism. Moreover, we can also use the existing Map-reduce techniques to execute parallel operations on multiple nodes to drastically improve the performance further. Hence, the level of achievable performance in PPkNN actually depends on the implementation. On
  • 6.
    ISSN 2350-1022 International Journalof Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 119 Paper Publications the other hand, Bob’s computation cost in PPkNN is mainly due to the encryption of his input query. In our dataset, Bob’s computation cost is 4 and 17 milliseconds when K is 512 and 1024 bits, respectively. VII. CONCLUSION Classification is an important task in many data mining applications. To protect user privacy, various privacy-preserving classification techniques have been proposed in the literature for the past decade. The existing techniques are not applicable in outsourced database environment where the data resides in encrypted form on a third-party server. Proposed a novel privacy-preserving k-NN classification protocol over encrypted data in the cloud. Our protocol protects the confidentiality of the data, user’s input query, and hides the data access patterns. We also evaluated the performance of our protocol under different parameter settings. Since improving the efficiency of SMINn is an important first step for improving the performance of our PPkNN protocol. We plan to investigate alternative and more efficient solutions to the SMINn problem in our future work. Also, in this paper, we used the well-known k-NN classifier and developed a privacy- preserving protocol for it over encrypted data. As a future work, we will investigate and extend our research to other classification algorithms.
  • 7.
    ISSN 2350-1022 International Journalof Recent Research in Mathematics Computer Science and Information Technology Vol. 2, Issue 2, pp: (114-120), Month: October 2015 – March 2016, Available at: www.paperpublications.org Page | 120 Paper Publications REFERENCES [1] C. C. Agrawal and P. S. Yu. A general survey of privacy-preserving data mining models and algorithms. Privacy- preserving data mining, pages 11–52, 2008. [2] R. Agrawal, J. Kiernan, R. Srikant, and Y. Xu. Order preserving encryption for numeric data. In ACM SIGMOD, pages 563–574, 2004. [3] R. Agrawal and R. Srikant. Privacy-preserving data mining. In ACM Sigmod Record, volume 29, pages 439– 450.ACM, 2000. [4] H. Hu, J. Xu, C. Ren, and B. Choi. Processing private queries over untrusted data cloud through privacy homomorphism. In IEEE ICDE, pages 601–612, 2011. [5] R. J. Bayardo and R. Agrawal. Data privacy through optimal k-anonymization. In IEE ICDE, pages 217–228, 2005. [6] X. Xiao, F. Li, and B. Yao, “Secure nearest neighbor revisited,” in Proc. IEEE Int. Conf. Data Eng., 2013, pp. 733– 744. [7] Y. Elmehdwi, B. K. Samanthula, and W. Jiang, “Secure k-nearest neighbor query over encrypted data in outsourced environments,” in Proc. IEEE 30th Int. Conf. Data Eng., 2014, pp. 664–675. [8] Y. Qi and M. J. Atallah, “Efficient privacy-preserving k-nearest neighbor search,” in Proc. IEEE 28th Int. Conf. Distrib. Comput.Syst. 2008, pp. 311–319. [9] M. Bohanec and B. Zupan. The UCI KDD Archive. University of California, Department of Information and Computer Science, Irvine, CA, 1997. [10] Y. Huang, D. Evans, J. Katz, and L. Malka, “Faster secure two-party computation using garbled circuits,” in Proc. 20th USENIX Conf. Security, 2011, pp. 35–35.