{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,21]],"date-time":"2026-01-21T18:09:43Z","timestamp":1769018983980,"version":"3.49.0"},"reference-count":81,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2020,10,12]],"date-time":"2020-10-12T00:00:00Z","timestamp":1602460800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000185","name":"DARPA","doi-asserted-by":"crossref","award":["FA8750-16-2-0021"],"award-info":[{"award-number":["FA8750-16-2-0021"]}],"id":[{"id":"10.13039\/100000185","id-type":"DOI","asserted-by":"crossref"}]},{"name":"NSF","award":["1527536 and 1545071"],"award-info":[{"award-number":["1527536 and 1545071"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Manage. Inf. Syst."],"published-print":{"date-parts":[[2020,12,31]]},"abstract":"<jats:p>\n            Despite extensive research on cryptography, secure and efficient query processing over outsourced data remains an open challenge. This article continues along with the emerging trend in secure data processing that recognizes that the entire dataset may not be sensitive and, hence, non-sensitivity of data can be exploited to overcome limitations of existing encryption-based approaches. We first provide a new security definition, entitled\n            <jats:italic>partitioned data security<\/jats:italic>\n            , for guaranteeing that the joint processing of non-sensitive data (in cleartext) and sensitive data (in encrypted form) does not lead to any leakage. Then, this article proposes a new secure approach, entitled\n            <jats:italic>query binning<\/jats:italic>\n            (QB), that allows secure execution of queries over non-sensitive and sensitive parts of the data. QB maps a query to a set of queries over the sensitive and non-sensitive data in a way that no leakage will occur due to the joint processing over sensitive and non-sensitive data. In particular, we propose secure algorithms for selection, range, and join queries to be executed over encrypted sensitive and cleartext non-sensitive datasets. Interestingly, in addition to improving performance, we show that QB actually strengthens the security of the underlying cryptographic technique by preventing size, frequency-count, and workload-skew attacks.\n          <\/jats:p>","DOI":"10.1145\/3397521","type":"journal-article","created":{"date-parts":[[2020,8,15]],"date-time":"2020-08-15T13:20:42Z","timestamp":1597497642000},"page":"1-41","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":10,"title":["PANDA"],"prefix":"10.1145","volume":"11","author":[{"given":"Sharad","family":"Mehrotra","sequence":"first","affiliation":[{"name":"University of California, Irvine, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shantanu","family":"Sharma","sequence":"additional","affiliation":[{"name":"University of California, Irvine, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jeffrey D.","family":"Ullman","sequence":"additional","affiliation":[{"name":"Stanford University, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dhrubajyoti","family":"Ghosh","sequence":"additional","affiliation":[{"name":"University of California, Irvine, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Peeyush","family":"Gupta","sequence":"additional","affiliation":[{"name":"University of California, Irvine, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Anurag","family":"Mishra","sequence":"additional","affiliation":[{"name":"University of California, Irvine, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2020,10,12]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"Retrieved on","author":"Aurora Amazon","year":"2020"},{"key":"e_1_2_1_2_1","volume-title":"Retrieved on","author":"DB.","year":"2020"},{"key":"e_1_2_1_3_1","volume-title":"Retrieved on","year":"2020"},{"key":"e_1_2_1_4_1","volume-title":"Retrieved on","year":"2020"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/1007568.1007632"},{"key":"e_1_2_1_6_1","volume-title":"Proceedings of the 6th Biennial Conference on Innovative Data Systems Research (CIDR\u201913)","author":"Arasu Arvind","year":"2013"},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/FPL.2013.6645524"},{"key":"e_1_2_1_8_1","volume-title":"Proceedings of the 17th International Conference on Database Theory (ICDT\u201914)","author":"Arasu Arvind","year":"2014"},{"key":"e_1_2_1_9_1","first-page":"450","article-title":"From keys to databases - Real-world applications of secure multi-party computation","volume":"2018","author":"Archer David W.","year":"2018","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"e_1_2_1_10_1","first-page":"529","article-title":"CorrectDB: SQL engine with practical query authentication","volume":"6","author":"Bajaj Sumeet","year":"2013","journal-title":"Proc. Very Large Data Base"},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/TKDE.2013.38"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.5555\/1777777.1777820"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46803-6_12"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/237814.238015"},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813700"},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/293347.293350"},{"key":"e_1_2_1_17_1","first-page":"86","article-title":"Intel SGX explained","volume":"2016","author":"Costan Victor","year":"2016","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.5555\/2590701.2590705"},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/3167971"},{"key":"e_1_2_1_20_1","volume-title":"Proceedings of the 24th USENIX Security Symposium (USENIXSecurity\u201915)","author":"Anh Dinh Tien Tuan","year":"2015"},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2732516.2732526"},{"key":"e_1_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2019.2933844"},{"key":"e_1_2_1_23_1","unstructured":"Michael Egorov and MacLane Wilkison. 2016. ZeroDB white paper. Retrieved from http:\/\/arxiv.org\/abs\/1602.07168.  Michael Egorov and MacLane Wilkison. 2016. ZeroDB white paper. Retrieved from http:\/\/arxiv.org\/abs\/1602.07168."},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-30073-1_3"},{"key":"e_1_2_1_25_1","first-page":"198","article-title":"Dividing secrets to secure data outsourcing. Info","volume":"263","author":"Emek\u00e7i Fatih","year":"2014","journal-title":"Sci."},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/772862.772864"},{"key":"e_1_2_1_27_1","doi-asserted-by":"crossref","unstructured":"Benny Fuhry H. A. Jayanth Jain and Florian Kerschbaum. 2020. EncDBDB: Searchable encrypted fast compressed in-memory database using enclaves. Retrieved from https:\/\/arxiv.org\/abs\/2002.05097.  Benny Fuhry H. A. Jayanth Jain and Florian Kerschbaum. 2020. EncDBDB: Searchable encrypted fast compressed in-memory database using enclaves. Retrieved from https:\/\/arxiv.org\/abs\/2002.05097.","DOI":"10.1109\/DSN48987.2021.00054"},{"key":"e_1_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-61176-1_22"},{"key":"e_1_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-55220-5_35"},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/28395.28416"},{"key":"e_1_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1016\/0022-0000(84)90070-9"},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/3065913.3065915"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.44"},{"key":"e_1_2_1_35_1","first-page":"1030","article-title":"Obscure: Information-theoretic oblivious and verifiable aggregation queries","volume":"12","author":"Gupta Peeyush","year":"2019","journal-title":"Proc. Very Large Data Base"},{"key":"e_1_2_1_36_1","volume-title":"Proceedings of the ACM SIGMOD International Conference on Management of Data. 216--227","author":"Hacig\u00fcm\u00fcs Hakan","year":"2002"},{"key":"e_1_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDE.2002.994695"},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1988.8101"},{"key":"e_1_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.5555\/523986.857981"},{"key":"e_1_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-29485-8_6"},{"key":"e_1_2_1_41_1","volume-title":"Proceedings of the 19th Annual Network and Distributed System Security Symposium (NDSS\u201912)","author":"Islam Mohammad Saiful","year":"2012"},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978386"},{"key":"e_1_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-49099-0_17"},{"key":"e_1_2_1_44_1","volume-title":"Proceedings of the 28th Annual International Computer Software and Applications Conference (COMPSAC\u201904)","author":"Lee Guanling"},{"key":"e_1_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-71703-4_37"},{"key":"e_1_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.knosys.2014.04.010"},{"key":"e_1_2_1_47_1","first-page":"44","article-title":"rPIR: Ramp secret sharing based communication efficient private information retrieval","volume":"2014","author":"Li Lichun","year":"2014","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"e_1_2_1_48_1","first-page":"1953","article-title":"Fast range query processing with strong privacy protection for cloud computing","volume":"7","author":"Li Rui","year":"2014","journal-title":"Proc. Very Large Data Base"},{"key":"e_1_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNET.2015.2457493"},{"key":"e_1_2_1_50_1","first-page":"176","article-title":"Search pattern leakage in searchable encryption: Attacks and new construction. Info","volume":"265","author":"Liu Chang","year":"2014","journal-title":"Sci."},{"key":"e_1_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-47854-7_10"},{"key":"e_1_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1145\/3124441"},{"key":"e_1_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDE.2019.00064"},{"key":"e_1_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00045"},{"key":"e_1_2_1_55_1","volume-title":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security. 644--655","author":"Naveed Muhammad"},{"key":"e_1_2_1_56_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDE.2017.125"},{"key":"e_1_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.1145\/2723372.2723741"},{"key":"e_1_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.1145\/100216.100289"},{"key":"e_1_2_1_59_1","doi-asserted-by":"publisher","DOI":"10.1145\/2629501"},{"key":"e_1_2_1_60_1","first-page":"591","article-title":"Arx: A strongly encrypted database system","volume":"2016","author":"Poddar Rishabh","year":"2016","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"e_1_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.1145\/2330667.2330691"},{"key":"e_1_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00025"},{"key":"e_1_2_1_63_1","first-page":"187","article-title":"How to exchange secrets with oblivious transfer","volume":"2005","author":"Rabin Michael O.","year":"2005","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"e_1_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.10"},{"key":"e_1_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1145\/359168.359176"},{"key":"e_1_2_1_66_1","doi-asserted-by":"publisher","DOI":"10.1007\/11535706_5"},{"key":"e_1_2_1_67_1","doi-asserted-by":"publisher","DOI":"10.1109\/32.106974"},{"key":"e_1_2_1_68_1","volume-title":"Proceedings of the IEEE Symposium on Security and Privacy. 44--55","author":"Song Dawn Xiaodong","year":"2000"},{"key":"e_1_2_1_69_1","volume-title":"Proceedings of the 6th USENIX Workshop on Hot Topics in Cloud Computing (HotCloud\u201914)","author":"Stephen Julian James","year":"2014"},{"key":"e_1_2_1_70_1","volume-title":"Proceedings of the ACM SIGPLAN International Conference on Object Oriented Programming Systems Languages and Applications (OOPSLA\u201913; part of SPLASH\u201913)","author":"Tetali Sai Deep"},{"key":"e_1_2_1_71_1","doi-asserted-by":"publisher","DOI":"10.1145\/2894750"},{"key":"e_1_2_1_72_1","doi-asserted-by":"publisher","DOI":"10.14778\/2535573.2488336"},{"key":"e_1_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2010.34"},{"key":"e_1_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2011.245"},{"key":"e_1_2_1_75_1","volume-title":"Proceedings of the 14th USENIX Symposium on Networked Systems Design and Implementation (NSDI\u201917)","author":"Wang Frank","year":"2017"},{"key":"e_1_2_1_76_1","first-page":"208","article-title":"Private information retrieval using trusted hardware","volume":"2006","author":"Wang Shuhong","year":"2006","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"e_1_2_1_77_1","volume-title":"Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS\u201917)","author":"Wang Wenhao"},{"key":"e_1_2_1_78_1","volume-title":"Rongbin Li, and Siu-Ming Yiu.","author":"Wong Wai Kit","year":"2014"},{"key":"e_1_2_1_79_1","volume-title":"Retrieved on","author":"Xu Min","year":"2020"},{"key":"e_1_2_1_80_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2010.5462174"},{"key":"e_1_2_1_81_1","doi-asserted-by":"publisher","DOI":"10.1145\/1755688.1755720"},{"key":"e_1_2_1_82_1","volume-title":"Proceedings of the 14th USENIX Symposium on Networked Systems Design and Implementation (NSDI\u201917)","author":"Zheng Wenting","year":"2017"}],"container-title":["ACM Transactions on Management Information Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3397521","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3397521","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3397521","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T20:47:33Z","timestamp":1750193253000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3397521"}},"subtitle":["Partitioned Data Security on Outsourced Sensitive and Non-sensitive Data"],"short-title":[],"issued":{"date-parts":[[2020,10,12]]},"references-count":81,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2020,12,31]]}},"alternative-id":["10.1145\/3397521"],"URL":"https:\/\/doi.org\/10.1145\/3397521","relation":{},"ISSN":["2158-656X","2158-6578"],"issn-type":[{"value":"2158-656X","type":"print"},{"value":"2158-6578","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020,10,12]]},"assertion":[{"value":"2019-11-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2020-04-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2020-10-12","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}