Don't Reveal My Intension: Protecting User Privacy Using Declarative Preferences during Distributed Query Processing [chapter]

Nicholas L. Farnan, Adam J. Lee, Panos K. Chrysanthis, Ting Yu
2011 Lecture Notes in Computer Science  
In a centralized setting, the declarative nature of SQL is a major strength: a user can simply describe what she wants to retrieve, and need not worry about how the resulting query plan is actually generated and executed. However, in a decentralized setting, two query plans that produce the same result might actually reveal vastly different information about the intensional description of a user's query to the servers participating its evaluation. In cases where a user considers portions of her
more » ... query to be sensitive, this is clearly problematic. In this paper, we address the specification and enforcement of querier privacy constraints on the execution of distributed database queries. We formalize a notion of intensional query privacy called (I, A)-privacy, and extend the syntax of SQL to allow users to enforce strict (I, A)-privacy constraints or partially ordered privacy/performance preferences over the execution of their queries.
doi:10.1007/978-3-642-23822-2_34 fatcat:hd3jh5vhzvetvp4pk7und5lgj4