Se ne parla da un po' di tempo e dunque vorrei sapere dagli esperti: parliamo di tecnologia che si può mettere in "produzione" oggi, o è un (importante) passo avanti nella ricerca in materia? Ciao, grazie, Andrea On Tuesday, December 20, 2011, J.C. DE MARTIN <demartin@polito.it> wrote:
Per citare Lauren "potentially a very big deal" - penso, oltre al resto, a cloud computing. JC
Begin forwarded message:
From: Lauren Weinstein <lauren@vortex.com> Date: 19 dicembre 2011 23:07:34 CET To: nnsquad@nnsquad.org Subject: [ NNSquad ] Computing On Encrypted Databases Without Ever Decrypting Them
Computing On Encrypted Databases Without Ever Decrypting Them
http://j.mp/w0NLE3 (Forbes)
"Now the Google- and Citigroup-funded work of three MIT scientists holds the promise of solving that long-nagging issue in some of the computing world's most common applications. CryptDB, a piece of database software the researchers presented in a paper (PDF here) at the Symposium on Operating System Principles in October, allows users to send queries to an encrypted set of data and get almost any answer they need from it without ever decrypting the stored information, a trick that keeps the info safe from hackers, accidental loss and even snooping administrators. And while it's not the first system to offer that kind of magically flexible cryptography, it may be the first practical one, taking a fraction of a second to produce an answer where other systems that perform the same encrypted functions would require thousands of years."
- - -
CryptDB: Protecting Condentiality with Encrypted Query Processing
http://j.mp/u1INfV (MIT [PDF])
"It works by executing SQL queries over encrypted data using a collection of efcient SQL-aware encryption schemes. CryptDB can also chain encryption keys to user passwords, so that a data item can be decrypted only by using the password of one of the users with access to that data. As a result, a database administrator never gets access to decrypted data, and even if all servers are compromised, an adversary cannot decrypt the data of any user who is not logged in."
- - -
Potentially a *very* big deal.
--Lauren-- Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren Co-Founder: People For Internet Responsibility: http://www.pfir.org Founder: - Network Neutrality Squad: http://www.nnsquad.org - Global Coalition for Transparent Internet Performance: http://www.gctip.org - PRIVACY Forum: http://www.vortex.com Member: ACM Committee on Computers and Public Policy Blog: http://lauren.vortex.com Google+: http://vortex.com/g+lauren Twitter: https://twitter.com/laurenweinstein Tel: +1 (818) 225-2800 / Skype: vortex.com
_______________________________________________ nnsquad mailing list http://lists.nnsquad.org/mailman/listinfo/nnsquad
-- -- I speak only for myself. Sometimes I do not even agree with myself. Keep it in mind. Twitter: @andreaglorioso Facebook: https://www.facebook.com/andrea.glorioso LinkedIn: http://www.linkedin.com/profile/view?id=1749288&trk=tab_pro